vulnerability
Seagate's blog pushes malware on unsuspecting visitors via rogue Apache modules
SophosLabs has been tracking an infection of Mal/Iframe-AL on Seagate's blog since late February.
Are you taking enough care of your company's websites?
Adobe tells Windows and Mac users to install critical security updates for Flash and AIR
Computer users should be getting used to security updates for Adobe Flash by now - after all, this is the fourth in as many weeks.
Make sure your computers are protected as soon as possible.
Microsoft Patch Tuesday - seven bulletins, four critical, three RCEs, and even a fix for Macs
Microsoft's March 2013 Patch Tuesday is out.
There are seven bulletins this month, dealing with twenty documented vulnerabilities.
Paul Ducklin helps you choose where to start...
SSCC 104 - Probably (be fair, definitely!) the best 15-minute podcast you'll hear today
Have your joined thousands of others, and become a loyal listener to the "Chet Chat" yet?
Here's the latest Naked Security podcast, Sophos Security Chet Chat 104, discussing a range of recent and newsworthy topics from the world of computer security.
Firefox and Chrome patched ALREADY after Pwn2own - now the pressure is on for IE and Microsoft!
Mozilla and Google have already pushed out patches to stop the exploits that got past their browsers at this year's PWN2OWN competition!
That certainly throws down the gauntlet to Microsoft, whose Internet Explorer 10 browser was also successfully breached in the competition.
PWN2OWN results Day Two - Adobe Reader and Flash owned, Java felled yet again
PWN2OWN 2013 finished off today.
A second scheduled attack on IE 10 didn't happen, so IE 10 didn't get owned again, but Flash and Reader fell once each, and Java was exploited for the fourth time in two days...
PWN2OWN results Day One - Java, Chrome, IE 10 and Firefox owned
Of the Big Four browsers, only Apple's Safari has so far survived the onslaught of the browser-breakers at PWN2OWN 2013.
Java fell three times today; Adobe's Flash and Reader meet their attackers tomorrow...
Last-minute pre-Pwnium Chrome update closes numerous holes...
Google just slammed the door on a number of vulnerabilities in Chrome.
Just two days before its flagship browser was due to go under public hacking scrutiny at a Canadian security conference...
Oracle ships out-of-band Java fix, Apple follows suit
Oracle recently published an emergency update for Java, and Apple quickly followed suit for the version of Java it still officially supports.
Paul Ducklin tries to guess where Oracle's Java patch cycle will end up...
Adobe tells users to update Flash Player for the third time this month
Adobe tells computer users to protect themselves against "targeted attacks" that are being "exploited in the wild".
And that means patching Adobe Flash. Again.
Researchers claim to have found more zero-day vulnerabilities in Java
A security research team that has alerted Oracle to a series of security flaws in Java in the past, says that it has uncovered new zero-day vulnerabilities in the software.
Monday review - the hot 22 stories of the week
Catch up with anything you might have missed last week – it’s weekly roundup time.
SSCC 103 - Mandiant report, iOS coders owned, Twitter accounts hacked, and more...
Have your joined thousands of others, and become a loyal listener to the "Chet Chat" yet?
Here's the latest Naked Security podcast, Sophos Security Chet Chat 103, discussing a range of recent and newsworthy topics from the world of computer security.
Microsoft admits it was also hit by hackers, malware infects their Mac business unit
Microsoft joins Facebook and Apple in the list of big companies who have suffered at the hands of malware-bearing hackers.
That was quick! Adobe's emergency patch for Reader and Acrobat is here...
Adobe has released the emergency update for Reader and Acrobat that it promised late last week.
You may as well take advantage of Adobe's new-found velocity and get busy patching!
Apple patches the Java hole its own developers fell into - eventually
Shortly after admitting that its own techies got infected thanks to a Java hole, Apple has pushed out a Java update for the rest of us.
Apple, with this most recent update, seems to have washed its hands permanently of browser-based Java. Paul Ducklin explains...
BlackBerry warns of TIFF vulnerability that could allow malware to run on enterprise servers
Malicious hackers could create a boobytrapped TIFF image file and either trick a BlackBerry smartphone user into visiting a webpage carrying the image, or embed the malicious image directly into an email or instant message...
..and plant malware on your enterprise server.
Monday review - the hot 21 stories of the week
Get yourself up to date with everything we've written in the last seven days - it's weekly roundup time.
Facebook owns up - admits network breached, blames "Java in the browser"
In The Social Network, the movie version of Zuckerberg could shout, "WE NEVER CRASH!"
I bet the real-life Zuckerberg wishes he could say, "We never get hacked..."
More Mac malware attacking minority groups in China
A targeted Mac malware attack strikes a minority group in China, exploiting an old Microsoft Word vulnerability.
![Have your say - LulzSec: helpful, harmless or hideous? [VOTE NOW]](http://sophosnews.files.wordpress.com/2013/05/lulzsec-poll-thumb.jpg?w=75&h=75&crop=1)
![Password security infomerical leaves Ellen DeGeneres in disbelief.. and it will you too [VIDEO]](http://sophosnews.files.wordpress.com/2013/04/ellen-thumb.jpg?w=75&h=75&crop=1)
![Can multiple moving cursors really hide your password from spyware and peepers? [VIDEO]](http://sophosnews.files.wordpress.com/2013/03/cursors-thumb.jpg?w=75&h=75&crop=1)
![Hacked TV channels broadcast zombie apocalypse emergency alert [VIDEO]](http://sophosnews.files.wordpress.com/2013/02/zombie-thumb.jpg?w=75&h=75&crop=1)
