Security


Microsoft's September Patch: IE Zero-Day Flaw Gets Fix

Microsoft's monthly Security Update was released on Tuesday with one bulletin item rated "critical" and three "important" items.

Microsoft Releases 'Critical' IE and Windows Media Center Fixes

Microsoft released August's patch on Tuesday with nine bulletins -- two rated "critical" and seven rated "important" -- that address 37 flaws across multiple Microsoft products.

Out-of-Date ActiveX Blocking Delayed Until September

Microsoft announced that its plans to blocks older installations of ActiveX for Internet Explorer has been pushed back to Sept. 9.

Internet Explorer To Block Outdated ActiveX Versions

ActiveX blocking capabilities will be making their way to Internet Explorer browsers on Aug. 12, according to Microsoft.

Ransomware Targeting Synology NAS Servers Encrypts User Data

Ransomware that is currently going after Synology network attached storage (NAS) servers has been disclosed by the Taiwan-based storage hardware maker Synology.

EMET 5.0 Security Tool Released

Microsoft's Mitigation Experience Toolkit (EMET) 5.0 is now generally available, the company announced today.

Microsoft Downplays Disclosed Active Directory Flaw

A vulnerability in in Active Directory could lead to an attacker gaining access to a system and changing user passwords, according to a security firm disclosure.

Oracle Patch Includes 20 Java Flaw Fixes

Oracle's quarterly Critical Patch Update (CPU) arrived on Tuesday with 113 security flaw fixes for multiple Oracle products, including 20 for Java Standard Edition (Java SE).

Microsoft's July Patch Causing 2 Different Crash Flaws

Issues concerning Microsoft's July security update, released last week, have led to crashes for many users. One is connected to the InstallShield application and another is a compatibility issue with Dell Data Protection suite.

Spoofed Google and Yahoo SSL Certs Blocked by Microsoft

In a security advisory released by Microsoft today, 45 sensitive secure sockets layer (SSL) certificates that have been unofficially issued by hackers are now blocked for Windows systems.

Microsoft Security Update for July Released, 29 Flaws Addressed

Microsoft today released its monthly security update, which includes two items rated "critical," three "important" bulletins and one "moderate" fix.

Microsoft Tweaks Windows Update Client

An update to Microsoft's Windows Update/Microsoft Update client was released this week.

Man-in-the-Middle OpenSSL Vulnerability Gets Fix

Those using the online encryption protocol OpenSSL are urged to upgrade their client due to a recently discovered flaw, according to the OpenSSL Foundation.

Microsoft Offers Security Bulletin Reporting Tool

Microsoft this week has released the "myBulletins" online service -- a tool that allows IT to pick and choose which product patches to be informed about.

Windows XP Hack Allows Access to Windows Embeded Updates

According to Betanews, a registry workaround can push through official security updates to Windows XP -- but there's a catch.

'Just Enough Administration' PowerShell Security Controls Previewed at TechEd

This week at Microsoft's TechEd conference, the company showed off the new PowerShell-based server protection scheme for IT pros called "Just Enough Administration" (JEA).

MDM TechEd Announcements Explained by Microsoft Exec

Microsoft's themes coming out of the TechEd keynote this year included mobile device management and security controls.

App Compatability Issues May Occur with Microsoft's EMET Security Tool

Microsoft's free Enhanced Mitigation Experience Toolkit (EMET) may not operate correctly for some apps.

Internet Explorer Zero-Day RCE Flaw Revealed

A new zero-day Internet Explorer flaw that has been seen to be used in limited online attacks, according to Microsoft.

Report Cites Busy 2013 for Web App and POS Incidents

According to findings in the latest Verizon security report, the majority of security attacks last year related to Web app attacks and retailer point-of-sale (POS) breaches.

MCPMag.com

Sign up for our newsletter.

I agree to this site's Privacy Policy.

Upcoming Events