Did Google engineer act irresponsibly over Microsoft zero-day disclosure?
If I were responsible for security at Microsoft I would be less than pleased with Google right now. Here's the story. A Google security engineer, Tavis Ormandy, sent details of a zero-day vulnerability...
View ArticleTavis Ormandy - are you pleased with yourself? Website exploits Microsoft...
Updated Last week I railed against the irresponsible disclosure by a Google engineer of a zero-day vulnerability in Microsoft's code. Tavis Ormandy, a security researcher employed by Google, found a...
View ArticleFull Disclosure? 10,000 PCs infected and counting
Microsoft reported yesterday that the flaw disclosed by Tavis Ormandy in the Windows Help Center has been used to infect more than 10,000 PCs in less than one month. Update: Chris Kozlowski pointed out...
View ArticlePatch Tavis Day
Yesterday was Patch Tuesday, or as I like to call it (hopefully for the last time) "Patch Tavis Day". Amongst the other vulnerabilities that Microsoft published in its regular round-up of security...
View ArticleGoogle versus Microsoft - handbags at dawn
By some accounts, Microsoft and Google are at each other's throats over the disclosure of vulnerabilities. What went wrong?
View ArticleTavis Ormandy and Sophos
Researcher Tavis Ormandy has examined Sophos's anti-virus product - not in terms of possible vulnerabilities - but instead looking at how various components of were implemented. Having assessed Tavis's...
View ArticleSophos products and Tavis Ormandy
As a security company, keeping customers safe is Sophos's primary responsibility. Find out more, and how Sophos has updated its products.
View ArticleMonday review: the hot 20 stories of the week
It's weekly roundup time - here's everything we published in the last seven days.
View ArticleCloudbleed’s silver lining: the response system worked
There are points of contention but overall the researcher-to-vendor collaboration delivered
View ArticleAnother hole opens up in LastPass that could take weeks to fix
New flaw affects version 4.x across all browsers and platforms - here's our advice on how to use LastPass safely while we wait for the fix
View ArticleWindows 10 password manager bug is hiding good news
Peer a bit harder through the gloom of the Keeper flaw and you'll find a good news story
View Article
More Pages to Explore .....