Ryan Naraine

The Mozilla Foundation has shipped the first patch for its flagship Firefox 1.5 browser to plug a series of security vulnerabilities and memory leaks. The open-source group has started pushing out Firefox 1.5.0.1 as an automatic update and recommended that all users apply the upgrade to protect against a known denial-of-service bug and several undisclosed […]

With the clock ticking on a Feb. 3 D-Day for the activation of the destructive Blackworm worm payload, anti-virus vendors are rushing to release free removal tools to help contain the damage. The worm, also known as Kama Sutra, MyWife.E or Nyxem.E, uses the lure of sexually explicit photographs to trick e-mail users into executing […]

Virus hunters combing through the wreckage of the zero-day WMF (Windows Metafile) attacks have found evidence that exploit code was being peddled by Russian hacker groups for $4,000 a pop. The first sign of an exploit was traced back to the middle of December 2005, a full two weeks before anti-virus vendors started noticing mysterious […]

An independent security researcher has pinpointed a denial-of-service flaw in Microsofts brand new Internet Explorer 7 Beta 2 Preview just moments after installing the security-centric browser makeover. Tom Ferris said could hardly believe his eyes when the new browser crashed less than 15 minutes after he started using a homemade fuzz testing tool to poke […]

Microsofts anti-malware engineering team has joined the chorus of calls for computer users to be on high alert for an e-mail worm that uses social engineering tactics to deliver a destructive payload. The company issued an official security advisory to back up a warning from its anti-malware researchers that the worm—known as Kama Sutra, Blackworm, […]

A high-powered group of security volunteers is raising an “urgent alert” for a potentially destructive e-mail worm crawling through in-boxes, warning that the worms payload is capable of destroying important documents on an infected machine. The worm, which uses the lure of sexually explicit Kama Sutra photographs to trick e-mail users into opening an attachment, […]

There was an uncharacteristic edge to David Litchfields voice when he took the stage at the Black Hat Federal Briefings in Arlington, Va., this week. Five minutes into his presentation—which centered on an unpatched vulnerability in the Oracle PL/SQL Gateway—it was clear that Litchfield, a noted database security expert, had completely given up with trying […]

ARLINGTON, Va.—British security researcher David Litchfield used the spotlight of the Black Hat Federal Briefings here to call attention to a gaping flaw in the Oracle PL/SQL Gateway that remains unpatched three months after it was first reported to the database server giant. In a rare departure from his companys policy of withholding technical details […]

Web search powerhouse Google has joined with Sun Microsystems to fund a new anti-spyware coalition that is on tap to launch on Jan. 25, according to information reaching eWEEK. The nonprofit group is setting up shop at StopBadware.org to help computer users deal with the scourge from adware, spyware, rootkits and other malware threats. Sources […]

A high-powered group of security volunteers are raising an “urgent alert” for a potentially destructive e-mail worm crawling through inboxes, warning that the worms payload is capable of completely destroying important documents on an infected machine. The worm, which uses the lure of sexually explicit Kama Sutra photographs to trick e-mail users into executing an […]