Attackers are exploiting security holes found in older versions of Office and Windows, plus current versions of Lync. A fix is available, however.
The security researcher who was awarded $100,000 by Microsoft said he spent about two weeks pondering, then demonstrating a new way to circumvent Windows' defensive technologies.
Microsoft released eight security bulletins for the October Patch Tuesday, and one fixes two flaws in IE already being exploited in the wild.
Security experts identified the Internet Explorer browser update as the one to deploy first.
Mozilla Persona allows users to verify their ownership of one or more email addresses and then use those addresses to authenticate on websites.
Infrastructure and tools used by hackers originate from network infrastructure in China, security firm Symantec says
Most security breaches can be blamed on known but unpatched vulnerabilities, according to Kaspersky Lab.
Microsoft alert says all supported versions of Internet Explorer contain a zero day vulnerability that is being actively targeted online, and 70 percent of Windows business users are impacted
Microsoft yesterday acknowledged yet another problem with its Sept. 10 updates, confirming that one of those fixes broke Office 2010 Starter Edition by changing the file associations of already-created documents.
Fix-It update to combat zero-day attacks targeting flaws in Internet Explorer.
Stories Tagged: patchesNext Page