Eight days after the release of exploit code for code execution holes in the Yahoo Messenger IM client, Yahoo has shipped a new version with patches for its Windows user base.
Staying on top of the latest in software/hardware security research, vulnerabilities, threats and computer attacks.
Violet Blue is the author of The Smart Girl's Guide to Privacy. She contributes to ZDNet, CNET, CBS News, and SF Appeal.
Larry Seltzer has long been a recognized expert in technology, with a focus on mobile technology and security in recent years
Monster.com has shut down a rogue server that was accessing its database to hijack personal information from about 1.3 million job seekers.
Ten months ago (October 2006), a member of Google's security team discovered and reported two code execution vulnerabilities in Sun's Java ICC (image) profile parsing code.Seven months later (May 2007), Sun issued an update (JDK 1.
Add Trend Micro, Check Point Zone Labs and ClamAV to the long list of security products that put end users at risk of malicious hacker attacks.
I was just going through the slides from Joanna Rutkowska's Black Hat talk (127-page .ppt file) and discovered that there's another unpatched driver flaw that exposes Windows Vista to kernel tampering.
Virtual machine software powerhouse VMWare has quietly acquired Determina to beef up the security capabilities of hypervisors and virtualized workloads.
Skype is blaming last week's two-day outage on millions of Windows machines restarting after the installation of Microsoft's security patches.
So, Skype just came back up for me after 24 hours of being offline.Then this sudden error message while I was in the middle of a work-related conversation (Skype is my primary phone service for work):With all the speculation swirling that this outage might be linked to a malicious hacking attack, I'm curious about whether this is a random bug linked to network problems or something more sinister.
Sourcefire's acquisition of the ClamAV project -- a deal that includes trademarks and copyrights of the popular open-source anti-virus toolkit -- has raised eyebrows among industry watchers worried about the future of free security products.
The Gentoo Project has removed a server hosting several sites and services after the discovery of a potentially serious command injection vulnerability.