News (37)

Adobe addresses Flash Player 'clickjacking' flaw

Adobe has addressed a security flaw in its Flash Player products that could lead to 'clickjacking' attacks. Read more »

Red Hat gets hacked

Red Hat warned on Friday that a network attack compromised some servers last week that are involved with both its commercially supported and free versions of Linux. Read more »

OpenID at risk due to DNS flaw, warns researcher

A fundamental issue affects the OpenID authentication system, due to its reliance on the Domain Name System, a Sun identity-technology specialist has warned. Read more »

Microsoft fixes DNS flaw but warns of Word attacks

Microsoft is warning that a Word flaw is being used for targeted attacks, and has also issued four 'important' patches, including one for a potentially serious DNS flaw in the latest Patch Tuesday bulletin. Read more »

Microsoft probing ActiveX attacks targeting Access feature

Microsoft has issued a security advisory warning about targeted attacks being launched that exploit a hole in the ActiveX control for the Snapshot Viewer in the Microsoft Access database management system. Read more »

Debian and Ubuntu OpenSSL generates useless crypto keys

For almost two years the OpenSSL library used by Linux distribution Debian has been generating useless cryptographic keys — although Debian has issued a patch, experts warn that systems may still be exposed. Read more »

Holes in HP Software Update threaten data leakage

HP's Software Update Tool has been found to contain a flaw which can lead to remote code execution or the leakage of sensitive information stored on a PC. Read more »

Olympic trojan horse jumping trials have begun

Once again, criminal hackers are targeting a worldwide event to deposit their malicious software on victims' PCs, according to one security vendor. Read more »

Adobe Flash exploit could log keystrokes

Adobe has issues three critical security updates, one of which is designed to stop a problem in the way the Flash player interacts with browsers, which could result in users' keystrokes being transmitted to attackers. Read more »

Beware of bogus Microsoft security bulletins

Organisations are being warned to be on the lookout for fake Microsoft security bulletins which spammers sent out yesterday to thousands of companies in the US and the UK. Read more »

More Security Advisory News Results

Features (4)

Watch out for IE Local Zone script injection flaw

A flaw in the way Internet Explorer handles some errors, discovered by security company GreyMagic, could result in an attacker being able to read local files on a system or run various scripting commands. Get the details. Read more »

Linux kernel flaw could trigger DoS incidents

Many Linux servers may be easy targets for DoS attacks because of a flaw in the Linux 2.4 kernel. Read more »

Kerberos vulnerability hits Linux/UNIX versions

The Kerberos Administration daemon (kadmind), which is used in connection with Kerberos authentication, contains a buffer overflow vulnerability in many implementations, mostly affecting Linux/UNIX. Read more »

Security through obscurity won't secure your code

Most applications use some form of security through obscurity, but you should avoid it when writing your apps. ZDNet Australia offers these tips on how to tighten up your code. Read more »

Log in


Sign up | Forgot your password?

Blogs

RSS feed

What's on?