Microsoft is investigating reports of a new bug in Internet Explorer. Redmond’s Security Response Team (MSRT) said on Friday that it was aware of a “publicly disclosed issue involving Internet Explorer”, and promised an investigation, without going into details. Circumstantial evidence suggests Microsoft is referring to a post by security researcher Chris Evans, of...
Read more »
Apple’s failure to clean up old code in QuickTime leaves people running Internet Explorer (IE) vulnerable to drive-by attacks, a Spanish security researcher said today. Ruben Santamarta, a researcher at Madrid-based Wintercore who revealed a bug in IE8 last month, today outlined the QuickTime plug-in vulnerability. Hackers only need to dupe users into visiting...
Read more »
According to a report released by M86 Security Labs on July 14, 2010, the most exploited vulnerabilities are usually related to Internet Explorer and Adobe Reader, but the rising target for exploitation is Java, as reported by cnet news on July 14, 2010. The lab in its recent security report for January-June 2010 has...
Read more »
According to a report in the Financial Times, Google is so fed up with Windows 7’s woeful security issues that they are now taking Redmond’s operating system by the pants seat and unceremoniously hurtling it from the building. What machines are employees getting instead? Linux rigs… and Macs. Google’s move might be related to...
Read more »
Attacks employing poisoned PDF files have leaped to the top of the threat list, according to statistics from major security companies. Symantec reports that suspicious PDF files skyrocketed in 2009 to represent 49 percent of Web-based attacks that the company detected, up from only 11 percent in 2008. The next-most-common attack, involving a good...
Read more »
In just months, from seemingly nowhere, Apple’s solo campaign to dethrone Flash as the de facto standard for web video has gathered enough momentum to get over the top. The question is no longer whether HTML5 will or should do the job, but when. Last week signaled the tipping point, when Microsoft confirmed HTML5...
Read more »
Since its launch, Internet Explorer 8 has blocked access to over 560 million sites that it determined were serving malware, or about 3 million blocks per day, said Brandon LeBlanc in a blog post on Friday. However, it is unclear how many of those sites were legitimate, duped into serving malware laced ads, sent...
Read more »
Microsoft said that it patched the critical vulnerability in Internet Explorer (IE) earlier this week because the number of attacks jumped after news broke that the exploit had gone public. Microsoft’s explanation fit the expectations of several security researchers, who earlier this month predicted that the company would release an “out-of-band” update if attacks...
Read more »
Microsoft today announced it will issue an emergency security update for Internet Explorer (IE) tomorrow to patch a zero-day vulnerability that has been used to launch drive-by attacks for at least several weeks. Tuesday’s update will be the second out-of-band update — Microsoft’s term for one outside its normal once-each-month Patch Tuesday — in...
Read more »
