Introduction As financial institutions become increasingly dependent on commercial software to support critical business processes, they also increase their exposure to software vulnerabilities. Most financial institutions use multiple commercial software packages. Therefore, it can be challenging to identify, test, and install all of the applicable patches that are necessary to maintain each software ...

It must be zero-day Wednesday. Microsoft and security researchers are investigating reports of several potentially serious bugs affecting Microsoft Office, made public just as Microsoft patched critical flaws in Windows XP, Vista and other software on Tuesday. The new bugs appeared in several security forums on Monday, and were reported by security ...

Metasploit has proof of concept code for exploiting MS06-040. The countdown to the worm begins. Exploit Module: netapi_ms06_040 [MetaSploit.com] Original post by Security Wonk and powered by Img Fly

The guys at Black Hat are demonstrating some interesting attacks against the device drivers for the wireless card in a MacBook Pro: The video shows Ellch and Maynor targeting a specific security flaw in the Macbook’s wireless “device driver,” the software that allows the internal wireless card to communicate with the ...

Internet Explorer 7 will be a huge win for web security, and Microsoft has announced how they will be distributing it: AU will notify you when IE7 is ready to install. Alternately, you will be able to visit the Windows Update or Microsoft Update sites and obtain IE7 by performing an ...