December 12, 2011 - If you've been following this blog for a few years, you probably know that I'm reluctant to play the prediction game, but it seems to be expected at this time of year, so here's my contribution. Java will consolidate its (continue reading...) Read more
December 8, 2011 - Hello all. Before we look at next week’s bulletin release, we’d like to point out an update to our Microsoft Active Protections Program (MAPP) that should provide customers with greater transparency as to how (continue reading...) Read more
December 8, 2011 - Microsoft Holiday Patch Tuesday release will be substantial. We will get 14 bulletins for a total of 20 CVEs. Out of the 14, three are of the highest severity level, "critical", (continue reading...) Read more
December 2, 2011 - The EFF is asking the US Copyright Office to expand exemptions for jailbreaking/rooting devices to include game consoles and other smart devices. We explore the security risks and benefits of their proposal. (continue reading...) Read more
November 23, 2011 - Old hoaxes never die. They just get transplanted to Facebook. Sometimes literally, when a classic email hoax starts to spread with minor emendations through Facebook message or news feeds. In this case, the actual message (at least, as I received (continue reading...) Read more
November 17, 2011 - Since yesterday’s Much Ado About Facebook post in the ESET Threat Blog, we have written additional articles, received a few comments, and also received updated information on the “threat,” so it seems that now is a good (continue reading...) Read more
November 11, 2011 - The Duqu malware has raised the specter of Stuxnet II, with some in the security community claiming that this new Trojan is a reverse-engineered copy of Stuxnet – the infamous malware that may have sold more newspapers than it damaged (continue reading...) Read more
November 10, 2011 - Hi everyone, As a follow-up to Friday’s blog post, today we released Security Advisory 2641690 to notify customers that we revoked the trust of DigiCert Sdn.Bhd in an update that moves two Intermediate Certificate Authorities (CA) certificates to the Microsoft (continue reading...) Read more
November 8, 2011 - There may be a Black Friday this month, but there’s also a happy Tuesday from Microsoft with just 4 bulletins this period. Only one of the bulletins is critical; however its exploitability rating is only a 3 and Microsoft suggests (continue reading...) Read more
November 8, 2011 - Hello, On this November Update Tuesday, we’re recapping the BlueHat conference, which Microsoft hosted in Redmond last week. We are also releasing four security updates, so please read on for details. Microsoft hosted its 11th installment of the BlueHat conference (continue reading...) Read more
November 8, 2011 - Paul Henry, Security and Forensics Analyst for Lumension, discusses the impact of the November 2011 Patch Tuesday releases. Read more
November 7, 2011 - Last week Microsoft published advisory 2639658 for a new 0-day vulnerability in Windows' embedded font processing. The vulnerability now tagged as CVE-2011-2043 has been used in the infection vector for the (continue reading...) Read more
November 3, 2011 - Microsoft have released a security advisory for the vulnerability used in the Duqu Trojan. They are providing a workaround, but it disables the use of embedded True Type Fonts. Read more
November 3, 2011 - Hi everyone, Today we released Security Advisory 2639568 to provide customer guidance for the Windows kernel issue related to the Duqu malware. I would like to provide you information on how to protect your system(s), how we are addressing the (continue reading...) Read more
November 3, 2011 - Hi everyone, This post is to notify customers that Microsoft will revoke trust in an Intermediate Certificate Authority, DigiCert Sdn. Bhd. (Digicert Malaysia) in an update to be released (continue reading...) Read more
November 3, 2011 - The coming November Patch Tuesday will be a light release, as expected. There will be four bulletins, with one of them critical, although only affecting Vista, Windows 7 and 2008 Server (continue reading...) Read more
November 3, 2011 - Hello, As we do each month, we're providing advance notification on the release of four security bulletins, one Critical, two Important, and one Moderate, to address four CVEs in Windows. As usual, the bulletin release is scheduled for the second Tuesday (continue reading...) Read more
November 1, 2011 - Another component of the Duqu malware was acquired by CrySyS and shared with security researchers. This newest component exploits a zero-day vulnerability in the Microsoft Windows kernel. Read more
October 25, 2011 - Enjoy the latest security news in brief by watching 60 Second Security! This episode: the German Bundestrojaner controversy, Sony breached (again!), Duqu dubbed "Son of Stuxnet", OS X anti-anti-virus and Microsoft videos hacked. (continue reading...) Read more
October 23, 2011 - Hackers have taken control of Microsoft's official YouTube channel, removing the company's videos and replaced them with their own. Read more