February 9, 2012 - Microsoft published its Patch Tuesday Preview for February of 2012 and as expected we are getting a larger batch of nine bulletins addressing a total of 21 vulnerabilities. Four bulletins are (continue reading...) Read more
February 7, 2012 - While the media just looove zero-day exploits, the security industry sees a lot more exploits designed to take advantage of patched vulnerabilities. Question is why don't many of us get around to installing the patches? (continue reading...) Read more
January 31, 2012 - Assessing the security of SCADA devices has always been a challenging task. SCADA devices are used in several critical infrastructure industries, including power plants, manufacturing, chemical processing, and nuclear reactors. Thus, the high availability and (continue reading...) Read more
January 30, 2012 - Note -- this blog was updated on Feb 2, 2012 to highlight detection of the Symantec advisory SYM12-002 as well as new additional Nessus local checks to audit pcAnywhere installations. With the recent news from Symantec that their source code (continue reading...) Read more
January 10, 2012 - 2012's first Patch Tuesday has seven bulletins, including the postponed bulletin from December 2011 that addresses the BEAST style information disclosure. Talking about changes in schedules, Microsoft also released a bulletin (continue reading...) Read more
January 6, 2012 - Tony Bradley published yesterday a blog entry that contains a great summary of the top security incidents of 2011. This is worth reading for any IT administrator as these attacks will grow (continue reading...) Read more
December 29, 2011 - Today Microsoft released a security bulletin addressing a flaw in ASP.NET that was disclosed early morning yesterday at the Chaos Communication Congress (CCC) in Berlin. Microsoft tested and finished MS11-100 in (continue reading...) Read more
December 9, 2011 - New vulnerabilities are being discovered all the time, and attackers are still exploiting old ones. But how do you deal with the vulnerabilities? Patch them of course. Read more
November 30, 2011 - Do you know how many mobile devices reside on your network? Is your security architecture designed to secure the mobile platform and protect your users and the network from the threats they pose? (continue reading...) Read more
October 21, 2011 - A week after the release of iOS 5 several flaws and vulnerabilities that could affect your data security have been found. Unauthorized calls, Smart Cover unlocks and media access are all possible with system defaults. (continue reading...) Read more
October 12, 2011 - A comprehensive look at the security updates in iOS 5 and OS X Lion 10.7.2. In addition to new features for iOS users, many critical fixes are present. Read more
October 11, 2011 - Guest blog from Amol Sarwate, Manager of Vulnerability Labs for Qualys.Microsoft released today fixes for a total of eight security bulletins, out of which two are marked as critical (continue reading...) Read more
September 15, 2011 - This month, Microsoft issued 5 security bulletins covering 15 vulnerabilities in Excel and Windows. These updates are considered important rather than critical, as by the time of the patch there was no (continue reading...) Read more
August 15, 2011 - With the popularity of the WordPress blogging platform the security researchers here in Websense Security Labs are sure to sit up and take note of any reported zero day affecting the platform itself or the plugins used by blog masters. Recently (continue reading...) Read more
July 12, 2011 - Last month while discussing the enormous quantity of fixes in (continue reading...) Read more
July 6, 2011 - Discover eSafe Content Security v8.6 When it comes to content security, it is essential to stay ahead of the times by incorporating new features and functions for a more secure email and web gateway. We are glad to announce (continue reading...) Read more
June 27, 2011 - An off-port web server is one that doesn't run on the common ports of 80 or 443. Management consoles, development systems, devices that speak HTTP for their protocol and many other systems can run on any port, typically 8080 or 8443. Active (continue reading...) Read more
June 17, 2011 - Earlier this week Adobe released security updates for several of their products and now the CVE-2011-2110 vulnerability in Flash Player is actively being used in drive-by and spear-phishing attacks. Websense customers are protected from this scam (continue reading...) Read more
June 14, 2011 - Adobe has released its latest batch of quarterly security updates covering Flash, Shockwave, Reader, Acrobat, ColdFusion, LifeCycle and Blaze. After only 9 days, another zero-day exploit has been fixed in Adobe (continue reading...) Read more
May 31, 2011 - Considering security in the enterprise is no easy task: it's a complex and ongoing process involving various technological, management and educational controls. However, ESET firmly believes that all businesses need to be prepared to meet this challenge. How better to (continue reading...) Read more