Mozilla has issued a fix for a bug found in an update issued earlier this week.

Read More…
Source: eWeek

Clever bit of web nerdery from Drew McLellan.
 ★ 

Read More…
Source: Daring Fireball

RealPlayer RMOC3260.DLL ActiveX Control Import Denial Of Service Vulnerability

Read More…
Source: Security Focus

Yahoo! Toolbar Helper Class ActiveX Control Remote Buffer Overflow Denial of Service Vulnerability

Read More…
Source: Security Focus

It’s been a little over a year since we released IE7 on Windows XP and for Windows Vista, so I thought it would be worthwhile to talk about where we are after the year.
According to internal Microsoft research based on data from Visual Sciences Corporation, there are over 300 million users are experiencing the web with IE7. This makes IE7 the second most popular browser after IE6. IE7 is already #1 in the US and UK, and we expect IE7 to surpass IE6 worldwide shortly.
Perhaps more important than the overall numbers is the positive impact IE7 has made for our users. As you know, we focused a lot on improving security in IE7. We believe IE 7 is the safest Microsoft browser released to date. According to a vulnerability report published today, IE7 has fewer vulnerabilities than previous versions of IE over the same time period. What’s more, the report showed that IE7 had both fewer fixed and unfixed vulnerabilities in the first year than the other browsers we compared.
In addition to having fewer vulnerabilities, as we previously mentioned, IE 7’s Phishing Filter stops more than 900,000 phishing attempts per week, stopping crimes-in-progress before users give up their personal information. On top of that, more sites are adopting Extended Validation Certificates as a way to help protect their users from fraud, and people are noticing. A recent USA Today article noted that “for the ultimate peace of mind, look for the address bar to turn green in IE7” in the context of securely connecting with your broker.
Finally, we’ve seen a decrease of 10-20% in the support call volume for IE compared with a year ago, before the release of IE7. This is typically a sign that the product is more stable and has fewer issues than the previous release.
While we’re happy with how well IE7 is doing, as always, we continue to listen to our customers and find ways to further improve Internet Explorer. Look for more news on this front in the coming weeks.
Tony ChorGroup Program Manager

Read More…
Source: MSDN Blogs

Microsoft today published a report that evaluates the security performance of Internet Explorer and Mozilla Firefox through a detailed comparative look at vulnerabilities. The “Web Browser Vulnerability Analysis” report finds that over a period of three years, Internet Explorer proved to have fewer vulnerabilities than Mozilla Firefox. The report research, conducted by Jeff Jones, Security Strategy Director in Microsoft’s Trustworthy Computing group, examines in detail the volume and severity of vulnerabilities in the two browsers and includes these key findings:• Microsoft has fixed 87 total vulnerabilities (across all supported versions of Internet Explorer) while Mozilla has fixed 199 vulnerabilities in supported Firefox products • Internet Explorer experienced a lower volume of reported vulnerabilities across all categories of severity (high, medium, low)Microsoft quitely announced the findings via the IE Blog. View: Jeff Jones Report View: Microsoft IE Blog Read full story…

Read More…
Source: Neowin.net

This Trojan downloads other files via the Internet and launches them for execution on the victim machine without the user’s knowledge or consent. It is an HTML page which contains Visual Basic Script and Java Script scenarios. It is 1502 bytes in size.

Read More…
Source: VirusList.com

This Trojan downloads other malicious files via the Internet and launches them for execution on the victim machine without the user’s knowledge or consent. It is an HTML page which contains Visual Basic Script. It is 2109 bytes in size.

Read More…
Source: VirusList.com

This Trojan downloads other files via the Internet and launches them for execution on the victim machine without the user’s knowledge or consent. It is an HTML page which contains Visual Basic Script and Java Script scenarios. It is 3106 bytes in size.

Read More…
Source: VirusList.com

Firefox has a set limit of 1000 cookies total, which isn’t enough to be logged into loads of sites at the same time. Using about:config, you can up it to 65k max

Read More…
Source: A Whole Lotta Nothing