Unlike Bush, CNet’s John Roberts admits mistakes:
Earlier today, Mark Pilgrim took CNET to task for presuming to create YAML (Yet Another Markup Language). That was decidely not the case, but there was cause for confusion.The culprit? An old feed, not RSS, which was mistakenly listed on the CNET Download.com RSS page and presented as if [...]
Tags: Feature
The Register gives sage advice for avoiding the recently discovered Netsky variant:
Advice to defend against Netsky in all its varied guises follows a familiar pattern: update AV signature files, apply patches, use a personal firewall and wear a regulation tin-foil hat.
Source: The Register
Tags: Feature
Mike Nash’s group sponsored a chat this morning about security. I missed it but there is already another one scheduled on May 13, the Thursday after next month’s Patch Tuesday:
Security in Microsoft ProductsJoin Mike Nash, Vice President for the Microsoft Security Business Unit, and his team of security experts each month. Microsoft is working hard [...]
Tags: Feature
“Patch Tuesday” apparently sparked hostile vulnerability scanning even before the patches were released:
Among the vulnerabilities addressed in patches released this week is a fix for an SSL flaw that left Windows 2000 and NT4 SSL sites open to remote compromise.
Mike Prettejohn, a director at Netcraft, said scanning activity for SSL vulnerabilities across the Net increased [...]
Tags: Feature
Some people are not happy with the way Microsoft is approaching security with this Tuesday’s patch releases. Note that some of the vulnerabilities covered in the patches were identified by third parties as early as last September:
However, some security researchers took the software giant to task for waiting to release a particular patch that covers [...]
Tags: Feature
According to F-Secure a new variant of NetSky has been discovered:
A new Netsky variant was found - Netsky.V. It does not send itself as an attachment but uses HTML emails which exploit vulnerability known as Microsoft Internet Explorer XML Page Object Type Validation Vulnerability and tries to download and execute itself from an infected host.
Source: [...]
Tags: Feature
