Microsoft

(get it in RSS or Atom)

Windows 10 will work with FIDO specs for password-free access, says Microsoft

by John Hawes on February 18, 2015 | 3 Comments
Windows 10 logo

Microsoft has announced that its forthcoming revamp of Windows will be compliant with FIDO's current specifications for advanced authentication. Or has it?

Lizard Squad returns, claims attack on Xbox Live and Daybreak Games

by Lee Munson on February 17, 2015 | 1 Comment
Lizard. Image courtesy of Shutterstock.

Hacking group Lizard Squad has returned, apparently disrupting Microsoft's Xbox Live service and Daybreak Games with DDoS attacks.

Microsoft pulls PowerPoint-killing patch KB2920732

by Lee Munson on February 16, 2015 | 4 Comments
Safety pins. Image courtesy of Shutterstock.

The latest in a series of Microsoft patch failures rendered PowerPoint inoperable on devices running Windows RT.

What do you mean, "Facebook is now text only"? - 60 Sec Security [VIDEO]

by Paul Ducklin on February 14, 2015 | Leave a comment
60ss-video-250

Here's the latest episode of our weekly one-minute security video.

Fun, fast...and educational.

SSCC 185 - "I have a number for you: Eighty Million" [PODCAST]

by Paul Ducklin on February 13, 2015 | Leave a comment
chet-chat-logo-featured-250

Our weekly "Chet Chat" podcast is carefully prepared to fit into a quarter-hour, so it is clear and concise as well as being witty and amusing.

Enjoy...

The "JASBUG" Windows vulnerability - beyond the hype, what you need to know

by Paul Ducklin on February 11, 2015 | 11 Comments
jasbug-500

Struggling to understand the JASBUG flaw fixed by Microsoft in this month's Update Tuesday?

Paul Ducklin explains it clearly, with minimal jargon.

Update Tuesday wrap-up, February 2015 - don't let JASBUG distract you

by Paul Ducklin on February 11, 2015 | 1 Comment
patch-tuesday-denim-250

Be careful!

The JASBUG vulnerability in Windows is grabbing the headlines, but there are other bugs this month that could hit you harder.

Paul Ducklin explains...

The end of the Silk Road for Dread Pirate Roberts - 60 Sec Security [VIDEO]

by Paul Ducklin on February 7, 2015 | Leave a comment
60ss-video-250

Here's our weekly "60 Second Security" video.

Enjoy a fresh and entertaining take on the latest security news in just one minute...

Internet Explorer has a Cross Site Scripting zero-day bug

by Paul Ducklin on February 4, 2015 | Leave a comment
ie11-250

Another day, another zero-day.

This time, it's Internet Explorer that is attracting the sort of publicity a browser doesn't want, with the public disclosure of an XSS bug.

Google, Amazon, Microsoft pay to get ads past Adblock Plus

by Lisa Vaas on February 4, 2015 | 23 Comments
Google, Amazon, Microsoft pay to get ads past Adblock Plus

Ad-buying big boys Google, Amazon, Microsoft and the content marketing platform Taboola have quietly ponied up the money to keep their ads from being blocked on Adblock Plus, the world's most popular software for blocking online advertising.

"Exploit This": Evaluating the exploit skills of malware groups

by Paul Ducklin on February 3, 2015 | 3 Comments
exploit-this-paper-250

SophosLabs researcher Gabor Szappanos compares APT actors and cybercrooks.

A comparative review of malware writers!

A fascinating study, well worth a read...

ZeroAccess click fraud botnet coughs back to life

by Mark Stockley on January 31, 2015 | Leave a comment
ZeroAccess

The once-mighty "ZeroAccess" botnet is now only a shadow of its former self, but its reputation alone still makes it a headline grabber...

SSCC 182 - What would the Pirate Party do? [PODCAST]

by Paul Ducklin on January 22, 2015 | 2 Comments
chet-chat-logo-featured-250

This week's episode of our quarter-hour security podcast.

Entertaining as well as accurate and educational - why not give it a listen?

Leaked Minecraft usernames and passwords - a storm in a security teacup?

by Mark Stockley on January 20, 2015 | 3 Comments
Minecraft logo

The blocky online building environment is attracting press because about 1800 Minecraft credentials (worth about $27 USD each) have been leaked on Pastebin. But has there been a data breach at Minecraft?

Cops arrest another man after Christmas PlayStation/Xbox DDoS

by Lisa Vaas on January 16, 2015 | Leave a comment
Arrest. Image courtesy of Shutterstock.

Police have arrested a second man in connection with the Lizard Squad's Grinch-like Christmas attack on gamers.

SSCC 181 - The Security Duel: "Bug reports at 15 paces" [PODCAST]

by Paul Ducklin on January 15, 2015 | 4 Comments

Microsoft vs. Google - Google vs. Users - Hackers vs. US Army - the fight is on in the latest episode of our weekly security podcast!

Enjoy...

Update Tuesday wrap-up, January 2015 - See? We didn't use the word "Patch"!

by Paul Ducklin on January 14, 2015 | 5 Comments

Like fingers and thumbs, not all updates are patches, even if all patches are updates.

So, here's the skinny on Update Tuesday...including the security patches, of course.

Windows 7: Everything new is old again

by Chester Wisniewski on January 14, 2015 | 15 Comments
Setting up parental controls on Windows 7

Hard to believe, but Microsoft Windows 7 is already halfway through its useful life. If we don't want to repeat the sins of Windows XP, it is time to plan our next move.

Microsoft swings punch at Google - accuses Project Zero of a "Gotcha!"

by Paul Ducklin on January 12, 2015 | 13 Comments

Two days! Two measly days!

Google is back in the firing line, this time directly from Microsoft, over its "Project Zero" full-disclosure process...

"Dear Facebook, I DEMAND that you ignore my demands" - 60 Sec Security [VIDEO]

by Paul Ducklin on January 10, 2015 | Leave a comment

Our weekly security news video, for your viewing pleasure.

Fun with a serious side, in just one minute...watch now!