News (130)
Flawed Safari browser endangers Windows users
Two security flaws have been found in the recently released Windows version of Apple's Safari browser — despite Apple's attempts to increase the user-base for Safari, its small size will help protect users, say security experts. Read more »
Microsoft exec kicks off new browser security war
Internet Explorer is more secure than Firefox, according to a senior Microsoft executive, who compared how many vulnerabilities were found in the two browsers -- but critics say his study is flawed. Read more »
Kaminsky details DNS flaw
Security researcher Dan Kaminsky has offered more details about a fundamental flaw in the Domain Name System and the extent of the vulnerability. Read more »
Mozilla patches Web browser flaw
Mozilla has patched a flaw in its popular browser Firefox that could have allowed users' computers to be taken over by visiting Web sites infected with malware -- a popular form of attack in recent times Read more »
DNS disaster: first attacks reported
The first attacks that are likely to have stemmed from a serious Domain Name System flaw have been reported. Read more »
DNS exploits are happening
A fatal flaw with the DNS (Domain Name System) was currently being exploited in internet attacks and more attacks were likely, the security researcher who discovered the flaw said on Thursday in the US Read more »
Microsoft, Mozilla look into browser flaws
Microsoft and Mozilla are each working to tackle recently disclosed security flaws in the Internet Explorer and Firefox Web browsers. Read more »
BlackBerry PDF flaw exposes corporate networks
BlackBerry maker Research in Motion is warning businesses to disable the function which allows a BlackBerry to read PDF files until it can issue an update, after a security flaw was found in the company's software. Read more »
Microsoft patches three critical browser flaws
Microsoft on Friday released a patch for Internet Explorer designed to close three critical holes in the browser, including one that paved the way for the Download.Ject Trojan horse. Read more »
Security flaw discovered in latest Firefox update
Vulnerability researcher Ronald van den Heetkamp published a directory traversal flaw in Firefox version 2.0.0.12, just hours after Mozilla release the latest version of its browser. Read more »
Features (14)
Windows' HTML converter vulnerability rated Critical
A problem has been discovered in the way Windows handles HTML file conversion during cut-and-paste. This buffer overrun could allow an attacker to run rogue code. Read more »
Watch out for IE Local Zone script injection flaw
A flaw in the way Internet Explorer handles some errors, discovered by security company GreyMagic, could result in an attacker being able to read local files on a system or run various scripting commands. Get the details. Read more »
When will Microsoft fully embrace Web standards?
I recently revisited the issue of using Web standards when working with Microsoft SharePoint 2007 and Outlook 2007. The products' lack of adherence to Web standards was surprising given the advancements incorporated in Internet Explorer 7. Read more »
IE is evolving, but is it enough?
Microsoft's Internet Explorer Web browser is in the process of getting its first significant update in two years this week, as part of the company's overhaul of its operating system. Read more »
Are keywords the answer for font sizing?
With font sizes in CSS, you have three choices: absolute measurements, relative measurements, and keywords. Here's why we think keywords are the best compromise Read more »
Bug hunters, software firms in uneasy alliance
Although many software makers promote responsible disclosure, it isn't universally backed by the security community. Critics say it could make security companies lazy in patching. Full disclosure of flaws is better is preferred. Read more »
Develop a VoiceXML solution using BeVocal
VoiceXML (VXML) is a markup language like HTML. The difference is that a phone browser rather than a Web browser renders VXML. Get started with this article. Read more »
The secrets of open source security
The Linux vs. Windows security debate is a contest of examples, which stand in place of the concepts that comprise a larger, more fundamental question of what the security benefits and detriments are for the open source and closed source development models. Read more »
Develop secure software at the application level
Protect your application from input overflow and underflow attacks, and from other common tactics with these development techniques. Read more »
Get a grip on your site traffic with ClickTracks
The market is flooded with click-stream analysis tools, and each one claims to provide you with data. See why ClickTracks may be head and shoulders above the rest. Read more »
Blog (2)
QuickTime and Firefox combine for insecurity
-- A vulnerability in Apple Software's QuickTime media player can be exploited to execute remote javascript code, or by tapping into Firefox's chrome engine can execute remote code of any kind. Read more »
What to expect from Rich Internet Applications
-- I had a look this week at what the developers claim to be the world's largest Adobe Flex application. Read more »
Filter Tags
News and features
- Latest
- Popular
- Features
- Most Discussed
-
Apple to developer: Fart jokes aren't funnyWhen Apple announced it would be vetting every application submitted for inclusion in the App Store, this was just the kind of question that entered many a mind: just how arbitrary would the company be in wielding that veto power? Read more »
-
Chrome is just another browserHands up if you missed the Chrome release -- didn't think anyone did. Google's browser arrived with all the fanfare and hype that only Google can produce. Read more »
-
Melbourne-based Web start-up 2Vouch yesterday launched the first public beta of what it dubs its "social recruiting platform". Read more »
-
2008/09/05 15:16:44
-
The future of software development practices
2008/08/15 10:04:19
-
Essential Unified Process according to Ivar Jacobson
2008/08/15 09:55:09
What's on?
-
Club Builder: Space, Ubiquity and Microsoft Tri-Soapbox
In this episode of Club Builder: a new Firefox plug-in makes browsing more powerful, computer viruses enter orbit, and Microsoft gets a three-way serve of soapboxing.
