Previous
Windows exploit code threat multiplies
News Microsoft provided a patch for the flaw in November with security bulletin MS05-053 and warned that the vulnerability could create an opening for spyware and Trojan horse attacks. These vulnerabilities were patched, so fortunately clients have had...
[December 2, 2005, 8:30]
Internet guru warns of botnet pandemic
News Sunner said around the turn of the year security experts were watching one botnet, called Spam Thru, which not only had its own antivirus protection to clear other botnets off 'its patch' but had the potential to be 10 times more productive than...
[January 29, 2007, 8:39]
Hacker exploits Microsoft bug online
News Microsoft alerted its six million customers to the problem on 18 June, and released a patch that protects IIS servers from attacks of the vulnerability. A Japanese hacker has surreptitiously posted a programme on the Net which gives remote...
[July 5, 2001, 16:54]
Microsoft besieged by zero-day attacks
News Microsoft issued a rare, out-of-cycle Windows patch on Tuesday that fixed one flaw, but attacks through other known, yet-to-be-plugged holes continue. The PowerPoint flaw is one of several security holes cybercrooks are actively exploiting, but for...
[September 28, 2006, 9:20]
Microsoft server exploit goes public
News Microsoft declined to comment on the issue, except to say that customers should patch their systems. Nunez also stressed that system administrators need to patch their systems before a virus writer uses the vulnerability as a vector for a computer...
[March 25, 2003, 7:49]
Cisco releases 12 sets of security patches
News Networking giant Cisco has published a raft of security advisories as part of its biannual patch-release schedule. When configured for linecard redundancy, Cisco uBR10012 series devices use an SNMP community string of 'private' and allow read/write...
[September 25, 2008, 14:44]
Safari hole exploited in seconds at hack contest
News The contest is sponsored by TippingPoint, which will share details on the exploit with Apple and develop a patch for it. The security hole, which Miller said he discovered last year, allows a remote attacker to gain control of a machine simply by...
[March 19, 2009, 11:00]
Experts warn of IE Gopher hole
News Oy Online recommends that until Microsoft releases a patch, IE 5.5 and 6.0 users should disable Gopher by going to the Tools menu and accessing "LAN Settings" under "Connections. A Finnish security company on Tuesday warned that hackers could...
[June 6, 2002, 7:32]
Software "fixes" routinely available but often ignored
News Failing to responsibly patch computers led to 99 percent of the 5,823 Web site defacements last year, up 56 percent from the 3,746 Web sites defaced in 1999, according to security group Attrition.org.
[January 24, 2001, 13:37]
Homeland Security urges Windows fix
News The patch fixes a serious flaw that, if exploited, could enable an attacker to remotely take complete control of an affected system, the agency said. The agency, which also runs the United States Computer Emergency Readiness Team (US-CERT), sent...
[August 11, 2006, 12:10]
RealPlayer and Helix Player in Linux security scare
News Kristensen noted the reasoning behind publishing the exploit code before a patch has been developed. Malicious attackers can take advantage of the error to take remote control of users' computer systems.
[September 28, 2005, 9:35]
Microsoft to delete Sony DRM 'rootkit'
News The Windows Malicious Software Removal Tool is updated monthly and is part of Microsoft's monthly patch releases. Sony BMG itself has also provided a patch to fix the security problem and still allow CDs to be played on PCs.
[November 13, 2005, 10:15]
IE hole gets third-party plug
News In January, an outside patch was created for a vulnerability in the way Windows renders Windows Meta File images, and in March, two security companies issued patches for a bug related to how IE handled certain tags in Web pages.
[September 25, 2006, 9:10]
Windows XP: bugs review
Reviews Don't have the patch yet? Yet another patch fixes an ‘Unchecked buffer in the Multiple UNC Provider’, a problem that allows a hacker to send a malformed data request to a PC to either run programs at will or cause the computer to restart.
[May 24, 2002, 18:58]
BUSY PATCH TUESDAY!!
Talkback Before deploying this patch into production environments, it is essential that IT administrators test it vigorously to ensure services are not impacted by unexpected results. Vulnerabilities involving spoofing and elevation of privilege should...
[October 13, 2009, 17:17]
Help & HowTo: Slammer
News The havoc wreaked by the Sapphire worm, also known as Slammer and SQLExp, could have been avoided if a patch issued by Microsoft last July was administered. Meanwhile, Trend Micro users can download its System Cleaner patch from its Web site.
[January 27, 2003, 10:18]
New Year, old flaws in Windows and Internet Explorer review
Reviews Last Tuesday, Microsoft released three new security bulletins for 2005, including one critical patch for Windows XP SP2, last year's much-touted security upgrade of the Windows XP operating system. It's the latter that's worrisome, as criminal...
[January 17, 2005, 7:45]
Mainstream Web sites spreading back-door infections
News This time, however, the flaws affect every user of Internet Explorer, because Microsoft has not yet released a patch. With no patch from Microsoft, that leaves Internet Explorer users vulnerable. A representative of the software giant was not...
[June 25, 2004, 8:40]
Trust
Talkback Even the new Windows 7 has a security patch for a system that is as yet not even released. I want to have control of my own data and the choice to choose my browser and my software. Although this is a business platform MS in my opinion is moving to...
[December 15, 2008, 7:09]
Worm warfare rages on
News The first Zotob variant appeared in record time after Microsoft's patch release, giving Windows users little time to fix their systems. The worms include "bot" code, or a program that lets the attacker control a compromised system remotely.
[August 18, 2005, 9:00]
