A mysterious Windows 7 update that led to speculation Windows Update was compromised, was actually a test update accidentally published by Microsoft.
Browsing Category: Microsoft
A researcher at Bromium is expected at DerbyCon to disclose a memory corruption mitigation bypass of Microsoft Control Flow Guard.
About a decade ago, many large software makers learned some very difficult lessons about software security and building security into their products from the start. Some are still learning. The FTC and a variety of security experts are hoping that today’s crop of start-ups will not have to go through that same painful process. The FTC[…]
Microsoft patched a vulnerability in its graphics component present in Windows, Office and Lync that has been publicly attacked,
A federal appeals court has sent back to a lower court an appeal in a lawsuit about the way companies are allowed to publicize information about National Security Letters they receive. The appeal consolidates three separate actions against the Attorney General that question whether the government’s restrictions on how companies can talk about NSLs violates the[…]
A SANS ISC report indicates a prominent cybercrime group has begun using the Neutrino Exploit Kit, but that hardly spells the end of the road for the notorious Angler EK.
Microsoft released an out-of-band patch for an Internet Explorer vulnerability under attack.
Facebook doubles the payout of its Internet Defense Prize with a $100,000 award to a team of Georgia Tech researchers for a new class of browser-based memory-corruption vulnerabilities and a corresponding detection technique.
A vulnerability patched by Microsoft in the Windows Mount Manager is being exploited in targeted attacks.
Microsoft released a security bulletin for its new Edge browser, patching four critical vulnerabilities.