News (150)
Flaw leaves Windows open to Java attack
Microsoft has warned of three flaws affecting its software, the most serious of which would allow an attacker to gain full control of a PC using Java applets. Read more »
JPEG-based virus attack gets closer
A virus writer has got close to exploiting a critical flaw in the way Microsoft Windows handles JPEGs. Read more »
Oracle defends security record
Oracle has shrugged off criticisms of its recent security record, saying that one of the company's biggest security concerns is that its customers are so used to being secure that they are not used to applying patches. Read more »
DNS disaster: first attacks reported
The first attacks that are likely to have stemmed from a serious Domain Name System flaw have been reported. Read more »
Attackers target zero-day Windows flaw
An "extremely critical" vulnerability has been discovered in Microsoft's XML Core Services, according to several security companies. Read more »
Microsoft leaves Word zero-day holes unpatched
Microsoft on Tuesday released fixes for vulnerabilities in its Windows and Office software, but left several known Word zero-day flaws without a patch. Read more »
Microsoft releases 'critical' updates for new programs
Microsoft on Tuesday released fixes for 19 security flaws in several of its products, including the new Internet Explorer 7, Office 2007 and Exchange 2007. Read more »
Microsoft patches six 'critical' flaws
Microsoft has released 11 security patches, six of which are "critical" and five of which are "important", according to the software giant. Read more »
Microsoft patches zero-day Windows Media flaw
Microsoft on Tuesday in the US released seven security updates with patches for 11 security vulnerabilities, most of which affect the Windows operating system. Read more »
Microsoft mulls early IE patch release
Joris Evers Microsoft may offer an Internet Explorer security update before its next official Patch Tuesday. Read more »
Features (13)
Windows' HTML converter vulnerability rated Critical
A problem has been discovered in the way Windows handles HTML file conversion during cut-and-paste. This buffer overrun could allow an attacker to run rogue code. Read more »
Glitch in C++ libraries allows a DoS attack against ISAPI
The Microsoft Foundation Classes static library contains flaws that make ISAPI extensions vulnerable to DoS attacks. Find out why this illustrates a major challenge for developers who need to produce secure applications. Read more »
New weapons in the war against DoS attacks
Industry watchdog groups are warning that denial of service attacks are becoming more destructive each year. Learn about some new tools you can add to your arsenal of DoS defenses to help safeguard your enterprise. Read more »
New security flaw in Outlook, IE
A Danish security researcher has warned that a recently discovered software flaw could leave user's systems open to malicious code carried on Web pages or in e-mails. Read more »
Watch out for IE Local Zone script injection flaw
A flaw in the way Internet Explorer handles some errors, discovered by security company GreyMagic, could result in an attacker being able to read local files on a system or run various scripting commands. Get the details. Read more »
Microsoft to open more source code
Microsoft's shared source chief Jason Matusow talks about whether the company plans to release more Office source code. The question is, does anybody want it? Read more »
Bug hunters, software firms in uneasy alliance
Although many software makers promote responsible disclosure, it isn't universally backed by the security community. Critics say it could make security companies lazy in patching. Full disclosure of flaws is better is preferred. Read more »
Who is responsible for security?
A flurry of worm and viral activity on the Internet raises a question more important than who to blame: What do we do about it? Read more »
WinNuke: coming to a system near you
A reincarnated version of the malicious program WinNuke has surfaced and can affect Windows NT, 2000, XP, and .NET by causing disruption and disablement of network communications. Read more »
ASP.NET security holes
Learn about the recently discovered holes in ASP.NET, and ponder who should be responsible for security. Read more »
Filter Tags
News and features
- Latest
- Popular
- Features
- Most Discussed
-
In this week's roundup we see that continuous whining can get results, Linux users get 64-bit Flash and Moonlight previews, the latest in the Yahoo/Microsoft relationship and Senator Conroy ducks and weave in Senate Question Time. Read more »
-
Sun eye Web developers with Netbeans 6.5Despite the recent employment axe hitting Sun the company has pushed out a new release of its Netbeans open source IDE with an eye to appeal more to Web developers. Read more »
-
BarCamp buzz: Let the hacking continueAttending last weekend's BarCamp in Sydney, it was hard to escape the conclusion that a certain "dot-com bust" flavour had seeped into the kool aid previously being drunk by Australia's web 2.0 and early stage start-up sector. Read more »
-
Interplanetary Internet a possibility
2008/11/21 10:32:55
-
Conroy ducks, Ballmer evades and Android Fails -- Club Builder
2008/11/20 10:58:20
-
Yang's resignation: The talk of Silicon Valley
2008/11/19 16:10:33
What's on?
-
Conroy ducks, Ballmer evades and Android Fails -- Club Builder
Club Builder this week takes a long look at Senator Conroy's recent attempt to explain his Great Firewall of Australia, we chase Steve Ballmer over Sydney, and find Google's biggest bug of the year.