The updates for Microsoft's December 2013 Patch Tuesday are out.
Paul Ducklin takes a brief look at what's in, and what's not.
Microsoft says it's fast-tracking the encryption of consumer data and moving toward greater source-code transparency. It sounds good on paper, though there are those who question why Skype, for one, was left off the list and how in the world we can trust a for-profit software maker.
This month really is an omnibus update: all platforms are affected, from XP to 8.1 and from Server 2003 to 2012, including stripped-down Server Core installs.
It looks as though the NDPROXY.SYS kernel bug in XP might be fixed, but, then again, it might not...
US President Barack Obama is stuck using a BlackBerry. He actually fought for the right to keep using it when he first got to office in 2009. Let's hope he still likes the gadget, because the powers that be obviously don't think Apple's security profile is president-worthy.
Microsoft, in conjunction with Europol and the FBI, has successfully taken down the click fraud servers used by ZeroAccess, disrupting one of the world's largest and most resilient botnets.
If you follow technology gossip, you probably saw the fuss kicked up last week by a Seattle resident called Nick Starr, who went into a local 24-hour diner wearing Google Glasses.
Briefly put, the restaurant said, "No!"
Turn bad news into good with "what you can do better" advice from Chet and Duck.
Learn from: an XP zero-day, a spate of Bitcoin "bank robberies," the outcome of a European user security survey, and yet another cryptographic blunder, this time from Drupal.
When is Computer Security Day? What can forward secrecy do for you? Can you believe there's an 0-day in XP?
Have some fun finding out the answers in this week's 60 Second Security!
Microsoft has gone public to warn about a zero-day vulnerability in the Windows XP kernel.
Full details are still to be released, as it isn't patched yet, but here's what we know so far...
Google's recent decision to revamp YouTube's comment system by integrating Google+ in order to reduce spam has proven to be extremely unpopular with users. Ironically, however, it has proven to be quite a hit with the spammers themselves.
Eric Schmidt said recently that encrypting everything can end government censorship in a decade. Activists battling China's Great Firewall say why wait, when we just did it in a fraction of the time?
A study by risk analysis firm BitSight reveals US financial companies are best protected from cyberattacks, followed by the energy and retail sectors, while tech firms are left trailing.
Can you believe that a brand loyalty company would take two weeks to tell its loyal customers their data had been stolen? Oh, and that it wasn't encrypted, either?
What does this tell us about security? Find out in the latest episode of the Chet Chat...
Guess how many times "123456" was used as a password by users. If you answered "close to 2 million times," you win! Now guess which online dating site service has decided to encrypt customer records using salting and hashing in future.
Following our popular article explaining what Adobe did wrong with its users' passwords, a number of readers asked us, "Why not publish an article showing the rest of us how to do it right?"
Here you are...
Two search giants, Google and Microsoft, have agreed on measures that should make it harder to search for child abuse images online on the open internet, while Google has made a groundbreaking move to identify and ferret out videos made by paedophiles on its YouTube service.
Microsoft's opening of a state-of-the-art Cybercrime Center offers hope of better collaboration between law enforcement and industry experts in fighting online threats. How will these developments affect the safety of the digital world, and is there more that needs to be done?
Apple pushed out iOS 7.0.4 last week, the fourth patch in two months.
Is iOS getting buggier, or is Apple simply publishing security fixes more promptly?