A flaw that was discovered and disclosed to Microsoft in October has been revealed that allows anyone to track your mouse movements and Microsoft has refused to fix the issue. More...
Through the use of an illegitimate KMS activation and a free Windows Media Center upgrade, it's apparently possible to turn your pirated copy of Windows into a fully activated "legitimate" copy More...
A new security flaw has been discovered for iPad 2 owners who use a Smart Cover while password-protecting their hardware. The flaw allows anyone with a Smart Cover to unlock the iPad 2 with ease. More...
A security blogger expose two flaws in Mac OS X Lion that allows unauthenticated password changes and the acquisition of password hashes by any logged on user. More...
Yesterday, the Twitter-sphere was engorged with spam tweets produced by a significant security hole in cross-scripting capability that threw the service into total disarray. People were warned repeatedly to stay off the service’s main page,... More...
Microsoft released a temporary "Fixit" workaround on Tuesday, to protect Windows users against a critical unpatched Windows Shell vulnerability. Microsoft issued a security bulletin on Friday to warn customers of a 0-day exploit involving the Windows... More...
Microsoft said on Tuesday that it is investigating a publicly reported vulnerability in the Windows Canonical Display Driver (cdd.dll) affecting 64-bit versions of Windows 7 and Windows Server 2008 R2. The flaw resides in the Canonical... More...
Twitter, the popular short message service experienced a serious flaw that impacted feeds and timelines. If you tweeted accept @bdsams, you would automatically be added to that persons follow list. What exactly does this mean?... More...
Intrepidus Group, a security and risk company, found a flaw in Palm's WebOS. Due to a flaw in the way SMS is implemented on the device, the researchers were able to send a specially formed... More...
Microsoft said on Tuesday that it has released a new out-of-band cumulative update for Internet Explorer 6 and 7 users. The update (MS10-018) fixes 10 flaws, with the most serious allowing remote attackers to execute arbitrary... More...
Energizer is known for their batteries and not for their software. So, if you have installed the software for the Energizer Duo battery charger to monitor the charging level of your batteries, remove the... More...
British network operator O2 has issued a statement to the BBC confirming that Apple will fix a security issue with the iPhone on Saturday via iTunes. Researchers revealed yesterday that they had discovered a flaw... More...
Update: Microsoft have now updated that they are going to deliver two changes to the Windows 7 Release Candidate regarding this issue. Before getting into the actual news, lets take a while to understand... More...
Yesterday we reported on a major UAC security flaw where malicious hackers could potentially execute a script on a users machine by tricking into them into opening a disguised exe. This script would disable UAC... More...
Adobe Systems warned users Tuesday that hackers could use recently-reported "clickjacking" attack tactics to secretly turn on a computer's microphone and Web camera. Flash on all platforms is susceptible to clickjacking attacks, Adobe said in... More...
Internet infrastructure vendors are working on patches for a set of security flaws that could help hackers knock servers offline with very little effort. The security community has been buzzing about the bugs since Tuesday,... More...
Apple's iPhone has two design flaws that could pose potential security problems, according to a researcher. The first one concerns the iPhone's e-mail application, which automatically downloads images within an e-mail, said Aviv Raff, a... More...
Ubuntu is the latest Linux vendor to patch a vulnerability in the open-source operating system's kernel that could have left the door open for hackers to find their way into users' machines. In an email... More...
A recently found flaw in the internet's addressing system is worse than first feared, so Dan Kaminsky said when speaking publicly about his discovery at the Black Hat conference in Las Vegas. He said... More...
Security researchers are claiming that Apple has failed to fully patch the high profile DNS cache poisoning error. The company issued the patch last week as part of a larger security update. The so-called Kaminsky... More...
BlackBerry maker Research in Motion is warning businesses to disable the function which allows a BlackBerry to read PDF files until it can issue an update, after a security flaw was found in the company's... More...
Microsoft warned on Friday that Apple's Safari Web browser for Windows exposes PCs to a security hole that permits potentially malicious files to be downloaded to a user's machine and run without prompting the user.... More...
The Debian Security Advisory posted up DSA-1571-1 openssl -- predictable random number generator issue today and strongly advised its users to take steps to avoid possible compromising of any systems running on Debian, such as... More...
The BBC's technology programme Click has exposed a security flaw in the social networking site Facebook which could compromise privacy. Using a simple malicious application could open up yourself and your friends (who do not... More...
A flaw in the way Microsoft's Internet Explorer (IE) browser processes FTP commands could let attackers steal or erase data from a victim's FTP site. The bug, which affects users of IE6 and the unsupported... More...
Mozilla has released Thunderbird 2.0.0.12 which fixes a remote exploitation of a vulnerability that allows an attacker to execute arbitrary code on Linux and Windows. The vulnerability exists when parsing an e-mail if the "Preview"... More...
Out of the box, the highly touted Asus Eee PC ships with a known code-execution vulnerability that allows a hacker to remotely gain root over a network. According to a warning from RISE Security, the... More...
Mozilla has given a proof of concept Firefox vulnerability a "high severity" rating because an attacker can collect session information such as cookies and history, according to Mozilla security chief Window Snyder. Snyder said the... More...
A programming error in eBay's Skype communications software could give cybercriminals a new way to sneak their malicious software onto a victim's PC. The flaw, which was reported Thursday by security researcher Aviv Raff, has... More...
US-CERT is warning computer users of a possible problem with the latest version of RealPlayer after a Russian security company claimed to have found a way to exploit a critical flaw in the multimedia software.... More...
Microsoft has reported a flaw in the way Windows and Internet Explorer handle web proxy auto discover (WPAD) connections. WPAD servers are used to deliver connecting computers with web proxy information. Microsoft said that the... More...
Microsoft bug squashers are investigating reports of a serious security vulnerability in Windows operating systems that could allow attackers to take control of vast numbers of machines, particularly those located off US shores. A Microsoft... More...
According to security researchers, the Linux kernel is prone to a local vulnerability that may result in a DoS or privilege escalation, possibly allowing the attackers to run arbitrary code on the target system. This... More...
Microsoft has warned that attackers are actively targeting a security vulnerability in the SafeDisc DRM technology that ships as part of Windows. The problem affects the 'secdrv.sys' file, a component of the SafeDisc copy encryption... More...
Microsoft is warning users to avoid suspicious websites and emails after attacks were reported on an unpatched flaw in Internet Explorer 7. The company would not provide exact figures, but said that a "limited number... More...
A security researcher has published a proof-of-concept exploit for a known vulnerability in Adobe Reader. The researcher, known only as 'Cyanid-E', unveiled his creation in a posting to the Full Disclosure security mailing list on... More...
Dear fanboys, I would like to emphasize the presence of the word "may" in the title. Microsoft Corporation recently announced plans to release a patch to reduce the risk of a new kind of Web-based... More...
Microsoft plans to fix a bug in the Windows operating system that has been blamed for a handful of critical vulnerabilities in Windows software. The flaw lies in the URI (Uniform Resource Identifier) handler technology... More...
Apple has patched a flaw in QuickTime that could allow for remote attacks. The fix addresses a vulnerability in the Windows Vista and XP versions of QuickTime, which is commonly installed as a browser plug-in... More...
The same hacker who discovered a recently patched QuickTime flaw affecting the Firefox browser says he has found an equally serious flaw in Adobe Systems Incorporated's PDF file format. Using Adobe Reader 8.1 on Windows... More...
Mozilla has released a patch today for its popular Firefox webbrowser which ditches the ability to run arbitrary script from the Firefox command line, a quick fix for a year-old QuickTime bug that could be... More...
An exploit that attacks a critical Microsoft Agent vulnerability was published less than 24 hours after Microsoft released a relevant security advisory in its Sept. 11 Patch Tuesday set of releases. The security advisory for... More...
Exploit code for a "highly critical" vulnerability in MSN Messenger has been posted to a Chinese-language forum, prompting Microsoft to urge all users to immediately migrate to Windows Live Messenger 8.1. The exploit, available here,... More...
An unpatched flaw in drivers from ATI creates a security hole to sneak malware past the improved security features in Windows Vista and straight to the Vista Kernel. Microsoft says that they are working with... More...
A bug in the way Norton AntiVirus software uses the ActiveX programming language could cause serious problems for users of Symantec's products. On Thursday, Symantec patched the flaw warning that a bug in two ActiveX... More...
Mozilla is working on patching its Firefox browser after a hacker posted details of a flaw that could let criminals run unauthorized software on a victim's machine. The flaw lies in Firefox's URL handler component,... More...
Google's Security team has discovered vulnerabilities in the Sun Java Runtime Environment that threatens the security of all platforms, browsers and even mobile devices. "This is as bad as it gets," said Chris Gatford, a... More...
A 'highly critical' vulnerability has been found in the Opera web browser which could be exploited to remotely compromise a user's system. The flaw is caused when Opera uses already freed memory to parse BitTorrent... More...
The browser flaw which allows attackers to hijack a computer by using Internet Explorer to launch Firefox is affecting other applications as well. Security researchers Nate McFeters, Billy Rios and Raghav Dube have disclosed information... More...
Security researcher Aviv Raff claims to have found the first security vulnerability in Apple's Safari browser on Windows only hours after the software was released. Raff tested the application against a standard browser security testing... More...