Oracle pulls blog post critical of security vendors, customers
Oracle published, then quickly deleted, a blog post criticizing third-party security consultants and the enterprise customers who use them.
Oracle published, then quickly deleted, a blog post criticizing third-party security consultants and the enterprise customers who use them.
Attackers could exploit a new vulnerability in BIND, the most popular Domain Name System (DNS) server software, to disrupt the Internet for many users.
Developers of the popular WordPress blogging platform have released a critical security update to fix a vulnerability that can be exploited to take over websites.
Go ahead and update Java -- or disable it if you don't remember the last time you actually used it on the Web: Oracle's latest patch, released Tuesday, fixes 25 vulnerabilities in the aging platform, including one that's already being exploited in attacks.
VMware released patches for serious vulnerabilities in several of its products that could lead to arbitrary code execution, privilege escalation on the host OS and denial of service.
A flaw in the widely used OpenSSL library could allow man-in-the-middle attackers to impersonate HTTPS servers and snoop on encrypted traffic. Most browsers are not affected, but other applications and embedded devices could be.
Adobe Systems was forced to rush the release of a Flash Player update after an exploit for a previously unknown vulnerability was leaked on the Internet and quickly adopted by cybercriminals.
Server admins and developers beware: The OpenSSL Project plans to release security updates Thursday for its widely used cryptographic library that will fix a high severity vulnerability.
Just four days after Adobe Systems patched a vulnerability in Flash Player, the exploit was adopted by cybercriminals for use in large-scale attacks. This highlights the increasingly small time frame users have to deploy patches.
Owners of Samsung PCs will begin receiving automatic software updates from Microsoft again soon, after Samsung said it will end its practice of blocking automatic Windows Updates on its computers.
Internet Explorer, always heavily scrutinized by both security researchers and online attackers, has once again gotten the majority of patches in this month's Microsoft's Patch Tuesday round of monthly bug fixes.
You might not be used to the idea of a watch endangering your digital life, but you should: Apple's first update for Watch OS includes 14 security patches, and they're not trivial.
A critical vulnerability in code used by several virtualization platforms can put business information stored in data centers at risk of compromise.
Fourteen critical vulnerabilities in Internet Explorer were among the targets of Microsoft's monthly batch of security patches released Tuesday. In all, it fixed 46 vulnerabilities across products including Windows, Internet Explorer and Office.
A critical vulnerability in MacKeeper, a controversial security program for Mac computers, could let attackers execute malicious commands on Macs when their owners visit specially crafted Web pages.