Chet and Duck are here with their weekly roundup of news, opinion, advice and research.
Take a listen to our weekly 15-minute podcast on computer security - Chet Chat Episode 123.
November's Patch Tuesday includes updates not just from Microsoft, but Adobe and Google as well. Critical patches for Internet Explorer, Chrome and Adobe Flash Player lead the way this month.
What a coincidence! A Facebook hoax claming that images can infect your computer...and then a Microsoft zero-day that uses images to infect your computer.
Chet and Duck talk you through the latest news...
Microsoft is warning about a brand new security hole that could let criminals get control of your computer through booby-trapped image files.
Microsoft just published its January-to-June 2013 Security Intelligence Report.
The results seem to PROVE that you should get rid of Windows XP as soon as you can.
Paul Ducklin checks the strength of the "proof"...
Microsoft has pulled the weekend's release of Windows RT 8.1 due to a "situation" that causes the Blue Screen of Death on Surface tablets. Here are the fixes you need if you were caught up this epic fail of an update.
Occasionally we find an attempt at phishing that we grudgingly have to admit shows a resourceful sense of occasion.
Here's an example: an email supposedly from Microsoft to sort out the after-effects of recent failed updates...
Who's "Paunch"? What happens when you arrest him? How do you win $100k from Microsoft? Could there really be a backdoor in Adobe's code?
Find out the answers in this week's episode!
Microsoft's Tenth Anniversary Patch Tuesday is out, and, yes, Redmond's security gurus did patch against the recent Internet Explorer zero-day that is being exploited in the wild!
There are seven other fixes as well - Paul Ducklin has the details.
This month's Patch Tuesday will be the tenth anniversary of Microsoft's regular security bulletins.
Paul Ducklin takes you through what's in store...
Microsoft has published its second "Law Enforcement Requests Report", covering the first half of 2013.
John Hawes takes a look at what the numbers tell us...
Microsoft has published an out of band security advisory for users of Internet Explorer to warn about a new zero-day attack being used in the wild. IE users are advised to use Microsoft's Fix it or EMET tool to protect against exploitation until a permanent fix is released.
One of Microsoft's 14 promised patches for September failed to materialise.
There's still plenty left over, though: IE gets a jumbo fix, as usual; SharePoint, FrontPage, Excel, Access, Outook and more get vital updates, too.
Here you are! Episode #116 of the Sophos Security Chet Chat.
News, opinion, advice and research: Chet and Duck bring you their unique and entertaining combination of all four in their regular podcast.
Following a USENIX paper about the security of Windows Picture Passwords, you may have read that they are "easily crackable."
Paul Ducklin wondered about that, and tried to come up with a balanced view...
Get yourself up to date with everything we've written in the last seven days - it's weekly roundup time.
The biggie this month is a "spare no versions" Internet Explorer update.
From IE 6 on Windows XP to IE 10 on Windows 8, this one hits the Patch Trifecta: critical, remote code execution, requires reboot.
Why did Facebook get into double trouble this week over privacy?
Find out the answer to this and more in just 60 seconds of entertaining and informative video!
Microsoft is buying a large swathe of Nokia, and licensing much of the rest.
Naked Security gets a touch nostalgic...