Two-and-a-half months on from the discovery of the Heartbleed bug affecting OpenSSL security, and one security researcher claims that the flaw still affects 300,000 servers.
The cycle of updating software at the end of life has, itself, reached its end of life with managed services the way ahead says Kevin Linsell
Mark O'Neill suggests that his top ten potential vulnerabilities of the Internet of Things (IoT), need to be considered now, before mass deployment.
With Windows XP fast approaching its end-of-support deadline, many firms are going to be at risk of attack, reports Kate O'Flaherty.
Microsoft's latest Patch Tuesday security fixes for its products included two last-minute updates that show the company rushing to respond to the escalating pace of cyber attacks.
Microsoft's Patch Tuesday update has been released, giving users a highly anticipated fix for a TIFF zero-day flaw and 23 other bugs affecting company software.
A recent Java update was only downloaded by seven per cent of users.
Oracle has said that making Java more secure is a priority, as it lines up regular patch updates.
GFI Software has added a patch management capability to its GFI Cloud offering.
Systems management vendor LANDesk Software has acquired VMware's Protect product family of IT management solutions.
Microsoft issued nine bulletins to fix 14 vulnerabilities this week; however it left several known flaws unpatched.
Microsoft released seven bulletins last night, containing four patches rated as critical, to fix 20 vulnerabilities.
Adobe has released patches for zero-day flaws in its Reader and Acrobat products.
Microsoft released 12 bulletins, five of which were rated as critical, to address 57 vulnerabilities on Patch Tuesday.
Microsoft is to release seven bulletins next week, but will not patch the zero-day vulnerability in Internet Explorer.
Microsoft released six bulletins on yesterday's Patch Tuesday, including four rated as 'critical'.
GFI Software has added patch management and mobile device management into the latest version of its business edition of Vipre anti-virus.
Apple has released updates to address flaws in its Safari 6 web browser and iOS 6 mobile operating system.
After a quiet January Patch Tuesday that saw only one security update, Microsoft is back with a vengeance this month.
Microsoft has shot down reports that its Internet Information Services (IIS) suffers from a vulnerability, saying that customers only need to worry if they are running a nondefault configuration of the web server.
Microsoft delivered its monthly security update on Tuesday to rectify 12 vulnerabilities, five of which are present in Internet Explorer (IE) and comprise the most pressing patch to deploy.
A new threat dubbed "Nine-Ball" has compromised up to 40,000 legitimate websites, which are, in turn, infecting users with an information-stealing Trojan, according to security vendor Websense.
Attackers are actively exploiting a gaping zero-day hole in versions 9 and earlier of Adobe Acrobat and Reader, the company has warned.
Microsoft plans to release eight patches on Tuesday - six for "critical" vulnerabilities - as part of its monthly security update.
Only two per cent of computer users are fully patched and the other 98 per cent are running at least one insecure, unpatched program, security firm Secunia said this week.
The "W32.Downadup" worm, exploiting the patched Microsoft's Windows Server Service (MWSS) vulnerability, is the key component in a developing botnet, researchers at Trend Micro said this week.
RealNetworks has issued fixes for four critical vulnerabilities in its RealPlayer program.
Oracle on Tuesday released 45 fixes for vulnerabilities across its products, including the widely deployed Oracle Database.
The second version of the iPhone, released Friday, includes faster internet, GPS functionality and an application store — as well as 13 security fixes.
Sun Microsystems has issued fixes for a number of vulnerabilities in its Java offerings, while six flaws in Apple TV were patched.