The company suggests using blocking tool, but does not plan to issue emergency patch Microsoft late Wednesday confirmed that all versions of Internet Explorer (IE) contain a critical vulnerability that attackers can exploit by persuading users to visit a rigged Web site. Although the company said it would patch the problem, it is not planning [...]

Theo de Raadt says that government contractor Netsec was probably contracted to write back doors to encrypted communications The lead developer of the OpenBSD operating system says that he believes that a government contracting firm that contributed code to his project “was probably contracted to write back doors,” which would grant secret access to encrypted [...]

Microsoft is investigating the unpatched IE vulnerability, an exploit that bypasses ASLR and DEP on Windows 7 Security researchers have released attack code that exploits an unpatched bug in Microsoft’s IE (Internet Explorer) and sidesteps defenses baked into Windows 7. Microsoft said it was looking into the vulnerability. [ Get your websites up to speed [...]

If you have Windows check for updates but not install, latest version of MSE may change your setting without permission Microsoft released version 2.0 of Microsoft Security Essentials last week. Microsoft Security Essentials, you may recall, is the antimalware product that Microsoft offers free to individuals and organizations with 10 or fewer users. It’s the [...]

Security skeptics still dismiss cloud computing as unreliable and insecure — but ready or not, it’s catching on If you’re among the skeptics who dismiss cloud computing as a mere buzzword, take heed: Major organizations have already started their transition into the cloud. If you work in the IT field, you’d best prepare, as your [...]

Consumer technology is here to stay in business settings, so how do you safely embrace it? The invasion of consumer-oriented smartphones and now tablets into business is old news. But we’re beginning to see unintended consequences of the adoption of such devices that users, businesses, and mobile platform providers should pay attention to. For example, [...]

The good news: Jaibreaking is not common. The bad news: Naive users can create a real risk Jailbreaking a smartphone means fiddling with its OS so you can load the applications of your choice, bypassing the requirement to download digitally signed apps only from, say, Apple’s iTunes App Store. Opinions tend to be binary: Either [...]

Apple pulls jailbreak detection from iOS 4, and InfoWorld catches Androids that lie about Exchange policy support — so what can IT trust? Much of security is built on trust, but it turns out you can’t always believe a mobile device’s claims. They can be programmed to lie about their capabilities, as in the case [...]

Users are alerted when they’re about to click on a result that the site could be compromised by hackers Google has started notifying its search engine users of sites in their list of query results that may have been compromised by hackers. For sites that Google believes have been hacked, search engine users will see [...]

Google Chrome, Apple Safari, Firefox, and Opera score low marks in third-party testing Microsoft Internet Explorer suffers a reputation for being insecure, but a recent test by NSS Labs reveals that the browser, especially the recently released Version 9, is the best candidate for protecting users from socially engineered malware. In fact, both IE 8 [...]