HomeBlogsSecurity Watch

Security Watch

Where’s Microsoft on CVSS Support?

Cisco has joined Oracle and others supporting the Common Vulnerability Scoring Standard, but unless Microsoft joins the party, the flaw rating scheme will continue...

Cisco + IronPort = Done Deal

The rumor mill is buzzing tonight about an $825 million merger between Cisco and IronPort.

Flash Phishing, MySpace Passwords and Hacking PDFs

LINKS DU JOUR: Google's blacklisted URL database is chock-full of MySpace log-in credentials; Who knew Symantec had a full-fledged rock band?

VLC Media Player Bug Bites at Apple

UPDATE: The second flaw warning in the Month of Apple Bugs project is for a remote code execution issue affecting the cross-platform VLC media...

Google Serves Ads in Phishing Attacks

TGIF Links du jour: Inside the Vista proof-of-concept; Month of Apple Bugs reaction; Google makes money from phishing attacks; Is Intel indirectly sponsoring an...

Patch Watch: Firefox, Apple QuickTime Flaw Fixes

Mozilla has shipped a "highly critical" Firefox update to correct multiple security bugs that could cause cross-site scripting, information disclosure, denial-of-service and system access...

Coming in January: Month of Apple Bugs

The hacker behind the MoKB (Month of Kernel Bugs) plans to take a big bite out of Apple Computer's insecurities.

MS Investigating Vista Zero-Day Exploit Sale

Microsoft's security response team is trying to verify the accuracy of reports that underground hackers are selling zero-day exploits for Windows Vista.

ORDB.org Calls It Quits

After five-and-a-half years of maintaining IP addresses of verified open SMTP relays, ORDB.org is calling it quits, citing irrelevance as the main reason.

IE 7 Code Execution Exploit; Yahoo IM Patch

Links du jour: A sampling of useful security stories that may have slipped through the cracks ...