News (133)

Microsoft exec kicks off new browser security war

Internet Explorer is more secure than Firefox, according to a senior Microsoft executive, who compared how many vulnerabilities were found in the two browsers -- but critics say his study is flawed. Read more »

Holes in HP Software Update threaten data leakage

HP's Software Update Tool has been found to contain a flaw which can lead to remote code execution or the leakage of sensitive information stored on a PC. Read more »

Apple's Leopard hacked in 30 seconds

Apple's Leopard has been hacked within 30 seconds using a flaw in Safari, with rival OSes Ubuntu and Vista so far remaining impenetrable in the CanSecWest PWN to OWN competition. Read more »

Firefox phishing vulnerability discovered

A newly discovered flaw in Firefox could allow cybercriminals to take advantage of Web surfers. Read more »

Flawed Safari browser endangers Windows users

Two security flaws have been found in the recently released Windows version of Apple's Safari browser — despite Apple's attempts to increase the user-base for Safari, its small size will help protect users, say security experts. Read more »

Mozilla celebrates 10th birthday with a security flaw

The Mozilla Foundation is celebrating what it regards as its 10th anniversary this week. Read more »

Microsoft outlines IE7 security plans

Microsoft is tightening up the way its Internet Explorer browser handles HTTPS for version 7, which is used to secure online transactions, in an attempt to give people more protection online. Read more »

Security flaws found in fix for Firefox, SeaMonkey

Mozilla Foundation earlier this week issued a critical fix designed to address vulnerabilities in a recent security update for the Firefox browser and SeaMonkey application suite. Read more »

Kaminsky details DNS flaw

Security researcher Dan Kaminsky has offered more details about a fundamental flaw in the Domain Name System and the extent of the vulnerability. Read more »

DNS disaster: first attacks reported

The first attacks that are likely to have stemmed from a serious Domain Name System flaw have been reported. Read more »

More Browser, Flaw, Security News Results

Features (9)

Windows' HTML converter vulnerability rated Critical

A problem has been discovered in the way Windows handles HTML file conversion during cut-and-paste. This buffer overrun could allow an attacker to run rogue code. Read more »

Clickjacking: Potentially harmful web browser exploit

Clickjacking has the potential to redirect unknowing users to malicious websites or even spy on them. We all need to be aware of clickjacking and how to avoid its trappings. Read more »

Watch out for IE Local Zone script injection flaw

A flaw in the way Internet Explorer handles some errors, discovered by security company GreyMagic, could result in an attacker being able to read local files on a system or run various scripting commands. Get the details. Read more »

The secrets of open source security

The Linux vs. Windows security debate is a contest of examples, which stand in place of the concepts that comprise a larger, more fundamental question of what the security benefits and detriments are for the open source and closed source development models. Read more »

Develop a VoiceXML solution using BeVocal

VoiceXML (VXML) is a markup language like HTML. The difference is that a phone browser rather than a Web browser renders VXML. Get started with this article. Read more »

Develop secure software at the application level

Protect your application from input overflow and underflow attacks, and from other common tactics with these development techniques. Read more »

IE is evolving, but is it enough?

Microsoft's Internet Explorer Web browser is in the process of getting its first significant update in two years this week, as part of the company's overhaul of its operating system. Read more »

Bug hunters, software firms in uneasy alliance

Although many software makers promote responsible disclosure, it isn't universally backed by the security community. Critics say it could make security companies lazy in patching. Full disclosure of flaws is better is preferred. Read more »

All about Longhorn

COMMENTARY -- Longhorn will be immensely popular once it is released, because Longhorn is revolutionary technology that makes desktop computing better. Read more »

Blog (1)

QuickTime and Firefox combine for insecurity

Nick Gibson [blogs:byteclub] -- A vulnerability in Apple Software's QuickTime media player can be exploited to execute remote javascript code, or by tapping into Firefox's chrome engine can execute remote code of any kind. Read more »

Log in


Sign up | Forgot your password?

Blogs

RSS feed

What's on?