Exchange infinte loop flaw and Sharepoint code execution pose little risk to most admins

Exchange and SharePoint bulletins fix such low risk flaws they don't deserve a full alert.

Posted on: 14 December 2010 | 7:02 pm

Microsoft Black Tuesday: Might as well be a record Patch Day.

According to their Bulletin Summary for December, Microsoft released 17 security updates for Windows, Office, Internet Explorer (IE), and more.

Posted on: 14 December 2010 | 1:16 pm

Expect a stocking full of Microsoft patches for Christmas

If you were looking forward to a slow, relaxing Patch Day this December, it's time to reset your expectation. Microsoft plans to fill your network stocking with updates next Tuesday. Click through to learn how many updates to expect.

Posted on: 9 December 2010 | 7:59 pm

Official ProFTPD source code "backdoored" via a zero day flaw

ProFTPD warned that they've been distributing a booby-trapped version of their FTP server's source code. If you downloaded and installed ProFTPD from a legitimate distribution server between Nov 28 and Dec 1, you likely have a backdoor on your system.

Posted on: 6 December 2010 | 6:03 pm

Microsoft Black Tuesday: Seven Office vulnerabilities make documents dangerous

As expected, Microsoft released three security bulletins; two for Office (and the components that ship with it), and one for Forefront Unified Access Gateway. Unfortunately, they did not release any surprise bulletins or updates to fix the zero day Intern

Posted on: 9 November 2010 | 5:23 pm

November Patch Day brings Office and Forefront updates.

Microsoft plans to release three security bulletins tomorrow, 9 November. The security bulletins will cover vulnerabilities in Office and Forefront Unified Access Gateway. Microsoft rates one of the Office bulletins as Critical, and the rest as Important.

Posted on: 8 November 2010 | 6:31 pm

Zero day Firefox vulnerability exploited on Nobel Peace Prize site.

Security researchers find a zero day Firefox exploit on the Nobel Peace Prize web site. Corey tells you how to protect yourself from this new threat.

Posted on: 27 October 2010 | 6:32 am

Researcher releases zero day Shockwave vulnerability and exploit

A Grey Hat researcher from Abysssec released a critical, zero day vulnerability and exploit for Adobe Shockwave. Adobe hasn't had time to patch. Read on to learn more.

Posted on: 23 October 2010 | 6:30 pm

Microsoft Black Tuesday: Officially the busiest Patch Day ever.

Microsoft has released a record 16 security updates for Windows, Office, Internet Explorer (IE), and some Windows Servers (Sharepoint, Groove, etc).

Posted on: 12 October 2010 | 2:09 pm

Microsoft Black Tuesday: Yet another record-breaking Patch Day in October

Microsoft expects another record setting Patch Day on Tuesday, October 12. Specifically, they plan to release 16 security bulletins, which correct a total of 49 vulnerabilities in Windows, Office, Internet Explorer, and "Windows Server Software."

Posted on: 7 October 2010 | 6:38 pm

Apple releases minor OS X and major Quicktime security updates

Apple released a Quicktime for Windows update to fix two serious vulnerabilities, and a Snow Leopard update to fix one relatively minor one. Click through to learn how to fix both issues.

Posted on: 22 September 2010 | 5:30 am

Microsoft Black Tuesday: Security updates plug holes in Windows, Outlook, and IIS

As expected, Microsoft has released nine security bulletins, fixing 11 vulnerabilities in Windows, Office, and Internet Information Services (IIS).

Posted on: 14 September 2010 | 6:21 pm

Adobe plans to fix Reader and Flash zero day vulnerabilities

Adobe released a Flash security advisory and updated a Reader security advisory. Both advisories announced Adobe's plans to fix zero day vulnerabilities in both applications, which attackers are exploiting in the wild.

Posted on: 14 September 2010 | 11:59 am

September MS Patch Day is full, but not record-breaking

Microsoft will release nine security bulletins, fixing 13 security vulnerabilities next Tuesday, September 14. They rate four of the bulletins as Critical. Click through to learn what to expect.

Posted on: 9 September 2010 | 8:08 pm

Safari 4.1.2 and 5.0.2 fix drive-by download flaws

Apple releases Safari and iOS security updates. Should you be concerned? Click to find out.

Posted on: 8 September 2010 | 12:55 pm