There's a remotely exploitable, publicly disclosed, critical remote code execution vulnerability in Microsoft Exchange (MS13-061)! But wait, is it really remotely exploitable? Well, not in the sense that user interaction is not required, it's a parser issue that is only triggered by a user opening a malicious message in Outlook Web Access (OWA).
Back in May, NSS Labs shared the results of their testing of how successful popular Web browsers are in detecting malware, showing that the latest versions of Internet Explorer (10) and Chrome (25/26) were considerably more effective that those of Safari (5), Firefox (19) and Opera (12): Their latest testing and reports concentrate on phishing protection and privacy settings.
After years of saying that bug bounties are not the best way to go about getting crucial product vulnerability information in the long run, Microsoft has done an about-face and has announced three separate bug bounties.
For Patch Tuesday this month, we are receiving critical updates from both Microsoft and Adobe.
Microsoft released advance notification for next week’s Microsoft patch and it looks like we're getting only five bulletins.
By subscribing to our early morning news update, you will receive a daily digest of the latest security news published on Help Net Security.
With over 500 issues so far, reading our newsletter every Monday morning will keep you up-to-date with security risks out there.