Thursday, July 03, 2008 2:35 PM/CST
Microsoft has announced that it will beef up malware filtering and anti-cross-site scripting tools in the next build of its IE8 browser slated to arrive sometime in August.
Tuesday, May 06, 2008 12:24 PM/CST
Yahoo has silently pushed out a patch for a critical vulnerability affecting users of its Yahoo Assistant browser add-on. According to an alert from "Sowhat," a researcher at Nevis Labs, the vulnerability "allows attackers to execute arbitrary code on vulnerable...
Tuesday, May 06, 2008 11:18 AM/CST
Some of the biggest names in the IT software business still are very lax when it comes to fixing security holes reported by third-party brokers. According to a list maintained by TippingPoint's Zero Day Initiative, Microsoft, Novell, Oracle, Computer Associates...
Monday, April 28, 2008 12:39 PM/CST
Hewlett-Packard's ongoing struggle to keep its software updater free of serious ActiveX control vulnerabilities is showing no signs of letting up. According to a "highly critical" alert issued by Secunia, the HP Software Update package pre-installed on notebooks contains...
Thursday, April 24, 2008 3:21 PM/CST
The latest refresh of Opera's flagship Web browser comes with several crucial security features. With Opera 9.5 Beta 2 (code-named Kestrel), the Norwegian company has added fraud-protection capabilities and support for EV SSL (Extended Validation Secure Sockets Layer) Certificates...
Thursday, April 24, 2008 1:31 PM/CST
Software engineers at Microsoft will get a front-row seat to hear about an unpatched Windows security hole that was once pooh-poohed as a "design issue" that shouldn't be seen as a security vulnerability. At the Spring edition of Redmond's...
Wednesday, April 23, 2008 9:13 AM/CST
Apple's Safari browser is beginning to look like a bullet-ridden car in Iraq. According to a warning posted to security mailing lists, there are multiple security flaws in Safari 3.1.1 that put users at risk of ID-theft spoofing attacks or,...
Monday, April 21, 2008 4:05 PM/CST
Hackers are having fun exposing security holes in Barack Obama's official campaign site. According to a post over at XSSed.com, a site that catalogs cross-site scripting vulnerabilities, one of the multiple holes in Obama's site was exploited to redirect...
Monday, April 21, 2008 11:58 AM/CST
The notorious Rock Phish gang is pushing the envelope again, adding a sophisticated crimeware Trojan to its identity theft arsenal. The Russian group, which is responsible for about half of all phishing attacks, is now doing browser-based drive-by attacks...
Saturday, April 19, 2008 3:33 PM/CST
Over on Twitter, during a discussion on PayPal's plan to ban "unsafe browsers," I suggested there was no way the company would risk blocking Safari connections. Can't afford to alienate iPhone and the mobile transaction market. Woke up this...