Symantec has reported that the Neosploit toolkit has been updated to include attack vectors for the recent Microsoft Access ActiveX vulnerability. Neosploit is a toolkit for sale on the market (price estimates fall between $1500-$3000) that seeks to automate and extend the capability of browser exploits.
Staying on top of the latest in software/hardware security research, vulnerabilities, threats and computer attacks.
Violet Blue is the author of The Smart Girl's Guide to Privacy. She contributes to ZDNet, CNET, CBS News, and SF Appeal.
Larry Seltzer has long been a recognized expert in technology, with a focus on mobile technology and security in recent years
Kris Kaspersky, author of numerous books on reverse engineering and software engineering, will be presenting his research on remote code execution through Intel CPU bugs at the upcoming Hack in the Box Security Conference in Malaysia.
Update: TSA has commented on the CNN story on their website.From our good friend Dave Lewis from Liquidmatrix Security Digest, and memorable quotes from Samuel L.
A XSS worm was crawling across Justin.tv, the popular lifecasting platform at the end of June, details of the incident emerged in the middle of last week.
Database server giant Oracle plans to ship patches for a total of 45 security vulnerabilities on Thursday (July 17), bringing the vulnerability count for 2008 to a whopping 112.Since January 2006 (this CPU included), Oracle has shipped fixes for a total of 572 vulnerabilities.
Update: Dancho Danchev informed that this actually relates back to his article on from last week. Apparently I reposted with less information than the original, so I apologize to Dancho for that.
Updated: Conversations in the talkbacks have been very fruitful, pointing out that Apple does not make anything off of these SMS messages. Originally I had thought that Apple would take a cut from the AT&T profits and that this was the reason why they are the exclusive provider.
Finally, after months of waiting, iPhone users finally get security fixes for a batch of known software vulnerabilities.The latest iPhone 2.
It my recent story on "Patching the Internet" a discussion on how Dan Kaminsky broke, then subsequently helped fix DNS and the Internet, a lot of discussion centered around how the patch was breaking various software firewall applications. Most notably I heard talk of ZoneAlarm having issues.
Apple released patches for its Apple TV 2.1 product yesterday.