Organized cybercrime: bad guys go pro, highlighting “customer service”

This increasing “professionalization” of the cybercrime industry is troubling for many reasons. Security expert, Deb Shinder looks into this.

Continue reading

UPDATE 2: Microsoft recommends uninstalling problematic updates

Microsoft has reportedly recommended to customers that they uninstall the KB2982791 (MS14-045) update, which is an update that was supposed to fix kernel-mode driver vulnerabilities. It’s also investigating additional problems with three more of the August update.

Continue reading

UPDATE: Patch problems galore – and a community-provided fix

Microsoft update causes problems for users affecting Outlook archived mailboxes and some experiencing blue screens. Community provided fix available.

Continue reading

You’ve got (malicious) mail

Unfortunately, email-based malware has gotten much more malevolent over time. And security pros should not see email as “old hat” or an outdated form of attack. Deb Shinder explains why.

Continue reading

August Patch Tuesday roundup

Nine security bulletins were released in August, addressing 37 vulnerabilities, most of them in Windows and a few in server products.

Continue reading

Microsoft bumps up security on IE after it earns title of “most exploited browser”

Microsoft is adding a new security feature to Internet Explorer. It’s called Out-of-date ActiveX Control Blocking.

Continue reading

More bad news for iOS users

At Black Hat USA 2014, researchers presented new ways to “exploit unpatched iOS vulnerabilities for fun and profit”. Deb Shinder tells us more about this in her post.

Continue reading

August Advance Notification: Patched to the nines

August is bringing us a total of nine security updates from Microsoft that will be coming down the pike next Tuesday – two critical; seven important.

Continue reading

Third party patch and vulnerability roundup – July 2014

Starting off with a follow-up on a Microsoft patch that caused some problems, here’s our third-party roundup for July.

Continue reading

Poisoned Apple: Is iOS intentionally insecure?

Apple is being accused as having intentionally built exploitable vulnerabilities into their iOS mobile operating system, to serve as a “back door” that would enable law enforcement agencies to surreptitiously glean certain user data from the devices.

Continue reading