We have thousands of posts on a wide variety of open source and security topics, conveniently organized for searching or just browsing.
Today, Mozilla has updated the Firefox 5 beta to release candidate status (download for Windows | Mac | Linux), which includes improves support for "future-Web" technology, speeds up the browser, and makes multiple smaller tweaks to the browser.
Adobe has announced that it will no longer be releasing its own Desktop Linux port of the Adobe AIR runtime or SDK. AIR is Adobe's platform for rich internet applications. AIR 2.6 will be the last version directly supplied by Adobe for desktop Linux; Adobe has just released AIR 2.7.
Context highlights additional WebGL vulnerabilities and raises more questions for Khronos
Socially engineered threats remain a major security concern on mobile devices, so to help protect its users Lookout Mobile Security (download) has added "safe browsing" to its premium version today at no extra cost. Safe browsing checks links you tap before they load in your device's Web browser to make sure they don't lead to phishing scams or malware.
Software updates are one of the main areas of IT, mainly because of continuous security and enhancement updates. Microsoft usually releases a huge number of security updates each month, and even though they get criticised for this, GNU/Linux has a high number of updates as well, particularly Fedora which is treated as beta or cutting edge versions of free and open source software.
Oracle has closed 17 remote execution vulnerabilities in Java, most of which are also present in the browser plug-ins. Oracle fixed at least 17 security vulnerabilities in Java as part of its scheduled update.
Kaspersky Lab has announced the release of Kaspersky Endpoint Security 8 for Linux. The updated version of the application designed to protect Linux workstations is available as part of the following corporate products: Kaspersky Work Space Security, Kaspersky Open Space Security, Kaspersky Business Space Security and Kaspersky Enterprise Space Security.
Google has released an update for its Chrome browser, bringing security and 3D improvements. As with previous updates to Chrome, the biggest boasts of version 12 relate to security. The Safe Browsing behind-the-scenes protection has been extended to warn users against downloading dangerous files, although right now this only applies to Windows .exe files.
Oracle has released a cross-platform update for Java that addresses 17 vulnerabilities in the ubiquitous software platform.
The Python developers have released Python 2.6.7, as noted when Python 2.5.6 was released last week. Python 2.6 is in "security fix only" mode until October 2013, with no new bug fixes or features to come; Python 2.6.7 saw three medium severity issues addressed.
The VideoLAN project has announced the release of version 1.1.10 of its VLC media player, the free open source cross-platform multimedia player which supports a variety of audio and video formats. According to the developers, the eleventh release of the 1.1.x branch of VLC is a maintenance and security update that addresses several issues found in the previous update from mid-April.
During the holiday weekend, defense contractor Lockheed Martin confirmed what had been swirling in speculation for a number of days -- that it was hit by a significant cyber-attack.
Over the past few weeks, I've been putting together test hacking scenarios for a customer. They wanted to see copies of the RSA attack, the Google attack, advanced persistent threat (APT) simulations, social engineered Trojans, worms, remote buffer overflows, and more. The objective: to test what they could do to prevent all of those assaults on their predominately Microsoft Windows environment.
Four weeks after releasing an alpha version, Opera Software has made version 11.50 of its web browser, code named "Swordfish", available as a beta. The beta's most important new feature is the capability to synchronise passwords that are stored in the browser.
On May 24, Apple posted a support forum entry on how to avoid or remove the MacDefender malware that's been plaguing an unknown number of users since early May. And I'm glad they did. But the support forum is way overdue, and Apple's standard method of responding to user issues--ignore them until they won't go away and then issue a response when the outcry gets too loud--simply won't fly where user security is at stake.
The Apache HTTP Server powers the majority of web servers around the world. As such, when there is a security flaw, it's critical to fix it as quickly as possible.
As the starting point for many IT perimeter defense architectures, the firewall is a critical piece of security technology. In the upcoming, Fedora 15 Linux distribution release, a new dynamic firewall technology will help to improve the critical cornerstone technology for server and desktop users.
Nearly all Android-based smartphones were susceptible to a security hack allowing third parties to access a user's private information, calendar and contacts, according to research.
With the update to version 11.11, the Opera developers have closed a critical security hole that enables attackers to inject malicious code. The vulnerability is found in the code for processing framesets: certain frame constructions cause a memory error that eventually allows attackers to inject malicious code.
Security is an oft-debated topic in the ongoing browser wars, but there's no denying that malware is a common problem for all of the leading contenders.
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
