Jim Carr

Microsoft on Tuesday unleashed seven patches, three for critical vulnerabilities, in its June Patch Tuesday round of bug fixes. IT professionals are gearing up for more security headaches from the Apple's latest smart phone. Microsoft said on Thursday it plans to release seven patches -- three of them rated "critical" -- in the June Patch Tuesday round of bug fixes this week. VMware has released updates to its hosted virtualisation software products that shore up a variety of vulnerabilities. Three security researchers in Germany have reportedly broken Microsoft's CardSpace, which was designed to beef up the security of users' personal information while browsing the internet. The FBI has indicated a California man for an ingenious scam that bilked US$50,000 -- a few pennies at a time -- from online brokerage companies E*trade and Schwab.com. Apple on Wednesday fixed some 70 problems - including more than 40 vulnerabilities - in its Mac OS X 10.5 (Leopard) operating system and associated components. Security researchers at Symantec have placed the blame for a variety of problems users are experiencing with Microsoft's Windows XP Service Pack 3 squarely on Microsoft. A U.S. Department of Homeland Security-sponsored project has not only discovered that the quality of open-source software code has improved significantly over the past two years, it has debunked a widely held assumption that longer function strings within source code are associated with an increased number of code defects. Counterfeit networking equipment could jeopardize the security of U.S. military and other government systems, according to an FBI PowerPoint presentation posted on a website covering "alternative” topics. Microsoft fixed six vulnerabilities, three of them rated critical, with four patches in its May Patch Tuesday round this week. All were file-format vulnerabilities impacting client-side Windows machines rather than servers. The major data breaches that have received mass media coverage are driving so-called "C-level" executives to become actively involved in their organization's security policies, according to a new report from the (ISC)2. A vendor of anti-spyware and anti-virus software has released a report saying that Windows Vista, the latest version of Microsoft's latest operating system, is more susceptible to malware than the company's Windows 2000. Security researchers at the Shadowserver Foundation have discovered another round of SQL injection attacks, this one affecting more than 4,000 web pages that are based on Microsoft's ASP and .NET technologies. A coalition of technology organisations and vendors has asked a federal appeals court to reject a lawsuit that adware maker Zango has continued to pursue against Kaspersky Lab, accusing the anti-virus firm of unfairly blocking user access to its services. The Mozilla Foundation's Mozilla Messaging subsidiary has released patches for five flaws in its Thunderbird e-mail client. Researchers at an Eastern European security company have uncovered a spam-sending scheme of "Byzantine complexity" that attempts to use military and university email servers to send junk email.
Microsoft acknowledged it postponed the release of Windows XP Service Pack 3 because the upgrade can corrupt data in a point-of-sale software system. Credit card thieves are taking advantage of the vulnerabilities in small retailers' point-of-sale check-out systems, according to a new report. On the eve of the scheduled release of Windows XP Service Pack 3, Microsoft has delayed the push-out because of a compatibility problem.