Microsoft today released its October 2007 security bulletin, which includes six updates: four are designated as Critical by the software giant; two are deemed Important, and one previously announced patch was dropped. On the Windows side there is a cumulative update for Internet Explorer, a patch for Outlook/Windows Mail, and one for an RPC vulnerability. On the Microsoft Office side, there is a patch for SharePoint Server and one critical patch for Microsoft Office Word, including Microsoft Office 2004 for Mac. And one patch for the Kodak Image Viewer. All Microsoft security patches for Windows and Office software are … Read more
While we East Coast folks celebrated Columbus Day, McAfee announced its acquisition of privately held SafeBoot for $350 million. SafeBoot provides software for file and full disk encryption.
Now, I certainly understand the rationale behind this deal. McAfee can now bundle encryption software into its PC security software and integrate key management into its ePolicy Orchestrator (ePO). We saw this same market consolidation pattern a few years ago with antispyware, which went from a stand-alone product to an integrated feature in endpoint security suites. In that transition, CA bought antispyware vendor Pest Patrol, while Microsoft grabbed Giant. Obviously, the same … Read more
According to a recent IDC report, security is the top reason that companies throughout Asia Pacific are adopting open source."The results indicate that organizations perceived open source technology as providing better security compared to proprietary products," said Prianka Srinivasan, Market Analyst at IDC?s Asia/Pacific Software Research team. "Though cost-efficiency remains a key decision factor, the results also suggest that organizations look forward to leverage open source technology to primarily fulfill their requirements for specific functionalities instead of widespread deployment."
You can get a great chart showing the results here.
Sometimes programs are born great, and sometimes they have greatness thrust upon them. There's a third tack, too: some program grow into their skins. Comodo Firewall Pro is one of those.
Living under the radar for too long, at some point out of the limelight it became a solid, state-of-the-art firewall with little reason left to ignore it. Providing a smorgasbord of information and options for advanced users, simple enough for beginners, and yet runs smoothly and silently in the background, Comodo is a prime example of what a program that mucks about with your Internet connection should be like.
As Trend Micro releases an upgrade to their PC-Cillin Web security product, they've renamed it Internet Security 2008.
It's a bit less glib and reflects the way in which malware attacks have proven to have serious, life-altering consequences in the real world. CNET's Rob Vamosi has given the trialware five stars, and it's hard to argue that Trend Micro doesn't offer a comprehensive suite of tools to keep you safe.
As part of this month's Patch Tuesday, coming next week, Microsoft plans to release seven patches, four rated "critical" and three "important." Affected software includes Windows (Windows 2000, XP, and Vista), Office (Word and SharePoint Server), Internet Explorer, Outlook Express and Windows Mail. One patch affects Microsoft Office 2004 for the Mac.
Sometimes, the simplest solutions are the most effective. As computer companies cater to the paranoid among us with such USB security devices as fingerprint readers and handwriting analyzers, this little upstart from ThinkGeek takes the most basic approach: plug the hole.
All you need to do before leaving your machine unattended is insert one of four "blockers" included with the gadget into your USB port, which prevent foreign flash drives or anything else from gaining access through that connection. The blockers can be removed only by the master key.
No complicated software or equipment to go haywire, though … Read more
If you use Yahoo Mail you should be seeing a significant reduction in the number of e-mail scams purporting to be from eBay and PayPal very soon.
Yahoo will be upgrading its system beginning on Thursday with technology--dubbed "DomainKeys"--designed to block phishing spam and other fraudulent e-mails that look like they come from eBay and PayPal but don't. The system works by verifying the domain of the sender of the e-mail, allowing ISPs to block messages they deem illegitimate.
The upgrade is expected to be accomplished globally over the next several weeks.
Typically, the phishing scams … Read more
Apple today released security updates for the Windows version of Quicktime. The update is available from the Apple Downloads site.
The patch affects users of QuickTime 7.2 on Windows Vista, XP SP2, and addresses the vulnerability in CVE-2007-4673. Currently, viewing maliciously crafted Quicktime files may lead to arbitrary code execution. "A command injection issue exists in QuickTime's handling of URLs in the qtnext field in files with QTL content. By enticing a user to open a specially crafted file, an attacker may cause an application to be launched with controlled command line arguments, which may lead to … Read more
I read about some recent teeth-gnashing and eye-rolling by photographers who were distressed by airport security personnel who required them to pull their SLR cameras out of carry-on bags for inspection, as is required for laptop computers, but the official word is that there's no new requirement to do so.
National Association of Photoshop Professionals President Scott Kelby and photographer Richard Wanderman both were required to pull their cameras out for the airport security checks in Minneapolis-St. Paul and Los Angeles, respectively, according to their blogs. Wanderman in particular was concerned because he had two camera bodies and feared … Read more