Both Microsoft and Google have sent out advisories warning users of an IE zero-day exploit that's being used to hijack Gmail accounts, with Google claiming these attacks are "state-sponsored" More...

Symantec Corporation has issued an alert that rated a threat with its highest possible score after finding attackers exploiting a zero-day vulnerability in RealPlayer that infects Windows machines running Internet Explorer. An ActiveX control installed... More...

A noted security researcher Monday disclosed four new zero-day vulnerabilities in Microsoft Corp. and Mozilla Corp.'s browsers, including a critical flaw in Internet Explorer (IE) and a "major" bug in Firefox. Michael Zalewski, who regularly... More...

Just hours after a Microsoft security manager said that the week's updates had patched all in-the-wild threats against Office applications, the company late yesterday acknowledged that another bug in Word is being used by hackers... More...

Today on Security Response Weblog, Symantec revealed the exploit, which could drop a back-door Trojan onto an infected system. The exploit "may enable an attacker to gain remote access to your computer," wrote Amado Hidalgo... More...

Microsoft's security response team has launched an investigation into reports of a zero-day attack against a previously unknown vulnerability affecting its ever-present Microsoft Word program. The Redmond, Wash.-based software maker said it's aware of "very... More...

The Symantec Online Network for Advanced Response (SONAR) is a new security software that will analyze the behaviour of programs running on the computer and decide whether they are malicious. Although other software applications offer... More...

Underground hackers are hawking zero-day exploits for Microsoft's new Windows Vista operating system at $50,000 a pop, according to computer security researchers at Trend Micro. The Windows Vista exploit—which has not been independently verified—was just... More...

There is a second confirmed zero-day vulnerability in Microsoft Word software program that is being targeted by unknown attackers. According to a US-CERT advisory, the latest bug is a memory corruption issue that occurs when... More...

Microsoft has issued a Security Advisory that warns of exploits for a previously unknown (zero day) hole in various versions of Microsoft Word. According to an e-mail statement from the company's public... More...

Thanks franzon who posted this article in Back Page News. The open-source Firefox Web browser is critically flawed in the way it handles JavaScript, two hackers said Saturday afternoon. An attacker could commandeer a computer... More...

Microsoft issued a rare, out-of-cycle Windows patch on Tuesday that fixed one flaw, but attacks through other known, yet-to-be-plugged holes continue. Microsoft on Wednesday warned of "limited zero-day attacks" that exploit a new flaw in... More...

Microsoft is pouring cold water on a warning from anti-virus vendor Trend Micro that a new PowerPoint zero-day attack is under way. The Trend Micro warning, first issued Aug. 19, said that a specially crafted... More...

First Word, then Excel, now PowerPoint. For the third time in two months, a zero-day vulnerability in a widely used Microsoft Office software application is being used in targeted hacker attacks. The latest attack exploits... More...

Barely two weeks after shipping an Internet Explorer security makeover to cover a wave of drive-by malware downloads, Microsoft is scrambling to address the public disclosure of a new zero-day vulnerability that could be used... More...