UK Media Coverage
Experts ding DHS vulnerability sharing plan as too limitedThe Department of Homeland Security's plan to selectively share information on zero-day vulnerabilities is too restrictive and should be opened up to more companies, experts say. Read more May 17, 2013 |
|
Infosecurity Europe 2013: Show attracts 13,200 visitors; highlighting security is top of the CEO’s agendaAs the doors closed on the 18th Infosecurity Europe Show in London last week, it became clear that with a recorded 13,200 visitors (pre ABC Audit) attending during the three day event - Infosecurity Europe truly is the most important event in the European calendar for IT security. Read more May 16, 2013 |
|
|
Patch Tuesday sees zero-days in Internet Explorer and Adobe products fixedMicrosoft released ten bulletins yesterday fixing 33 vulnerabilities, including the zero-day in Internet Explorer 8. Read more May 15, 2013 |
Microsoft takes care of IE zero day with Patch Tuesday updateMicrosoft released 10 security bulletins for Patch Tuesday. Read more May 15, 2013 |
|
Deutsche Telekom launches automated code verification serviceDeutsche Telekom has taken the wraps off a useful online service that verifies program code for any security holes or similar vulnerabilities. Read more May 15, 2013 |
|
|
All board the security patch wagon! Next stop: Microsoft, Adobe, MozillaToday, right on schedule, Microsoft's monthly security patch bandwagon rolled into town with updates for Internet Explorer, Office and Windows - with Adobe bringing up the rear. Read more May 15, 2013 |
Microsoft to tackle IE8 zero-day vulnerability in May Patch TuesdaySoftware house Microsoft has said it will address a vulnerability in its May 2013 Patch Tuesday next week that could potentially expose systems to zero-day attacks on Internet Explorer(IE) 8 if not patched. Read more May 10, 2013 |
|
|
Microsoft to patch IE8 zero-dayMicrosoft is to issue a security update for a zero-day vulnerability in Internet Explorer 8 (IE8), just a week after issuing a security advisory on the subject. Read more May 10, 2013 |
Microsoft to fix IE8 zero-day flaw on Patch TuesdayMicrosoft's May Patch Tuesday will include a fix for a recently discovered zero-day flaw in Internet Explorer 8 that has been used to attack several high-profile targets. Read more May 10, 2013 |
|
|
|
Microsoft to address IE8 zero-day vulnerability in next Patch TuesdayMicrosoft is to address the vulnerability in Internet Explorer 8 that could potentially lead to zero-day attacks in its May Patch Tuesday next week. Read more May 10, 2013 |
|
|
Enjoy the weekend, sysadmins: Next Tues fixes 33 Microsoft bugsMicrosoft has promised to fix a high-profile vulnerability in Internet Explorer 8, among other holes, in this month's Patch Tuesday rollout of security updates. Read more May 10, 2013 |
|
Video interview: Web browsers responsible for majority of malware infectionsEleanor Dallaway, editor of Infosecurity magazine, sits down with Qualys’ Wolfgang Kandek at the recent Infosecurity Europe conference in London to discuss the information security threat landscape. Read more May 9, 2013 |
|
|
Microsoft plasters IE8 hole abused in nuke lab PC meltdownMicrosoft has issued a temporary fix for a high-profile Internet Explorer 8 vulnerability. This is the bug linked to recent targeted attacks against web pages accessed by nuclear weapons research teams at the US Department of Labor website. Read more May 9, 2013 |
Microsoft Patch Tuesday targets multitude of Internet Explorer faultsMicrosoft is issuing critical security bulletins this Patch Tuesday that affect all versions of Internet Explorer and deal with an exploit that attackers are actively working. Read more May 9, 2013 |
|
Microsoft Internet Explorer 8 zero-day vulnerability gets emergency fixMicrosoft has released a temporary fix for a zero-day vulnerability in Internet Explorer 8, following the discovery of a malicious cyber espionage campaign targeting the flaw. Read more May 9, 2013 |
|
Researchers Warn Over Internet Explorer 8 Zero-Day FlawAttacks in the wild and a fresh Metasploit module make life difficult for Microsoft Read more May 7, 2013 |
|
|
Security pros cheer hint of hands-off updates in Windows BlueApp auto-updating fits Microsoft's philosophy that silent patching is smart, say experts Read more May 7, 2013 |
|
|
Microsoft issues security advisory on IE8 zero-day exploitMicrosoft has published a security advisory about an exploit for zero-day vulnerability (CVE-2013-1347) in Internet Explorer 8. Read more May 7, 2013 |
Skycam camera would harness Skype to deliver streaming videoThe would-be camera -- which its co-founder is looking to crowd-fund -- connects to the Internet using Microsoft's Skype service. Read more May 2, 2013 |
|
DLP not the security silver bulletCustomer confusion around what can be delivered by data loss prevention (DLP) technology is leading to some vendors to advise resellers to reconsider the way they pitch the technology. Read more May 2, 2013 |
|
10 steps you can take to secure a laptopTravelling with a laptop can represent a significant security risk to your business. This is because the data it contains is far more vulnerable when you are on the move than when you use a laptop in the relative safety of your office or home environment. Read more May 2, 2013 |
|
Qualys CTO: cloud security is faster and easier to implementQualys has announced that its QualysGuard vulnerability management technology is nowintegrated with the FireMon security manager/risk analyser technology and – with this in mind – last week we caught up with Wolfgang Kandek, Qualys’ CTO, for an update on this move and where he sees IT security heading. Read more May 1, 2013 |
|
Imperva analysis demonstrates the importance of crowd-sourced threat intelligenceResearch just published by Imperva claims to show that crowd-sourced threat intelligence is a key method by which business can raise the bar on their security defences. Read more Apr 25, 2013 |
|
Qualys and FireMon enable real-time network risk visibility and remediationQualys, Inc. and FireMon have announced the integration of QualysGuard Vulnerability Management (VM) and FireMon Security Manager with Risk Analyzer in FireMon’s upcoming Version 7.0 release. Read more Apr 24, 2013 |
|
InfoSec 2013: Government Promises £500,000 Cyber Aid For SMBsSMBs are getting battered and the government wants to help with little pots of money Read more Apr 23, 2013 |
|
|
Browsers pose the greatest threat to enterprise, Microsoft reportsCommitted to Internet Explorer, Microsoft is experimenting with an architecture to replace the browser Read more Apr 22, 2013 |
The Security Skills GapThe UK’s National Audit Office (NAO) released a report in February this year (The UK cyber security strategy: Landscape review) that concluded that a lack of skilled workers is hampering the UK's fight against cybercrime. Read more Apr 22, 2013 |
|
|
|
Live on-stand interviews & wine: What we're up to at Infosecurity Europe...Well, it's our last day in the office before we all go on site for Infosecurity Europe next week. There's a lot of excitement (and panic!) in the air...A few bits of news about what myself and the rest of team Infosecurity will be up to at the event next week... Read more Apr 19, 2013 |
IT supply-chain security standard aims to prevent counterfeits, tamperingThe danger of counterfeit and tampered IT products is well known, and to fight it, the Open Group has published a technical security standard aimed at supply-chain safety. Read more Apr 17, 2013 |
|
|
|
Oracle addresses 120+ vulnerabilities in massive April patch updateOracle has published two critical security updates, along with the Oracle Critical Patch Update (CPU) – all in all fixing 42 and 120+ vulnerabilities, respectively. Read more Apr 17, 2013 |
Oracle plugs 42 Java flaws in critical updateOracle is issuing 170 security patches – with 42 for Java alone – in a set of critical updates for its products. Read more Apr 17, 2013 |
|
Topical Tuesday: 12 is the new 8 when it comes to password lengthWolfgang Kandek, Qualys’ chief technology officer, explains how his daughter’s emailaccount started generating spam – and why two-factor authentication and longer passwords are the answer… Read more Apr 16, 2013 |
|
Microsoft eyes ditching browser for secure Web appsMicrosoft researchers have developed the prototype of a client-side architecture that would replace the Web browser with a much more secure virtualized environment that isolates Web applications. Read more Apr 15, 2013 |
|
Problems with Patch Tuesday's MS13-036 bulletinOne of the patches pushed out by Microsoft has been withdrawn following reports of problems, including the infamous Blue Screen of Death Read more Apr 15, 2013 |
|
|
|
If you haven’t yet, do not install Patch Tuesday’s MS13-036 bulletinOne of the patches pushed out by Microsoft this Patch Tuesday has been withdrawn following reports of problems, including the infamous Blue Screen of Death (BSOD). Read more Apr 15, 2013 |
Microsoft Repairs Botched Patch Tuesday UpdateMicrosoft has repaired its botched Patch Tuesday update after it caused a number of problems for end-users Read more Apr 15, 2013 |
|
|
|
Microsoft releases nine bulletins, but no Pwn2Own fixesMicrosoft issued nine bulletins to fix 14 vulnerabilities this week; however it left several known flaws unpatched. Read more Apr 11, 2013 |
Widely used wireless IP cameras open to hijacking over the Internet, researchers sayWireless IP cameras from Foscam and other vendors have serious security issues, researchers said at Hack in the Box Read more Apr 11, 2013 |
|
Patch Tuesday: Microsoft releases patches to fix 14 vulnerabilitiesSoftware leader Microsoft released 9 bulletins for various software on Tuesday as part of its regular ‘Patch Tuesday’ cycle of updates. Read more Apr 10, 2013 |
|
Critical Internet Explorer Fix In Patch Tuesday UpdateIT pros urged to take immediate action for all supported versions of the Microsoft browser Read more Apr 10, 2013 |
|
Patch Tuesday leaves Internet Explorer zero day untouchedThere are only two Critical security bulletins this month, but a recently discovered Internet Explorer zero day remains vulnerable. Read more Apr 10, 2013 |
|
Patch Tuesday Lands With Critical Internet Explorer FixAll supported versions of IE affected as IT pros urged to take action Read more Apr 9, 2013 |
|
|
|
Security updates likely to keep admins busy in AprilSecurity updates from Microsoft, Oracle and PostGreSQL are likely to keep security administrators busy in April. Read more Apr 8, 2013 |
Microsoft's next Patch Tuesday to fix nine flawsMicrosoft will patch nine vulnerabilities in next week's Patch Tuesday, with two of the fixes rated critical. Read more Apr 5, 2013 |
|
|
|
Patch Tuesday preview: April 2013Next week’s Microsoft Patch Tuesday comprises nine bulletins. Read more Apr 5, 2013 |
|
|
Microsoft tackles Windows 8 security flaw with latest Patch TuesdayMicrosoft has released details of April's Patch Tuesday update, with critical vulnerabilities in Windows and Internet Explorer being addressed. Read more Apr 5, 2013 |
|
|
Microsoft to slap 9 patches on Windows junkies on TuesdayMicrosoft is lining up nine patches - two critical - as part of the April edition of its regular Patch Tuesday update cycle. Read more Apr 5, 2013 |
|
|
Microsoft quietly patches first Modern app for Windows 8, RTMicrosoft earlier this week quietly issued its first security update for one of its Windows 8 apps, patching a link-spoofing vulnerability in Mail. Read more Mar 29, 2013 |
|
Who Owns Application Security, Patching In Your Business?Too many organizations lack a formal security plan, leaving applications vulnerable to exploits, warns SANS Institute. Read more Mar 22, 2013 |
|
|
Security pros pan and praise Microsoft's plans on updating Modern apps in Windows 8, RTExperts like the on-the-fly updating of apps, but the alerts ... not so much Read more Mar 14, 2013 |
|
Java's security problems 'unlikely to be resolved soon'Security experts think Oracle should have acted sooner to strengthen Java against attacks Read more Mar 14, 2013 |
Scary flaw makes your USB ports a major security riskMicrosoft released seven new security bulletins for the March Patch Tuesday Read more Mar 13, 2013 |
|
Java's security problems unlikely to be resolved soon, researchers saySecurity experts think Oracle should have acted sooner to strengthen Java against attack Read more Mar 13, 2013 |
|
|
|
Microsoft issues seven bulletins for Patch Tuesday, but nothing for Pwn2Own vulnerabilityMicrosoft released seven bulletins last night, containing four patches rated as critical, to fix 20 vulnerabilities. Read more Mar 13, 2013 |
Microsoft issues four critical updates for Patch TuesdayCould allow remote code execution via a 'specially crafted' webpage in IE Read more Mar 13, 2013 |
|
|
|
Black Tuesday patchfest: A lot of digits plug security dykesAdobe joins Redmond in game of vuln Twister Read more Mar 13, 2013 |
|
|
Microsoft reverses IE10's Flash blocking in Windows 8, RTBrowser now shows Flash by default, leverages edge over iOS, say analysts Read more Mar 12, 2013 |
|
|
Microsoft releases four critical security updatesMicrosoft is to release four “critical” patches in its monthly Patch Tuesday security update according to the Advance Notice. Read more Mar 11, 2013 |
Apple plugs App Store HTTPS omission 6 months laterIt took Apple 6 months to plug a hole in the App Store that could have lead to various security issues Read more Mar 11, 2013 |
|
Microsoft Readies Four Critical Fixes For Patch TuesdayIE10 flaw uncovered by VUPEN during PWN2OWN not addressed in latest update Read more Mar 11, 2013 |
|
The 4 security controls your business should take nowSecurity experts have defined the 20 most important security controls any organization should make now. Start with these four. Read more Mar 9, 2013 |
|
|
|
March 2013 Patch Tuesday previewThis month’s Patch Tuesday will include seven security bulletins from Microsoft: four are critical and three are important; three require reboots, three may require a reboot, and one does not. Both businesses and consumers will likely be affected. Read more Mar 8, 2013 |
IE flaw in Windows 8 to be patched next weekMicrosoft will release seven fixes in next week's Patch Tuesday, four of them patching critical vulnerabilities. Read more Mar 8, 2013 |
|
|
|
Microsoft to release four critical patches among seven fixes next weekMicrosoft is to release seven bulletins on next week's Patch Tuesday, four of which are rated as critical. Read more Mar 8, 2013 |
|
|
Microsoft preps UPDATE EVERYTHING patch batchMicrosoft plans to deliver seven bulletins next week, four critical, and three important, as part of the March edition of its regular Patch Tuesday update cycle. Read more Mar 8, 2013 |
|
|
Microsoft Patch Tuesday targets Internet Explorer drive-by attacksPrepare for a busy time after the weekend Read more Mar 7, 2013 |
Java security woes to stay with businesses for a long timeZero-day vulnerabilities, delays in receiving patches and continuous cyberattacks are enough to make any large company want to toss the buggy Java plug-in from browsers. But that seemingly simple solution is not possible for the majority of businesses, which still use the platform for running Web-based Java applications, experts say Read more Mar 6, 2013 |
|
|
|
Qualys beefs up security tool for Amazon Cloud usersNew QualysGuard connector conducts vulnerability scans of virtual servers in Amazon Cloud. Read more Feb 28, 2013 |
New security tool serves Amazon Cloud usersThe new QualysGuard connector conducts vulnerability scans of virtual servers in the Amazon Cloud. Read more Feb 27, 2013 |
|
|
|
RSA Conference: Age of internet of things is upon usThe challenge of hyper-connected devices and the 'internet of things' will see billions of devices connected by the end of this decade, and all need to be secured. Read more Feb 27, 2013 |
Adobe springs emergency Flash update, says hackers hitting FirefoxSecond 'out-of-band' patch this month, fourth fix overall in 2013 Read more Feb 26, 2013 |
|
|
|
Chrome 25 stable channel released ahead of Pwn2OwnGoogle’s Chrome 25 browser has now been promoted from beta to the full stable channel, fixing nine high severity vulnerabilities in the process. Chrome, Firefox and Internet Explorer have now all had major security overhauls during February. Read more Feb 25, 2013 |
Qualys streamlines vulnerability scanning of Amazon cloud instancesQualys launches Amazon AWS API data connectors for QualysGuard Read more Feb 25, 2013 |
|
|
|
Oracle, Apple Issue Java Security PatchesOracle updates Java 7 and issues the final-ever public update for Java 6, while Apple releases its own Java 6 update for OS X users. Read more Feb 20, 2013 |
|
|
Mozilla toughens up on CA certificate abuseSub-CA certificates will need technical constraints or be publicly disclosed and audited. Read more Feb 20, 2013 |
|
|
Apple FINALLY fills gaping Java hole that pwned its own devsZero-day vuln also downed Facebook staff and other Mac users Read more Feb 20, 2013 |
|
New Certificate Authorities group promotes web security standardsCertificate Authority Security Council will raise awareness about OCSP stapling Read more Feb 18, 2013 |
|
|
Certificate Authorities form group to push for better revocation checkingNewly formed Certificate Authority Security Council will raise awareness about OCSP stapling Read more Feb 15, 2013 |
|
|
New Certificate Authorities group promises better revocation checkingCertificate Authority Security Council will raise awareness about OCSP stapling Read more Feb 15, 2013 |
Microsoft unleashes a Patch Tuesday to make your head spinMicrosoft isn't showing IT admins much love this Valentine's Day week with 12 new security bulletins. Read more Feb 13, 2013 |
|
|
|
Microsoft fixes 57 vulnerabilities on Patch TuesdayMicrosoft released 12 bulletins, five of which were rated as critical, to address 57 vulnerabilities on Patch Tuesday. Read more Feb 13, 2013 |
Microsoft issues 57 critical patches for February Patch TuesdayMicrosoft releases patches on the second Tuesday of every month, and this February Patch Tuesday saw it issue 12 bulletins addressing 57 vulnerabilities across the firm's software. Read more Feb 13, 2013 |
|
|
|
Get up, shake off the hangover: These 57 Microsoft holes won't fix themselvesA bumper Microsoft Patch Tuesday has rolled out 12 security bulletins that collectively address a hefty 57 vulnerabilities. Read more Feb 13, 2013 |
|
|
How to find the most vulnerable systems on your internal networkData from a large number of penetration tests in recent years show most corporate networks share common vulnerabilities. Many of these problems could be mitigated by appropriate education in “hacker thinking” for technical staff. Read more Feb 12, 2013 |
Patch Tuesday preview: February 2013February’s Patch Tuesday will comprise 12 Microsoft security bulletins covering some 57 vulnerabilities. Read more Feb 8, 2013 |
|
Internet Explorer flaws fixed by Microsoft Patch Tuesday updatesMicrosoft says Internet Explorer versions 6 through 10 are subjects of two critical Patch Tuesday updates for February that could address recent Java woes. Read more Feb 8, 2013 |
|
|
|
Microsoft to deliver 12 patches next week, with five rated as criticalMicrosoft is to release 12 bulletins next Tuesday, including five critical patches, to cover 57 vulnerabilities. Read more Feb 8, 2013 |
|
|
Every single Internet Explorer at risk of drive-by hacks until Patch TuesdayMicrosoft has lined up a bumper Patch Tuesday this month to snap shut a backbreaking 57 security vulnerabilities in its products. Read more Feb 8, 2013 |
Lucky 13 – a new attack against SSL/TLSA flaw discovered in the design of the SSL protocol Read more Feb 7, 2013 |
|
Researchers devise new attack techniques against SSLThe new 'Lucky Thirteen' attacks can be used to decrypt SSL/TLS and DTLS data if certain conditions are met Read more Feb 6, 2013 |
|
|
|
New attack techniques against SSL revealedThe new 'Lucky Thirteen' attacks can be used to decrypt SSL/TLS and DTLS data if certain conditions are met Read more Feb 6, 2013 |
|
|
SC Magazine Awards Europe 2013 - shortlist announcedThe finalists for this year's SC Magazine Awards Europe have been announced. Read more Feb 5, 2013 |
Lesson learned in cyberattack on The New York TimesQualys comment on New York Times cyberattack Read more Feb 1, 2013 |
|
|
Irish security VAR Integrity intensifies UK assaultQualys mention as 'big' security vendor Read more Jan 31, 2013 |
|
|
Big Data means big securityDavid Lacey blog post-CSO Interchange - mentions possibility of event attendees creating a voluntary Code of Practice for Big Data use Read more Jan 26, 2013 |
Can Big Data be tapped for security purposes?Article follows on from briefing with Peter Wood following CSO Interchange Read more Jan 24, 2013 |
|
How to prevent 'zombie accounts' from haunting your digital identityComment from Wolfgang Kandek regarding password management Read more Jan 24, 2013 |
|
Top tips for staying safe onlineCoverage from top tips for staying safe online Read more Jan 22, 2013 |
|
|
|
Oracle to issue Java patch following US Homeland Security warningReview of security update for zero day flaw in Java Read more Jan 14, 2013 |
|
|
Microsoft flings out emergency patch for Iatest gaping IE holeCoverage of Microsoft's plans to release an out-of-band patch Read more Jan 14, 2013 |
Oracle Rushes Out Java Patch But ‘Serious’ Flaws Left OpenReview of Java patch Read more Jan 14, 2013 |
|
|
|
First Java zero-day of 2013 implemented into exploit kitsCoverage of zero-day threat to Java Read more Jan 11, 2013 |
|
|
UK cyber-hygiene in need of a good scrub upQualys comment on Defence Select Committee report into the state of cyber security in the military Read more Jan 10, 2013 |
Security experts stress urgency of patching Windows XML flawMicrosoft released seven new security bulletins for the first Patch Tuesday of 2013--the most urgent being a patch for a flaw in XML. Read more Jan 9, 2013 |
|
|
|
Shocking and scaring into awareness?Qualys comment on Defence Select Committee report into the state of cyber security in the military Read more Jan 9, 2013 |
|
|
Microsoft releases seven bulletins with two critical patchesMicrosoft released seven bulletins on its first patch Tuesday of 2013, addressing 12 vulnerabilities in Windows, Office, Developer Tools and Windows Server. Read more Jan 9, 2013 |
|
|
Hellish XML demon exorcised from Windows, IE bug staysPatch Tuesday Microsoft released two "critical" patches and five "important" security updates on Tuesday - but none of the fixes address a zero-day vulnerability in Internet Explorer discovered two weeks ago. Read more Jan 9, 2013 |
|
|
Microsoft to release seven bulletins next week, but no fix for Internet ExplorerMicrosoft is to release seven bulletins next week, but will not patch the zero-day vulnerability in Internet Explorer. Read more Jan 4, 2013 |
|
|
Microsoft Patch Tuesday offers no easy start to 2013The first Microsoft monthly security update for 2013 does not offer an easy start to the year for IT administrators with seven bulletins covering a wide variety of software. Read more Jan 4, 2013 |
Microsoft Patch Tuesday: Two critical fixes, many affected Windows usersMicrosoft is issuing two critical fixes on this month's Patch Tuesday, one of them affecting its most popular operating system -- Windows 7 -- in conjunction with Windows Server 2008 R2. Read more Jan 4, 2013 |
|
Microsoft Delivers Two Critical Fixes On First 2013 Patch TuesdayThe first Patch Tuesday of 2013 includes two critical bulletins and another five issues for IT teams to address. Read more Jan 4, 2013 |
|
|
|
January 2013 Patch Tuesday previewThe first Microsoft Patch Tuesday for 2013 contains: 7 security bulletins, five of them ‘important’, but two of them ‘critical.’ Bulletins 1 and 2 will be the ones to watch. Read more Jan 4, 2013 |
Microsoft to patch Windows 8, but stays mum on IE zero-day fixMicrosoft today said it will release seven security updates next week -- including one rated critical for Windows 8 and Windows RT -- to patch 12 vulnerabilities in Windows, Office, SharePoint Server and the company's website design software. Read more Jan 3, 2013 |
|
Microsoft Patch Tuesday: Just two critical fixes but they affect a lot of Windows systemsMicrosoft is issuing two critical fixes on this month's Patch Tuesday, one of them affecting its most popular operating system -- Windows 7 -- in conjunction with Windows Server 2008 R2. Read more Jan 3, 2013 |
