Digitally signed software is a system designed to build trust in the applications you install on a PC.
Most of us don’t think twice about installing digitally signed software, but we should — now that malware has made this system less trustworthy.
It’s no April Fool joke: Microsoft released an emergency Internet Explorer patch to plug holes in its beleaguered browser.
This is a patch you’ll want to apply as soon as you can.
One of the top draws at CanSecWest, the highly regarded Canadian security conference, is the break-the-browser contest known as Pwn2Own.
So can it be coincidence that Apple, Google, and Mozilla updated their browsers just days before the contest?
Microsoft’s support for Windows XP Service Pack 2 and the orginal version of Vista is ending soon.
If you haven’t upgraded to Windows XP SP3 or Vista SP1 or SP2, now is the time to do so.
The most important news this Patch Tuesday was not about a new patch, but the lack of one.
Microsoft announced that it is investigating public reports of a new security threat to Internet Explorer 6 and 7. No IE patch came with the advisory, but the company did include a workaround.
A collision between one of Microsoft’s recent Windows security patches and the rootkit Alureon is giving some PC users the infamous “Blue Screen of Death.”
I previously advised you not to install Microsoft’s security patch MS10-015 until I looked into it in more detail, but now I’m ready to give you the all-clear — with caveats.
Microsoft predicts attacks within 30 days, targeting a hole plugged by this month’s most-important Windows update.
The patch for this vulnerability is rated “Critical” for all client versions of Windows and for most server editions as well.
Microsoft released an out-of-cycle patch to remedy the IE “Aurora” bug that recently enabled Chinese hackers to attack Google and many other companies.
Separately, Mozilla released not one, but two, updates to Firefox — improving that browser’s security and adding an array of new features.
January’s lone critical MS patch fixes a problem with embedded fonts — caused by an update released last July.
The new update is critical only for Windows 2000 but should still be applied on all Windows systems to prevent fonts from displaying incorrectly on the Web and in Office apps.
Not so long ago, Microsoft promised that fewer Windows patches would require restarting the system to complete their installation.
Microsoft clearly hasn’t delivered on that promise, so PC users need to take steps to ensure that they don’t lose data due to unexpected post-update reboots.