Security


19-Year-Old Windows Flaw Finally Gets a Fix

Microsoft has released a fix for a vulnerability that has been hidden in plain sight since 1995.

Survey: Security Threat Increase Predicted

The sophistication of attackers is outstripping chief information security officers' (CISOs) ability to fend them off and the number of threats has increased markedly.

Windows 10's ID Management and Security Controls

Microsoft outlined some of the new security features making its way to the company's next OS.

Microsoft Shuts Down Trustworthy Computing Group

Among the 2,100 employees laid off on Thursday, Microsoft shut down the company's Trustworthy Computing (TwC) Group.

Microsoft's September Patch: IE Zero-Day Flaw Gets Fix

Microsoft's monthly Security Update was released on Tuesday with one bulletin item rated "critical" and three "important" items.

Microsoft Releases 'Critical' IE and Windows Media Center Fixes

Microsoft released August's patch on Tuesday with nine bulletins -- two rated "critical" and seven rated "important" -- that address 37 flaws across multiple Microsoft products.

Out-of-Date ActiveX Blocking Delayed Until September

Microsoft announced that its plans to blocks older installations of ActiveX for Internet Explorer has been pushed back to Sept. 9.

Ransomware Targeting Synology NAS Servers Encrypts User Data

Ransomware that is currently going after Synology network attached storage (NAS) servers has been disclosed by the Taiwan-based storage hardware maker Synology.

Internet Explorer To Block Outdated ActiveX Versions

ActiveX blocking capabilities will be making their way to Internet Explorer browsers on Aug. 12, according to Microsoft.

EMET 5.0 Security Tool Released

Microsoft's Mitigation Experience Toolkit (EMET) 5.0 is now generally available, the company announced today.

Microsoft Downplays Disclosed Active Directory Flaw

A vulnerability in in Active Directory could lead to an attacker gaining access to a system and changing user passwords, according to a security firm disclosure.

Oracle Patch Includes 20 Java Flaw Fixes

Oracle's quarterly Critical Patch Update (CPU) arrived on Tuesday with 113 security flaw fixes for multiple Oracle products, including 20 for Java Standard Edition (Java SE).

Microsoft's July Patch Causing 2 Different Crash Flaws

Issues concerning Microsoft's July security update, released last week, have led to crashes for many users. One is connected to the InstallShield application and another is a compatibility issue with Dell Data Protection suite.

Spoofed Google and Yahoo SSL Certs Blocked by Microsoft

In a security advisory released by Microsoft today, 45 sensitive secure sockets layer (SSL) certificates that have been unofficially issued by hackers are now blocked for Windows systems.

Microsoft Security Update for July Released, 29 Flaws Addressed

Microsoft today released its monthly security update, which includes two items rated "critical," three "important" bulletins and one "moderate" fix.

Microsoft Tweaks Windows Update Client

An update to Microsoft's Windows Update/Microsoft Update client was released this week.

Man-in-the-Middle OpenSSL Vulnerability Gets Fix

Those using the online encryption protocol OpenSSL are urged to upgrade their client due to a recently discovered flaw, according to the OpenSSL Foundation.

Microsoft Offers Security Bulletin Reporting Tool

Microsoft this week has released the "myBulletins" online service -- a tool that allows IT to pick and choose which product patches to be informed about.

Windows XP Hack Allows Access to Windows Embeded Updates

According to Betanews, a registry workaround can push through official security updates to Windows XP -- but there's a catch.

'Just Enough Administration' PowerShell Security Controls Previewed at TechEd

This week at Microsoft's TechEd conference, the company showed off the new PowerShell-based server protection scheme for IT pros called "Just Enough Administration" (JEA).

MCPMag.com

Sign up for our newsletter.

I agree to this site's Privacy Policy.