Security bulletin

Law, PR Firms Being Targeted by Hackers says FBI

According to the Washington Post, "Hackers are increasingly targeting law firms and public relations companies with a sophisticated e-mail scheme that breaks into their computer networks to steal sensitive data, often linked to large corporate...

October 2009 Patch Tuesday Sets New Record

Microsoft Security Response Center's October 2009 Bulletin Release Advance Notification:

For October we are releasing 13 bulletins...

Patch Tuesday – Microsoft Fixes Eight Security Flaws

All of them are critical, but not a single one of them affects Windows 7, scheduled for release on October 22.

The most dangerous flaw covered by this month’s batch of patches is a remote code execution vulnerability in the way that the JScript scripting engine decodes script in Web...

What Will Conficker do on April First?

No one knows for sure, but we do know that *something* is going to happen on April Fools' Day. Conficker is a new breed of malware; the people behind it are of exceptional intelligence....

Will They Ever Learn to Patch?

The latest mass infection to hit the Internet is the Win32/Conficker/Downadup Worm, estimated to have already infected between 500,000 and 8.9 million PCs, depending on whose numbers you believe. This is astounding, considering that the worm exploits a vulnerability in Windows that Microsoft

Microsoft Announces Out-of-band Patch for Zero-day Flaw

Microsoft issued today "Microsoft Security Bulletin Advance Notification for December 2008." The actual security bulletin will be released on December 17, 2008:

Microsoft Security Bulletin Advance...

Internet Explorer Targeted by Zero-day Attack

Even though Microsoft released the biggest batch of patches ever on Tuesday--28 flaws affecting Windows, Office, Internet Explorer, Visual Basic Active Controls and Windows Media Player, 23 of them rated “critical”--there's no fix for a zero-day XML parser vulnerability that surfaced the same...

Opera Zero-day Vulnerability

Just as Opera completed patches for critical vulnerabilities in its browser, researchers discovered another remote code execution bug. In its recent article, "Opera scrambles to quash zero-day bug in...

Microsoft Releases Out-of-Band Security Bulletin MS08-067

Microsoft just released a critical update for a "privately reported" vulnerability in the server service:

This security update resolves a privately reported vulnerability in the Server service. The...