The H Security

Google Chrome turns version 6 on its second birthday

Thu, 02 Sep 2010 15:41:06 GMT

On the second anniversary of the release of the first version of Chrome, Google has released version 6 of its Chrome web browser into the stable and beta channels which also closes critical holes

PS3 hack source code published

Thu, 02 Sep 2010 15:30:29 GMT

Source code which can be used on programmable developer boards to circumvent the Playstation 3's security systems, analogous to a PS3 Jailbreak, has been released under the name PSGroove

Wireshark 1.4.0 drops Windows 2000 support

Thu, 02 Sep 2010 10:05:43 GMT

The Wireshark project has released version 1.4.0 of its open source, cross-platform network protocol analyser, adding and updating a number of new features and dropping support for Windows 2000 systems

iTunes 10 addresses 13 security vulnerabilities

Thu, 02 Sep 2010 09:21:50 GMT

All of the holes are contained in WebKit and can be exploited to compromise systems

Secunia's PSI 2.0 beta tackles Windows update annoyances

Wed, 01 Sep 2010 15:25:44 GMT

Outdated programs make it easy for attackers to compromise a system. The newly released beta of version 2.0 of Secunia's Personal Software Inspector (PSI) not only sniffs out vulnerable software, it also updates some programs automatically

Microsoft continues to workaround DLL vulnerability

Wed, 01 Sep 2010 13:28:37 GMT

Microsoft has released a 'fix-it' which automatically creates the registry entry required to protect against the DLL vulnerability

Backdoor discovered in QuickTime

Tue, 31 Aug 2010 16:28:57 GMT

A forgotten parameter which has been dormant in QuickTime's ActiveX control for 9 years and is still present in the current version can reportedly be exploited to inject malicious code

Unpatched security holes: IBM re-evaluates

Tue, 31 Aug 2010 13:25:40 GMT

A report by IBM said that Google left every third critical hole unpatched in the first half of 2010. IBM have now admitted their mistake and corrected their report

Two month breathing space for Indian BlackBerry users

Tue, 31 Aug 2010 10:25:45 GMT

The bone of contention is the Blackberry Enterprise Service (BES) communication service for businesses. The Indian government is demanding complete access to the service, RIM is maintaining that it cannot provide this on principle. RIM has now made proposals which are to be implemented and examined

VxWorks Cert bundles Wind River's security-critical platforms

Tue, 31 Aug 2010 08:55:58 GMT

The embedded specialist combines its VxWorks DO-178B and VxWorks IEC 61508 real-time operating systems to create a new product which supports the DO-178B and IEC 61508 security standards by default

Microsoft tool for DLL vulnerability interferes with some applications

Mon, 30 Aug 2010 14:55:24 GMT

Users wanting to use the tool to protect themselves from the DLL vulnerability in multiple applications will find their ability to use certain programs, among them Chrome, restricted

The H Week - OpenSolaris Governance Board resigns, DLL hijacking spreads

Sat, 28 Aug 2010 11:03:56 GMT

In the past week - the OpenSolaris Governance Board resigned, more Windows applications were found to be vulnerable to DLL hijacking, Ubuntu got a technical architect, Fedora 14 alpha arrived and Zurich Insurance was fined £2.28m for losing its customers' private data

Attackers exploit DLL vulnerability in Office and other applications

Fri, 27 Aug 2010 15:01:47 GMT

According to one report, attackers are already actively exploiting an error in the way libraries are loaded in many different applications.

VLC Media Player 1.1.4 fixes Windows DLL vulnerability

Fri, 27 Aug 2010 14:46:09 GMT

The VideoLAN Project developers have issued version 1.1.4 of their VLC Media Player, a maintenance and security update that addresses a DLL loading design vulnerability on Windows systems that could lead to the execution of arbitrary code

Camino 2.0.4 addresses critical security vulnerabilities

Fri, 27 Aug 2010 14:06:48 GMT

The Camino Project developers have released version 2.0.4 of their open source web browser for Mac, addressing several critical security vulnerabilities in the Gecko rendering engine

Microsoft's Security Development Lifecycle under Creative Commons License

Fri, 27 Aug 2010 11:00:45 GMT

Microsoft has placed its process for secure software development under a Creative Commons License. The company hopes that this will lead to more developers utilising its process for programming software more securely across the entire product lifecycle

US Deputy Secretary of Defense confirms virus attack

Thu, 26 Aug 2010 15:49:48 GMT

In an article published by the Council on Foreign Relations, US Deputy Secretary of Defense William J. Lynn describes a 2008 incident that was previously rated as classified

Number of critical, but unpatched, vulnerabilities is rising

Thu, 26 Aug 2010 14:08:42 GMT

According to one study, more vulnerabilities were discovered in the first half of 2010 than ever before and one in two remain unpatched

Scope of DLL security problem widens - Update

Thu, 26 Aug 2010 08:46:15 GMT

The number of popular applications affected by the Windows DLL problem is on the rise. In addition to Firefox and Opera, other programs such as PowerPoint, Photoshop, VLC and uTorrent are now known to be vulnerable

Scope of DLL security problem widens

Wed, 25 Aug 2010 16:26:06 GMT

Adobe patch 18 critical holes in Shockwave Player

Wed, 25 Aug 2010 11:26:15 GMT

Adobe have released Adobe Shockwave Player 11.5.8.612 to close 18 critical holes on Windows and Mac OS X systems.

Apple releases Security Update for Mac OS X

Wed, 25 Aug 2010 10:34:08 GMT

Apple has released Security Update 2010-005 for its Leopard and Snow Leopard operating systems, closing a total of 13 vulnerabilities - eight of them rated critical

Microsoft warns of DLL vulnerability in applications

Tue, 24 Aug 2010 15:29:35 GMT

Microsoft is warning of a widespread programming error which attackers can exploit to inject malicious code into many applications

£2.28 million fine for Zurich Insurance's data loss

Tue, 24 Aug 2010 15:14:38 GMT

Zurich Insurance's UK branch has been fined £2.27 million by the Financial Services Authority (FSA) as punishment for losing the details of 46,000 customers

OpenSSH 5.6 arrives

Mon, 23 Aug 2010 15:49:04 GMT

The OpenSSH developers have released version 5.6/5.6p1 of their open source SSH (Secure Shell) implementation, fixing a number of bugs from the previous version and adding several new features