Ryan Naraine

Google Inc. has made an “adjustment” to its Google Desktop application to protect users from an unpatched design flaw in Microsoft Corp.s Internet Explorer browser. The bug, which was discovered and reported by Israeli hacker Matan Gillon, provides malicious attackers with an easy way to use Google Desktop or other Internet-facing applications to covertly hijack […]

More than two years after Blaster turned the summer of 2003 into an IT administrators worst nightmare, the worm is still very much alive and there are fears within Microsoft that thousands of Windows machines will never be completely dewormed. According to statistics culled from Microsofts Windows malicious software removal tool, between 500 and 800 […]

The browser patent spat between Microsoft Corp. and Eolas Technologies took another twist Friday with an announcement from Redmond that it will change the way Internet Explorer handles embedded content on Web pages. The start-stop-start-stop decision comes more than two years after Microsoft originally warned that the Eolas court ruling would force certain technical modifications […]

Researchers at eEye Digital Security have flagged another critical vulnerability in RealPlayer, the digital media software released by RealNetworks Inc. The Aliso Viejo, Calif.-based eEye said in a brief advisory that the flaw can be exploited by remote malicious hackers to execute arbitrary code in the context of the logged-in user. The bug carries a […]

An unpatched design flaw in Microsoft Corp.s Internet Explorer browser could give malicious hackers an easy way to use the Google Desktop application to covertly hijack user information. Matan Gillon, a hacker from Israel, discovered the vulnerability in the cross-domain protections in Internet Explorer and published a proof-of-concept exploit to show how Google Desktop can […]

Microsoft Corp.s Windows OneCare PC security bundle is now available to the general public. The consumer-facing tool, which features virus scanning, firewall protection, data backup and PC cleanup tools, has been released to the Windows Live portal as part of Microsofts plan to extend the beta testing process to a wider audience. As previously reported, […]

Microsoft Corp. is working on a plan to release an out-of-cycle patch to cover a gaping hole in its dominant Internet Explorer browser. Sources say the MSRC (Microsoft Security Response Center) is aggressively aiming to release the emergency IE fix ahead of the December 13 Patch Tuesday schedule. Officially, the company isnt commenting on a […]

Apple Computer Inc. late Tuesday shipped a massive Mac OS X update to correct security flaws in several Internet-facing components, including multiple code execution bugs in the Safari Web browser. In all, Apples Security Update 2005-009 addresses 13 vulnerabilities affecting Mac OS X (client and server). Security alerts aggregator Secunia Inc. rated the update as […]

Security researchers at Trend Micro Inc. have pinpointed RSS (Really Simple Syndication) technology as a lucrative target for future bot worm attacks. David Sancho, senior anti-virus research engineer at Trend Micro, warned that RSS feed hijacking will become commonplace when Microsoft Corp. ships Internet Explorer 7, a browser refresh that will feature built-in RSS support. […]

Macromedia has released a batch of security patches to cover a trio of flaws affecting some of its enterprise-facing server products. Affected products include Flash Media Server, Breeze Communication Server/ Live Server and Contribute Publishing Server. The Flash Media Server bug affects versions 1.0 through 1.5. The company explained that the server does not sufficiently […]