Yet another zero-day (sort of) in Windows “search URL” handling

By Paul Ducklin — June 2^nd 2022 at 19:39

More trouble with special-purpose URLs on Windows.

Microsoft patches the Patch Tuesday patch that broke authentication

By Paul Ducklin — May 20^th 2022 at 22:35

Remember the good old days when security patches rarely needed patches? Because security patches themlelves were rare enough anyway?

Apple patches 87 security holes – from iPhones and Macs to Windows

By Paul Ducklin — March 15^th 2022 at 16:36

Lots of fixes, with data leakage flaws and code execution bugs patched on iPhones, Macs and even Windows.

apple-1200

Microsoft blocks web installation of its own App Installer files

By Paul Ducklin — February 7^th 2022 at 16:36

It's a big deal when a vendor decides to block one of its own "features" for security reasons. Here's why we think it's a good idea.

S3 Ep66: Cybercrime busts, wormable Windows, and the crisis of featuritis [Podcast + Transcript]

By Paul Ducklin — January 20^th 2022 at 17:28

Latest epsiode - listen now!

Patch Tuesday updates the Win 7 updater… for at most 1 more year of updates

By Paul Ducklin — November 10^th 2021 at 19:45

The clock stopped long ago on Windows 7, except for those who paid for overtime. But there won't be any double overtime!