Researchers dismiss Microsoft’s bug claim

A security researcher has discredited Microsoft’s claim that the year’s first critical Windows vulnerability would be “difficult and unlikely” to be exploited by attackers.

Understand the Factors behind the Rise of Application Security

Research and Markets has announced the addition of “The Rise of Application Security” to their offering. In recent months, application security risks have captured increasing attention—and headlines. Threats now include crime and fraud specifically pursuing financial gain. Sensitive application data has become a high-value target. Regulators have become aggressive in enforcing control of these risks, as well as controls to assure effective IT governance. In this research report, Enterprise Management Associates (EMA) examines this evolution and looks at the domains that are today defining the rise of application security. Participants in secure development and source code security, operational application assessment, … Continue reading Understand the Factors behind the Rise of Application Security

Spyware – A Morphing Campaign

Avert Labs wrote that the gray areas have gotten grayer.  Read their whitepaper discussing the morphing campaign of Spyware

Storm Worm Directing Users to Medical Spam Web Sites

US-CERT is aware of a variant of the Storm Worm that sends unsolicited email messages to users and attempts to evade spam filtering. When a user receives this email message, it will contain a link in the format of: http://<IP Address>/<random directory name> When visited, the user will be directed to a website containing medical spam information.

Rogue ads infiltrate Expedia and Rhapsody

This story was corrected throughout to name as one of two sites found by Trend Micro and Sandi Hardmeier to be serving malicious banner ads. While has been found in the past to also host attack ads, there are no recent reports it has done so recently. and are the latest name-brand websites to be found serving advertisements that try to install malware onto users’ machines, security researchers said. The sites join a Rogue’s Gallery of mainstream destinations that include MySpace, Excite, Blick, and, which all have been caught carrying tainted ads over the past … Continue reading Rogue ads infiltrate Expedia and Rhapsody

Online advertiser pays $200,000 for deceptive claims

When ‘free’ isn’t free An online advertiser that falsely claimed consumers had won free prizes has agreed to pay a $200,000 penalty to the Federal Trade Commission, which says the outfit failed to disclose that people had to spend money first. Member Source Media, which operated under names such as ConsumerGain-dot-com, PremiumPerks-dot-com and FreeRetailRewards-dot-com, also agreed to disclosure the costs and obligations to qualify for any future incentives it may offer. According to the FTC, the company and its principal, Chris Sommer, violated the federal CAN-SPAM act and other laws that bar deceptive advertisements. The company sent emails bearing subjects … Continue reading Online advertiser pays $200,000 for deceptive claims

Does Windows Live OneCare include the technology behind Windows Defender?

Security At Home: The technology behind Windows Defender, Microsoft’s popular antispyware software, is built into the Windows Live OneCare online safety and security software subscription service. If you use OneCare, you do not need to download Windows Defender. If you already have Windows Defender installed on your computer, and then you download Windows Live OneCare, you do not need to uninstall Windows Defender. OneCare will automatically turn off Windows Defender so you won’t get messages from two different versions of the program.

Symantec Research Debunks Common Myths that Contribute to IT Failures

63% of IT professionals expect one major IT failure per year.  And 53% of those failures are a result of process issues.  Also, 46% expect a serious data loss once per year. That’s the story based on the results of Symantec’s 2nd annual IT Risk Management Report. The comprehensive report, driven by the analysis of more than 400 in-depth, structured surveys and interviews with IT executives and professionals worldwide, provides an unparalleled view into the state of IT Risk Management—identifying key issues, trends, and common myths that contribute to IT failures. Read about it at: Podcast: From … Continue reading Symantec Research Debunks Common Myths that Contribute to IT Failures

Microsoft Marks the One-Year Anniversary of Windows Vista Worldwide Release

365 days and 100 million licenses later, enthusiasm for a safe, reliable and engaging Windows Vista experience is high. In a roundtable Q&A, members of the Windows Vista team and others about the past year and how Vista’s presence in the marketplace is maturing. Since the worldwide release of Windows Vista one year ago today, people are doing more and getting more out of their Windows experience. From pictures and videos, to games and family safety settings, users are finding out that they can do more with Windows Vista. To get the full picture of what the past year has … Continue reading Microsoft Marks the One-Year Anniversary of Windows Vista Worldwide Release