Ryan Naraine

Apple on Wednesday released a fix for a highly critical flaw affecting users of its Mac OS X operating system. The Apple patch comes exactly three months after Sun Microsystems Inc.s original warning that a vulnerability in its JRE (Java Runtime Environment) could allow an attacker to turn off Javas security feature and execute malicious […]

Yahoo Inc. has released a new version of its instant messaging application to fix a pair of security vulnerabilities that could put users at risk of code execution attacks. The media firm, based in Sunnyvale, Calif., urged Yahoo Messenger users to upgrade to Version 6.0.0.1921 or later to protect against malicious hacking attacks. Secure versions […]

Microsoft Corp. has released an update for its flagship Windows Media Player to protect users from a known threat of spyware infection. Microsoft said the update (download available here) installs two components on end users computers and will add “additional integrity checks to the DRM [digital rights management] system.” The company made no mention of […]

SAN FRANCISCO—Looking to kick-start corporate adoption of OTP (one-time password) technologies, RSA Security on Wednesday announced plans to release six open specifications for public review and consultation. The company used the backdrop of its RSA Security 2005 conference here to spell out plans to submit the specifications to the IETF (Internet Engineering Task Force) and […]

SAN FRANCISCO—Ciscos self-defending network strategy is prime for a new phase of development that involves addressing threats at multiple layers within the enterprise, chief executive John Chambers announced Wednesday. Chambers used the morning keynote at the RSA Security 2005 conference here to outline Cisco Systems Inc.s vision for this next phase—dubbed ATD (Adaptive Threat Defense)—an […]

SAN FRANCISCO—Microsoft on Tuesday confirmed plans to roll out anti-virus and anti-spyware products for enterprise customers, but details on pricing and release dates remain tightly under wraps. Microsoft Corp. chairman Bill Gates used the spotlight of the RSA Security conference to discuss Redmonds aggressive push deliver the first version of “the ultimate mail virus protection” […]

SAN FRANCISCO—After months of hemming and hawing on plans for a standalone Internet Explorer upgrade before Longhorn, Microsoft Corp. now plans to push out a browser refresh by July or August this year. But the news that IE 7.0 will be available only to Windows XP SP2 (Service Pack 2) customers isnt likely to sit […]

Microsoft Corp.s plans to hawk a subscription-based product bundling anti-virus, anti-spyware and firewall tools might be the security industrys worse-kept secret, but that has not stopped the guessing games leading up to next weeks RSA Conference 2005. Officials at the Redmond, Wash., company remain tight-lipped on specifics, refusing to confirm or deny widespread speculation that […]

Microsoft Corp. on Friday lashed out at two security research firms for publishing proof-of-concept exploit code for MSN Messenger hours after Microsoft released security patches for the product. In one instance, the software giant said malicious hackers have modified the proof-of-concept code into an exploit that puts millions of users at risk of code execution […]

Harvard researcher Ben Edelman, one of the most vocal critics of spyware purveyors, fell victim to a massive DDoS (distributed denial-of-service) attack over the past 24 hours. Edelmans Web site, which publishes detailed research reports on spyware, was knocked offline for much of Monday and Tuesday by a DDoS attack that crippled the server capacity. […]