Microsoft Security Bulletin Summary for May 2014
Microsoft published the Microsoft Security Bulletin Summary for May 2014
Hackers now crave patches, and Microsofts giving them just what they want
At least one of Microsoft's Patch Tuesday updates looks like an excellent candidate to hackers as they poke around for bugs in the now-retired Windows XP
Microsoft Security Bulletin Summary for April 2014
Microsoft published the Security Bulletin Summary for April 2014
Microsoft Security Bulletin Advance Notification for April 2014
Microsoft published the Microsoft Security Bulletin Advance Notification for April 2014
Symantec: Hackers already attacking ATMs as Microsofts Windows XP deadline looms
With just two more weeks to go before the end of Microsoft's Windows XP support, a new report by Symantec claims hackers are already finding ways to attack ATMs, most of which use the 12 year old OS
Hackers targeting Microsoft Word and Outlook zero-day vulnerability
The firm releases emergency workaround
Malwarebytes offers Windows XP security support before Microsofts April deadline
Anti-Malware Premium protects XP machines for £23.74 per year
Microsoft Security Bulletin Summary for March 2014
Microsoft published the Microsoft Security Bulletin Summary for March 2014
Windows 7 and XP vulnerabilites rose in 2013
The number of vulnerabilities found in Microsoft's Windows 7 and XP operating systems doubled last year over 2012, with the highest number of flaws reported in Windows 8, according to new research from Secunia.
Apple retires Snow Leopard from support, leaves 1 in 5 Macs vulnerable to attacks
Apple on Tuesday made it clear that it will no longer patch OS X 10.6, aka Snow Leopard, when it again declined to offer a security update for the four-and-a-half-year-old operating system.
New attack completely bypasses Microsoft zero-day protection app
Whitehats' ability to sidestep EMET strongly suggest criminal hackers can, too.
Microsoft issues Fix it patch for IE9 and IE10 zero-day exploit
Microsoft has now issued a formal security warning and a "Fix it" patch for an exploit that affects both Internet Explorer 9 and 10 that was discovered last week
Microsoft spots patched Adobe Flash Player vulnerability
Update now if you're running version 12.0.0.43 or earlier
Microsoft awards another $100,000 bounty for finding a Windows 8.1 exploit
Microsoft's ongoing bounty program for finding Windows 8.1 exploits has resulted in another $100,000 reward that is being paid to a researcher who discovered Mitigation Bypass variants
Kickstarter hacked
Hackers breached Kickstarter's defenses and stole the information of an unspecified number of customers
IE10 under attack as hackers exploit zero-day bug
FireEye today said it had discovered that attackers are actively exploiting a new, unpatched vulnerability in Internet Explorer 10.
Researchers reveal super-spying malware
Security researchers at Kaspersky have uncovered The Mask, a cyber spying campaign believed to have been started in a Spanish-speaking countr
Microsoft Security Bulletin Summary for February 2014
Microsoft published the Security Bulletin Summary for February 2014
Microsoft Security Bulletin Advance Notification for February 2014
Microsoft posted the Security Bulletin Advance Notification for February 2014
AV vendors buck Microsoft, will deliver Windows XP anti-malware signatures for years
Windows XP owners can expect most antivirus vendors to continue providing up-to-date signatures long after Microsoft pulls its patch plug in April, but that won't keep their machines safe, an expert said today.
Microsoft Security Bulletin Summary for January 2014
Microsot published the Microsoft Security Bulletin Summary for January 2014
Microsoft Security Bulletin Advance Notification for January 2014
Microsoft published the Microsoft Security Bulletin Advance Notification for January 2014
SecOps failure: GPG+Gmail on OSX Mavericks may store unencrypted drafts
Despite settings to the contrary, plaintext messages stored on IMAP servers.
Microsoft releases certificate spoof fix for Windows XP, Server 2003
The company initially released protection against improper certificates issued by the French government certificate authority without support for XP and Server 2003, but have now come through.
Microsoft Security Bulletin Summary for December 2013
Microsoft published the Microsoft Security Bulletin Summary for December 2013
Microsoft boosts online account security for Outlook and SkyDrive with activity monitoring
Firm urges users to enable security features
Microsoft Security Bulletin Advance Notification for December 2013
Microsoft published the Microsoft Security Bulletin Advance Notification for December 2013
Microsoft warns of Windows XP zero-day exploit in the wild
Allows attackers to gain access to data and install programs
Hackers actively exploiting JBoss vulnerability to compromise servers, researchers say
Attackers are actively exploiting a known vulnerability to compromise JBoss Java EE application servers that expose the HTTP Invoker service to the Internet in an insecure manner.
HP researchers find zero-day exploit in IE11 on Windows 8.1
Two researchers from HP demonstrated a previously unknown zero-day exploit in Internet Explorer 11 running on Windows 8.1 during a session of the Mobile Pwn2Own hacking contest
Adobe patches critical vulnerabilities in Flash Player, ColdFusion
Adobe Systems released security updates for Flash Player, AIR and ColdFusion to fix critical vulnerabilities that could allow attackers to take control of affected systems or read information from servers without authorization
Microsoft Security Bulletin Summary for November 2013
Microsoft published the Microsoft Security Bulletin Summary for November 2013
Microsoft to fix IE zero-day bug today with security patch
Microsoft has announced that a zero day bug discovered in many versions of Internet Explorer will be fixed via a security patch later today
Security researchers laud Microsoft, Facebook bug bounty programs
Facebook and Microsoft are winning plaudits from security researchers for launching an initiative to offer bounties to bug hunters who discover and report vulnerabilities in widely used products
New IE zero-day attack reported
Researchers at network security company Fireeye have identified a zero-day exploit of Internet Explorer on a breached web site
Microsoft Security Bulletin Advance Notification for November 2013
Microsoft published the Microsoft Security Bulletin Advance Notification for November 2013
'Operation Hangover' hackers exploit latest Windows zero-day
The unpatched vulnerability in Windows that Microsoft acknowledged on Tuesday has been used by a known Indian hacker group responsible for earlier "Operation Hangover" attacks, security company Symantec said
Microsoft releases workaround fix for Office, Lync and Windows Server exploit
Hole being hit by targeted attacks from the Middle East and South Asia
Microsoft offers bug hunters $100,000 for early attack alerts
Tech giant takes on blackhat community with new bounty system
Google will pay open source vulnerability finders
Google is going to start paying the security community for discovering open source software vulnerabilities and will pay bug bounty rewards up to $3,133.7
Microsoft pays out $28K to IE bug hunters in its first-ever bounty program
Microsoft paid more than $28,000 in rewards to researchers for its first bug bounty program, a one-month special it ran during the summer for the preview version of Internet Explorer 11.
Update for Internet Explorer Flash Player
Microsoft has released an update for Internet Explorer Flash Player for Windows 8/8.1 and Server 2008/R2
70 percent of business users vulnerable to latest Internet Explorer Zero-Day
According to Microsoft, a zero day flaw in Internet Explorer (IE), which impacts all versions of the browser, is being actively exploited in the wild. Reports of exploitation, according to Microsoft, seem to have criminals focused on IE versions 8 and 9.
Latest iOS 7 bug allows calls to be made from a locked iPhone
An iOS 7 user has discovered a worrying security flaw within the software, which enables calls to be made while the iPhone is locked
Microsoft issues fix to stop active attacks exploiting serious IE bug
Temporary "fix it" plugs remote execution hole being used in targeted attacks.
Microsoft Security Updates 10/09/13 #2
Microsoft has published the second round of today's security updates:
Microsoft Security Updates 10/09/13
Here a roundup of today's Microsoft security updates:
Microsoft Security Bulletin Advance Notification for September 2013
Microsoft published the Security Bulletin Advance Notification for September 2013
New York Times and Twitter DNS registrar hacked by Syrian Electronic Army
The domain name servers of the New York Times, Twitter and Huffington Post UK have been hacked by the Syrian Electronic Army
Microsoft Security Bulletin Re-Releases for August 27, 2013
Microsoft published the Microsoft Security Bulletin Re-Releases for August 27, 2013
