News (61)

OpenID at risk due to DNS flaw, warns researcher

A fundamental issue affects the OpenID authentication system, due to its reliance on the Domain Name System, a Sun identity-technology specialist has warned. Read more »

Kaminsky details DNS flaw

Security researcher Dan Kaminsky has offered more details about a fundamental flaw in the Domain Name System and the extent of the vulnerability. Read more »

DNS disaster: first attacks reported

The first attacks that are likely to have stemmed from a serious Domain Name System flaw have been reported. Read more »

Firefox vulnerable to spoofing flaw

Vulnerabilities discovered in Mozilla's Firefox browser last week could be exploited to steal usernames and passwords. Read more »

Microsoft admits to Vista flaw

Microsoft is investigating a security vulnerability which affects Vista, its newly launched operating system. Read more »

Microsoft denies Automatic Update flaw

Blogs were buzzing last week with reports that Windows users who thought they had automatic updates set to either not install or get permission before installing nonetheless had their machines patched and rebooted. Read more »

Flaw found in Office encryption

Snoopers could decode password-protected files in Microsoft programs, a security researcher warns. Read more »

Worm targets Solaris telnet bug

A computer worm is using a recently disclosed flaw in Sun Microsystems' operating system to propagate, experts have warned. Read more »

Apple QuickTime exploit in the wild

Symantec has found active exploit code in the wild for an unpatched Apple QuickTime vulnerability. Read more »

Microsoft mulls early IE patch release

Joris Evers Microsoft may offer an Internet Explorer security update before its next official Patch Tuesday. Read more »

More Blogging, Flaw News Results

Features (3)

Is Agile development secure?

Agile development methodologies might be the new fad in software design but how much emphasis is there on secure code? Read more »

IE is evolving, but is it enough?

Microsoft's Internet Explorer Web browser is in the process of getting its first significant update in two years this week, as part of the company's overhaul of its operating system. Read more »

Is it kill or cure for Oracle's database buy?

Purchase of a company with close ties to open-source rival MySQL has people wondering about the database giant's motives. Read more »

Blog (2)

QuickTime and Firefox combine for insecurity

Nick Gibson [blogs:byteclub] -- A vulnerability in Apple Software's QuickTime media player can be exploited to execute remote javascript code, or by tapping into Firefox's chrome engine can execute remote code of any kind. Read more »

Lack of turn out shows Linux's crossover

Staff [blogs:syslog] -- This week's Roundup looks at the lack of excitement surronding this year's LinuxWorld conference, Dan Kaminsky has finally revealed the details of his DNS flaw and we take a look at the new features to come in Firefox. Read more »

Log in


Sign up | Forgot your password?

Blogs

RSS feed

What's on?