(get it in RSS or Atom)

Windows 10 will work with FIDO specs for password-free access, says Microsoft

Windows 10 logo

Microsoft has announced that its forthcoming revamp of Windows will be compliant with FIDO's current specifications for advanced authentication. Or has it?

Microsoft pulls PowerPoint-killing patch KB2920732

Safety pins. Image courtesy of Shutterstock.

The latest in a series of Microsoft patch failures rendered PowerPoint inoperable on devices running Windows RT.

The "JASBUG" Windows vulnerability - beyond the hype, what you need to know


Struggling to understand the JASBUG flaw fixed by Microsoft in this month's Update Tuesday?

Paul Ducklin explains it clearly, with minimal jargon.

Update Tuesday wrap-up, February 2015 - don't let JASBUG distract you

Be careful!

The JASBUG vulnerability in Windows is grabbing the headlines, but there are other bugs this month that could hit you harder.

Paul Ducklin explains...

Google, Amazon, Microsoft pay to get ads past Adblock Plus

Google, Amazon, Microsoft pay to get ads past Adblock Plus

Ad-buying big boys Google, Amazon, Microsoft and the content marketing platform Taboola have quietly ponied up the money to keep their ads from being blocked on Adblock Plus, the world's most popular software for blocking online advertising.

SSCC 181 - The Security Duel: "Bug reports at 15 paces" [PODCAST]

Microsoft vs. Google - Google vs. Users - Hackers vs. US Army - the fight is on in the latest episode of our weekly security podcast!


Update Tuesday wrap-up, January 2015 - See? We didn't use the word "Patch"!

Like fingers and thumbs, not all updates are patches, even if all patches are updates.

So, here's the skinny on Update Tuesday...including the security patches, of course.

Microsoft swings punch at Google - accuses Project Zero of a "Gotcha!"

Two days! Two measly days!

Google is back in the firing line, this time directly from Microsoft, over its "Project Zero" full-disclosure process...

"Dear Facebook, I DEMAND that you ignore my demands" - 60 Sec Security [VIDEO]

Our weekly security news video, for your viewing pleasure.

Fun with a serious side, in just one now!

Microsoft discontinues Advance Notification Service, but why?

Microsoft. Image from Shutterstock

Microsoft kicked off 2015 by discontinuing its Advance Notification Service which alerted IT professionals to fixes that would ship the following week, allowing time to prepare staff and systems.

SSCC 180 - Surely zero-days come from cybercrooks, not from Silicon Valley? [PODCAST]

Enjoy the first 2015 episode of our popular weekly security podcast.

In this episode: zero-day politics, leaky security features, Bitcoin news, and a shout out to our New Year #sophospuzzle winners!

Hacking group publishes Xbox One SDK, threatens to leak unreleased game builds

Xbox One. Image courtesy of 360b/Shutterstock.

Microsoft's festive woes continue after a hacking group managed to get hold of and subsequently release the November 2014 Xbox One software development kit (SDK).

Zero-day in Windows 8.1 disclosed by Google


A new zero day vulnerability has been disclosed in Microsoft Windows 8.1. Who is behind releasing the attack code behind this flaw? Google.

From Facebook, through iPhones and Androids, to Macs - make the safest start to 2015!

Are you looking to turn over a new security leaf yourself in 2015, or trying to convince your friends and family to do so?

Here are some great places to start...

Lizard Squad member 'Ryan' explains why it's OK to ruin Christmas


A man claiming to represent Lizard Squad, the group behind the Christmas day attacks on the Xbox and Playstation networks, has explained why they did it.

Microsoft deluged with support in its email privacy battle against US government

Microsoft deluged with support in its email privacy battle against DOJ

75 amicus briefs show the industry's fierce belief that the US is overreaching in its demands to get email off an Irish server.

"Like fish and chips without the fish. Or the chips"... 60 Sec Security [VIDEO]

Here's the latest episode of our 60 Second Security video.

Enjoy the week's news in just one minute...

Microsoft pulls Patch Tuesday fix - "Outlook can't connect to Exchange"


Part of Patch Tuesday is now only partly available as Microsoft recalls its already-delayed Exchange 2010 update.

Paul Ducklin takes a look...

Patch Tuesday wrap-up, December 2014 - why "Important" can be Critical...

Adobe and Microsoft put forth their respective Patch Tuesday updates this week, bringing you their last scheduled patches of 2014.

Paul Ducklin digs in...

"That's not a hack..." - 60 Sec Security [VIDEO]

Here's our latest 60 Second Security video.

One week of news in one amusingly informative minute...