A security scare for Microsoft users hit late yesterday, after vulnerability management company Rapid7's Metasploit penetration tool project discovered an Internet Explorer exploit that is said to affect all browsers earlier than IE9, and ...
Security supplier Sophos has combined its endpoint protection and unified threat management (UTM) products into a single physical or virtual appliance. Sophos claims UTM 9 will cut the time and resources IT teams have to spend on ...
Tags: Sophos, UTM, Endpoint Security, Computer Products
An exploit for an unpatched vulnerability in the Microsoft XML Core Services (MSXML) has been incorporated into Blackhole, one of the most widely used Web attack toolkits, according to security researchers from antivirus firm Sophos. The ...
Tags: vulnerability, Microsoft, MSXML, Blackhole, Web attack toolkits
Security firm Websense is to launch cyber security intelligence services to enable businesses to tap into the resources of its research teams. The official launch is scheduled for later this month, but Websense revealed some details of ...
Tags: Websense, cyber security intelligence services, security platform
Adobe on Tuesday announced that it will pair future security updates for its popular Flash Player with Microsoft's Patch Tuesday schedule. At the same time, Adobe issued an update that patched seven critical Flash vulnerabilities, and ...
Tags: Adobe, security updates, popular Flash Player, Microsoft
Computerworld - Two security organizations have released online tools that let Windows users check for possible infections by Gauss, the newly-revealed cyber surveillance malware thought to have been built by one or more governments. ...
Tags: security organization, online tools, Windows, cyber surveillance
Microsoft today said it will patch at least 14 vulnerabilities next week, including four in Internet Explorer (IE), making it three months in a row that the company has plugged holes in its browser. Of the nine updates set for Aug. 14, ...
Tags: Microsoft, vulnerabilities, IE, browser
Hackers are exploiting a zero-day vulnerability in Java 7, security experts said today. The unpatched bug can be exploited through any browser running on any operating system, from Windows and Linux to OS X, that has Java installed, said ...
Tags: vulnerability, Java 7, Macs, Windows and Linux, OS X
Microsoft today released an emergency patch for Internet Explorer (IE) to stymie active attacks that have been exploiting a bug in the browser, finishing a job it started only Monday. "Let's call it five days from advisory to patch," said ...
Tags: Microsoft, emergency patch, IE, stymie active attacks, bug
Oracle has released an out-of-cycle security update to patch newly identified vulnerabilities in Java 7 that have been widely exploited, after the security community urged the company not to wait. The move comes hot on the heels of news ...
Tags: Oracle, Metasploit tool, Blackhole exploit kit, Java vulnerabilities
Microsoft will "draw a line in the sand" come April 2014 when Windows XP exits support, security researchers said today, even if millions of customers are still running the aged OS and a zero-day bug threatens the Windows ecosystem. Or ...
Tags: Microsoft, Windows XP, OS, Windows ecosystem
Incident response investigations are increasingly showing businesses cannot rely on antivirus systems alone for protection, say security researchers. The gap is widening between the common malware threats most antivirus systems will ...
Tags: antivirus systems, security researchers, Ziv Mador, banking malware
If attackers want to get in to an organisation's information systems, they will, says Frank Coggrave, general manager for Europe at e-discovery firm Guidance Software. "Many IT departments still have their heads in the sand on this issue. ...
Tags: information systems, IT departments, security investments, Software
Advanced malware that evades signature-based detection has increased nearly 400% in the past year, research by security firm FireEye has revealed. Companies are being hit by an average of 643 successful infections a week, according to the ...
Tags: FireEye, cyber attack, firewalls, intrusion prevention systems
The latest Java zero-day vulnerability is already available to users of the Metasploit tool and Blackhole exploit kit, say security researchers. The Java vulnerability allows attackers to use a custom web page to force systems to download ...
Tags: Metasploit tool, custom web, coded Java, security, FireEye