MCPMag.com

Sign up for our newsletter.

I agree to this site's Privacy Policy.

Security


Microsoft Previews 7 Fixes for First Security Patch of 2012

January's Security Update from Microsoft will feature six fixes for Windows and one fix for Microsoft developer tools, according to the company's advance notice.

Microsoft Internet Explorer Updates To Be Automated

Microsoft will start silent updates of users' Internet Explorer browsers next month.

Microsoft Makes Naughty List With 13 Bulletins for December

Plus: Fictionalizing the zero-day attack; Be careful what you type when shopping.

Microsoft's December Security Patch Laden with 13 Bulletins

December's security update comes with 13 bulletins fixing a range of Microsoft products. The good news? Only three are rated critical.

Microsoft Preps 14 Fixes for Upcoming Patch Tuesday

Microsoft released 14 bulletins previewing fixes for a range of remote code execution and elevation of privilege exploits.

Adobe Reader Flaw Hits Windows

Plus: Mobile attacks still in a learning curve, Facebook hole exposes private photos of members.



Microsoft Wants You for Security Essentials Beta

Plus: One dumb hacker tries to blackmail his way into a job; FBI cracks down on counterfeit merchandise online.

Microsoft Aims for Fewer Patch Restarts with Windows 8

Windows 8 will arrive with a promise to minimize the amount of mandatory restarts after the installation of monthly and out-of-band updates.

4 Security Bulletins Released by Microsoft in Light November Update

Microsoft released its security update for November today with only four bulletins -- one item deemed "critical," two "important" and one "moderate."

Microsoft Releases Temporary Workaround for Duqu Zero-Day Kernel Issue

Microsoft today released a workaround, documented in Security Advisory 2639658, that will prevent the Duqu malware from entering a targeted system through a Windows kernel issue.

Windows Zero-Day Exploit Linked to Duqu Worm

A zero-day vulnerability discovered on Tuesday by Microsoft is being targeted by attackers as an open door to spread the Duqu malware.

Microsoft Settles with Alleged Malware Culprit

Lawyers for Microsoft have come to an out-of-court settlement with Czech Republic-based Dotfree Group and its owner over involvement in the Kelihos botnet ring.

Trojan Relative of Stuxnet Hits Web

A Trojan apparently being used to gather information for a future Stuxnet-style attack, was found in European industrial systems, according to Symantec.

Microsoft's October Security Bulletin Addresses 23 Flaws

Microsoft is keeping IT pros busy this week as it issues two security bulletins rated "critical" and another six rated "important," all addressing 23 assorted flaws.

Microsoft Readies 8 Security Fixes for October

Microsoft's advanced notification lists two critical and six important patches will be delivered in next week's Patch Tuesday update.

Government's Crosshairs On Cybersecurity for October

Celebrate National Cybersecurity Awareness Month with these guidelines presented by the U.S. government. Plus: Google and Microsoft fling malware accusations; Redmond hogging credit for latest botnet take down?

Security Advisory for SSL/TLS Flaw Released by Microsoft

In response to a new threat of attack caused by a flaw in the Secure Socket Layer (SSL) 3.0 and Transport Layer Security (TLS) 1.0, Microsoft has issued Security Advisory 2588513, which contains a description and workarounds.

Windows 8 Dual Boot Possible If 'Secure Boot' Disabled

Microsoft addressed a claim that Windows 8 will not allow Linux operating systems to coexist in a dual-boot configuration on PCs.

Security Advisory Targeting Web Certificates Receives Update

Security Advisory (2607712) got a re-release yesterday from Microsoft after the previously flawed update failed to include all blocked Web certificates from a Dutch certificate firm.

Microsoft's September Patch Has Five 'Important' Items, None 'Critical'

Five "important" security bulletins arrived as scheduled for September's Patch Tuesday; one important fix takes care of a load jacking exploit.