Ryan Naraine

A high-profile security research outfit on Tuesday warned that a newly discovered flaw in the Domain Name System protocol could be exploited remotely to crash vulnerable servers. The vulnerability, which carries a “moderate risk” rating, was flagged by the U.K.-based National Infrastructure Security Co-ordination Centre. In a public advisory, the NISCC said the flaw exists […]

Theres a major chink in Microsofts Windows XP anti-piracy armor, although Windows users are not at risk of security attacks. A security researcher in India has discovered an uncomplicated and easy-to-exploit weakness in Microsoft Corp.s WGA (Windows Genuine Advantage), an anti-piracy initiative that checks whether consumer and small-business customers are running legitimately licensed copies of […]

AOL on Friday blamed an unnamed third-party security vendor for the embarrassing release of its Netscape 8 Web browser with several publicly known security flaws. Just hours after the security-centric browser shipped, the company was forced to rush out a patched version to correct the gaffe. Netscape 8 is based on the Mozilla Foundations Firefox […]

Microsofts massive presence in the anti-virus space may be bad news for vendors leading the market, but for enterprise customers with tight budgets, it presents wonderful bargaining opportunities. With all-out price war looming, an influential IT research firm suggests that enterprises use Microsoft Corp.s anti-virus push to negotiate better pricing—and bundled services—from existing vendors. On […]

Like day follows night, a bogus “cumulative update” with a malicious attachment has followed Microsofts patch day. In what has become a monthly staple, virus writers are taking advantage of the heightened public interest around Microsofts patching cycle to trick users into executing a malicious attachment. The latest social engineering trick arrives via e-mail with […]

Microsoft Corp. is developing a network of Windows XP “honeymonkeys” to help detect rogue Web sites that exploit security holes to install malware on client machines. The project, code-named Strider HoneyMonkey Exploit Detection, is being created by the Redmond, Wash., companys Cybersecurity and Systems Management Research Group to help the software giant find the source […]

Microsoft is working on a souped-up version of the Windows OneCare desktop security bundle for enterprise customers, an ambitious bet that theres value in the software-as-a-service business. When Windows OneCare ships later this year, the immediate plan is to hawk it to nontechnical consumers, but according to a senior Microsoft executive, the long-term plan is […]

Looking to cash in on the growing buzz around PC-to-PC voice over IP services, Yahoo on Wednesday added voice calling capabilities to a new beta of its instant messaging client. The Yahoo Messenger makeover puts the Sunnyvale, Calif.-based Web portal up against startups Skype Technologies S.A. and Teleo Inc., two companies that have found success […]

Microsoft on Wednesday issued a prepatch advisory to counter the publication of exploit code for a newly discovered vulnerability in its implementation of TCP/IP. The Redmond, Wash., companys confirmation of the flaw is the first public test of the software giants new security advisories pilot project, which is meant to provide instant feedback, guidance and […]

The nonprofit Center for Democracy and Technology wants blue-chip advertisers join the fight against shady practices by adware and spyware vendors. The public policy group plans to start contacting about two dozen mainstream advertisers to discuss their direct funding of an industry that thrives on deception and borderline illegal activity. The campaign is the brainchild […]