IE

(get it in RSS or Atom)

Patch Tuesday for April 2014 - it's Goodbye, Farewell and Amen for Windows XP

pt-2014-04-250

The date's been in our diaries since 2007.

But even with seven years to prepare for it, you'll be forgiven for approaching the April 2014 Patch Tuesday with a bit of a lump in your throat.

Adieu, XP.

SSCC 139 - PWN2OWN, browser updates, Target alerts, PCI DSS and phishing [PODCAST]

sscc-139-thumb-250

Is a browser less secure if more people like to hack it? Is it OK to ignore alerts simply because you get too many? Do you back yourself to spot every single phish? And just how smart is the Google Play Store?

Chester and Duck dissect these issues with their usual style in this week's Chet Chat podcast...

Browsers pwned, Korean megabreach, hackers phoiled, and Chet Chat turns 4! [VIDEO]

2014-03-15-pwned-250

Which browser plugin withstood PWN2OWN? How big was the latest South Korean megabreach? What happens when hackers attack phishers?

Find out in 60 Second Security...

PWN2OWN Day Two - Chrome and Safari join the losers

p2o-d2-250

Here are the PWN2OWN results from Day Two, and an overview of the final payouts.

Chrome and Safari didn't get picked for Day One, but both of them were pwned on Day Two - twice for Chrome and once for Safari....

PWN2OWN Day One - Reader, IE, Flash and Firefox felled, Java left standing

p2o-250

PWN2OWN Day One results are in!

The target that sounded easiest - Oracle Java, with prize money less than a third of the supposedly much tougher IE 11 - was the only one left standing at the end of the first half...

Patching XP, Flappy Bird malware, Tesco passwords leaked - 60 Sec Security [VIDEO]

2014-02-15-really-250

Did you really think XP would go patch-free? Is Flappy Bird really dead? Did you really use the same password on more than one site?

60 Sec Security - 15 Feb 2014

SSCC 134 - Patching, foisting, hacking and obfuscating [PODCAST]

sscc-134-thumb-250

Here's our latest security podcast, featuring Sophos experts Chester Wisniewski and Paul Ducklin.

Join the dynamic duo as they turn the latest news into a quarter-hour podcast that is informative, entertaining and educational.

Microsoft Patch Tuesday - get ready to patch and reboot the lot, including Server Core

pt-dec-2013-250

This month really is an omnibus update: all platforms are affected, from XP to 8.1 and from Server 2003 to 2012, including stripped-down Server Core installs.

It looks as though the NDPROXY.SYS kernel bug in XP might be fixed, but, then again, it might not...

Anatomy of an exploit - inside the CVE-2013-3893 Internet Explorer zero-day - Part 2

3893-2-250

Part Two of our examination of an IE exploit.

This is a great read if you want to get a feeling for how cybercrooks think. (Don't worry if you aren't technical: it's clear and jargon-free.)

Anatomy of an exploit - inside the CVE-2013-3893 Internet Explorer zero-day - Part 1

3893-1-250

The latest IE zero-day explained.

This is a great read if you want to get a feeling for how cybercrooks think.

(Don't worry if you aren't technical: we've kept the code and jargon to a minimum.)

Microsoft's Patch Tuesday is out - and the answer is, "YES, they FIXED IT!"

tuesday-250

Microsoft's Tenth Anniversary Patch Tuesday is out, and, yes, Redmond's security gurus did patch against the recent Internet Explorer zero-day that is being exploited in the wild!

There are seven other fixes as well - Paul Ducklin has the details.

SSCC 119 - Happy 10th, Patch Tuesday - Adobe "goes open source" - Dread Pirate Roberts [PODCAST]

sscc-119-250

A wild ride this week, with Patch Tuesday turning 10, Adobe "going open source" by losing 40GB of code, and Silk Road operator Dread Pirate Roberts getting locked in the brig.

Chet and Duck turn their amusing but insightful attention to the latest security stories...

Microsoft Patch Tuesday - get ready for a bumper Tenth Birthday edition!

pt-oct-500

This month's Patch Tuesday will be the tenth anniversary of Microsoft's regular security bulletins.

Paul Ducklin takes you through what's in store...

Get ready: Microsoft Patch Tuesday looms large with 14 patches and 8 remote code execution holes

pt-sep-500

The biggie this month is a "spare no versions" Internet Explorer update.

From IE 6 on Windows XP to IE 10 on Windows 8, this one hits the Patch Trifecta: critical, remote code execution, requires reboot.

Facebook transparency, Apple bugs, SEA DDoSes itself - 60 Sec Security [VIDEO]

2013-08-31-ddosing-yourself-250

Which country came top of Facebook's new "Government Requests" report aimed at outing the countries that fish for Facebook user data the most? (I bet you're thinking it's the USA - but it isn't.)

Watch this week's 60 Second Security and find out!

Heads up for Patch Tuesday: 24 hours, 8 bulletins, 3 critical, everything needs a reboot

restart-250

It's that time of the month again, with Microsoft Patch Tuesday just 24 hours away.

Paul Ducklin presents this month's eight bulletins in seven handy bullet points...

Microsoft to pay first bug bounty for Internet Explorer hole

Microsoft to pay first bug bounty for IE hole

So far, so good with the new program, says Microsoft security expert Katie Moussouris. They're getting more bugs earlier and hearing from researchers who've never rung them before.

Far-reaching fixes for Patch Tuesday - Server Core 2012, IE 10, Lync 2013 all in firing line

pt-july-2013-250

Six out of Microsoft's seven pre-announced Patch Tuesday updates are deemed critical.

Even Server Core 2012 will need patching and rebooting...

Keyjacking, Ubisoft data breach, Apple QuickTime holes - 60 Sec Security [VIDEO]

Here's the first 60 Second Security video of July, looking into some of the intriguing and interesting security stories of the past week.

Neatly compressed into a minute of video, why not give it a whirl?

Microsoft announces five Bulletins for Patch Tuesday, including Office for Mac

Patch Tuesday is coming on 11 June 2013.

Paul Ducklin gives you a quick preview of what we know so far, and who'll be affected by the updates...

(Mac users, that might include you.)