I have long urged readers who have no need for Java to remove the program, because failing to keep this software updated with the latest security patches exposes users to dangerous, ubiquitous attacks. In this blog post, I’ll show readers how attacks against Java vulnerabilities have fast emerged as the top moneymaker for authors...
Read More »

Adobe has announced plans to bring the release of a patch to close the critical security hole in the current versions of Reader and Acrobat forward to Tuesday, October 5th. As a result, no further patches will be released on the scheduled patch day which was due on October 12th. The hole has been...
Read More »

Comcast Corporation announced it has expanded its online security program for subscribers to the company’s high speed Internet service to include “bot” alerts if suspicious activity has been detected on a customer’s computer. Malicious bots are small programs designed to send spam, host a phishing site, or steal a user’s identity by recording each...
Read More »

Global security firm Cisco has warned LinkedIn users about a harmful spam attack designed to trick users into opening a link that will infect their computers with malicious software designed to steal private information. Anthony Edwards, technical support manager at TrendMicro Australia, says LinkedIn users need to be extremely wary of opening any friend...
Read More »

A cross-site scripting vulnerability in Twitter is being exploited this morning. Update: Twitter reports that as of 6:50AM PDT “the exploit is fully patched.” Update: The attack is working again. Very strange. Update: Twitter seems to have fixed the bug. As explained and demonstrated in some detail by Sophos’s Graham Cluley, the...
Read More »