January 21, 2010 - Web site defacements have been in the news lately and site owners are blaming their vendors. The first one came on January 12 when Baidu, the top search engine in China (especially if (continue reading...) Read more
January 20, 2010 - Microsoft has announced that tomorrow, Thursday January 21, they will release an out-of-band update to Windows and Internet Explorer to fix the vulnerability that was exploited in the infamous Aurora attacks. (continue reading...) Read more
January 18, 2010 - In their weekly podcast, Ryan Naraine and Dennis Fisher of Kaspersky's Threatpost speculate that the political pressure surrounding the IE 0-day is such that Microsoft will issue an emergency patch. This makes (continue reading...) Read more
January 18, 2010 - Researcher Dino Dai Zovi says he has moved the Aurora exploit to the next level. On Twitter, he stated: "And now my Aurora exploit works on IE7 on Vista as well (continue reading...) Read more
January 16, 2010 - Famed researcher HD Moore created a usable proof-of-concept exploit last night for the 0-day vulnerability in Internet Explorer used in the attack incident that everyone is now calling Aurora. It's a (continue reading...) Read more
January 14, 2010 - New evidence points to a previously unknown vulnerability in Internet Explorer as the hole through which criminals recently attacked Google and other companies, rather than a known, but unpatched vulnerability in Adobe (continue reading...) Read more
January 14, 2010 - That's what they're calling it at ISC: PDF Babushka, because it's a PDF nested inside another PDF. Click here if you need the joke explained. I won't repeat the gritty analysis (continue reading...) Read more
January 12, 2010 - Adobe has released a security advisory and other details on today's updates to Adobe Reader and Acrobat. The advisory lists 8 vulnerabilities fixed in the new versions 8.2 and 9.3, including (continue reading...) Read more
January 12, 2010 - Adobe has released versions 8.2 and 9.3 of Acrobat and Reader, making significant new security changes in all variations. Windows, Mac and UNIX versions are all available. We haven't yet seen any blog (continue reading...) Read more
January 9, 2010 - When Adobe issued the advisory for the most recent serious vulnerability in Acrobat and Reader they used it for the first application of their JavaScript Blacklist Framework. This framework allows users (continue reading...) Read more
January 8, 2010 - Search engine poisoning is an old story for malware, but Websense came up with a new twist on the problem: Poisoned results from the search box on office.microsoft.com. (See below for (continue reading...) Read more
January 8, 2010 - At the CES trade show in Las Vegas, InternetSafety.com announced the newest version of its popular Safe Eyes parental control program. With version 6.0, the (continue reading...) Read more
January 7, 2010 - Public key encryption works because it's easy to multiply two large numbers together, but very hard to calculate the factors of a large number. Doing so is largely a brute force process (continue reading...) Read more
January 5, 2010 - I haven't made any hard predictions for 2010 yet, but it could be the first year of Internationalized Domain (continue reading...) Read more
January 5, 2010 - I'm not sure what put it in my mind, but yesterday I recalled the anti-virus support built into Apple's OS X 10.6 (Snow Leopard) and how it shipped with a whopping (continue reading...) Read more
January 5, 2010 - In an interview with Kaspersky's ThreatPost (podcast and transcript), Adobe security chief Brad Arkin revealed that Adobe is working on a new version of their updater software that will automatically download (continue reading...) Read more
January 5, 2010 - A blog entry by Randy Abrams of ESET, an anti-malware company long known for advances in heuristic detection, explains the differences between heuristic and generic detection. You'll often see malware detection IDs (continue reading...) Read more
January 4, 2010 - Symantec has revealed a bug in SEPM (Symantec Endpoint Protection Manager) that prevents new updates to AV/AS/IPS definitions. All such updates dated after December 31, 2009, 11:59 P.M. (continue reading...) Read more
January 4, 2010 - Today I came across a reference to a web service called Wepawet, which scans PDF, Flash and JavaScript files for malicious content. Wepawet is a project of the Computer Security Group (continue reading...) Read more
January 4, 2010 - The Internet Storm Center at the SANS Institute has a highly-technical, but well-written and fascinating description of a new malicious PDF making the rounds. This exploit utilizes an unpatched vulnerability (continue reading...) Read more