Security: Apple releases massive security update

"Known as APPLE-SA-2008-03-18 Security Update 2008-002, it contains more than 40 specific fixes for versions of Mac OS X. The most significant updates include Apache, ClamAV, Emacs, OpenSSH, PHP, and X11. To get the update, go to the Software Update pane in System Preferences, or Apple’s Software Downloads Web site. The update "is recommended for all users and improves the security of Mac OS X," according to the Apple Downloads page.
Read more

If you enjoyed this post, make sure you subscribe to my RSS feed!

Vulnerabilities: Malicious subtitle file could harm VLC media player

"A flaw in the widely-used open-source VLC media player could allow an attacker to execute harmful code on a PC. The problem stems from a buffer overflow that can occur when the player processes subtitle files used for movies, according to a security advisory.
Read more

If you enjoyed this post, make sure you subscribe to my RSS feed!

Encryption: TrueCrypt developers consider complaint against Microsoft

"The developers of the TrueCrypt open source encryption tool are considering submitting a complaint against Microsoft to the EU Commission if Microsoft is not prepared to lay open the Windows hibernation API. From version 5.1 TrueCrypt supports hibernation for encrypted system partitions.
Read more

If you enjoyed this post, make sure you subscribe to my RSS feed!

Security: The top five internal security threats

"Criminal attacks are particularly likely to happen from the inside: one recent study estimated that 90 percent of criminal computer crimes were committed by employees of the company attacked.
Read more

If you enjoyed this post, make sure you subscribe to my RSS feed!

Microsoft fixes a dozen critical Office flaws in four patches

"Microsoft released its March 2008 security bulletin, which includes four bulletins, all deemed critical by Microsoft. The most serious of these affects Microsoft Excel, which alone has six specific "Common Vulnerablities and Exposures" vulnerabilities noted, one of which has been exploited in the wild.
Read more

If you enjoyed this post, make sure you subscribe to my RSS feed!

Mozilla adds 900 fixes and upgrades Firefox 3 beta

"Mozilla released the latest beta of Firefox 3, including some 900 bug fixes and highlighting for users that it is for testing purposes only. The release comes less than a week after Microsoft showed off the next version of its browser – Internet Explorer 8 – at its annual Mix show for developers.
Read more

If you enjoyed this post, make sure you subscribe to my RSS feed!

Mozilla releases Thunderbird 2.0.0.12

Mozilla’s Thunderbird 2 email application is updated to version 2.0.0.12 from 2.0.0.9, looks to be a bug fix release. It fixes 5 security issues among a host of other issues. Their official web log states that "The Gecko 1.8.1.x branch (Thunderbird 2.0.0.x series) will not include any groundbreaking features that Gecko 1.9 will bring, since it is based on Gecko 1.8. Additionally, in order to synchronize the version numbering with Firefox, 2.0.0.10 & 2.0.0.11 were dropped in favour of 2.0.0.12."

Read more

If you enjoyed this post, make sure you subscribe to my RSS feed!

Hacked: Researchers figure out how to crack GSM phone security

"Two enterprising researchers claim to have figured out a way to eavesdrop on calls made using GSM mobile phones, cracking open its much-vaunted encryption.
Read more

If you enjoyed this post, make sure you subscribe to my RSS feed!

Security: Disk encryption may not be secure enough

"Computer scientists have discovered a novel way to bypass the encryption used in programs like Microsoft’s BitLocker and Apple’s FileVault and then view the contents of supposedly secure files.
Read more

If you enjoyed this post, make sure you subscribe to my RSS feed!

Vulnerabilities: Serious Browser Bugs Spoil Opera Tune

"Opera has shipped a high-priority update to its flagship Web browser to correct multiple flaws that put Windows users at risk of malicious hacker attacks.
Read more

If you enjoyed this post, make sure you subscribe to my RSS feed!