macrovision patch Resources

Sponsored White Papers, Webcasts, and Downloads

ZDNet Resources

Macrovision patches patch-delivery tool, leaves DRM zero-day wide open: Macrovision patches patch-delivery tool, leaves DRM zero-day wide openSue the parasiteMacrovision is parasite company with no legal business model (except then they got installsheild and sadly now i am worry each i install a software using it, as who know what kind of illegal software is installed by the shady...; Tags: digital rights management (drm), digital media, tool, macrovision, digital-rights management, macrovision corp., macrovision patch, patch management; Discussion threads 2007-10-31

Additional Resources

MS Patch Tuesday: Critical IE, Office, Excel patches coming: Next Tuesday (August 12th), Microsoft will ship 12 security bulletins with fixes for serious vulnerabilities in a wide range of of widely deployed products. Seven of the 12 bulletins will be rated "critical," Microsoft's highest severity rating. The critical bulletins will cover remotely exploitable...; Tags: microsoft access, vulnerability, patch management, activex control, microsoft internet explorer, microsoft corp., microsoft excel, microsoft windows, activex/com/com+/dcom, microsoft office, security, operating systems, software, software development, software/web development, office suites, ryan naraine; Blog posts 2008-08-07
Talking Firefox security with Mozilla's Window Snyder: LAS VEGAS -- Mozilla security chief Window Snyder wants to open-source much more than the Firefox browser. During a sit-down chat at the Black Hat security conference here, Snyder announced plans to launch three new initiatives around threat modeling, training and vulnerability metrics that push the envelope...; Tags: mozilla firefox, window, training, web browser, mozilla corp., window snyder, web browsers, security, internet, ryan naraine; Blog posts 2008-08-06
Expert: SOA vulnerable to DNS security flaw, too: This just in from the Black Hat security confab currently taking place in Las Vegas: Dan Kaminsky, a well-known IT security researcher, disclosed his findings around the Domain Name Server flaw or DNS cache poisoning vulnerability, and where it can bite. Tim Wilson of Dark Reading reported on Kaminsky's presentation,...; Tags: security, dns, server, soa, flaw, domain names, service-oriented architecture (soa), networking, internet, web services, enterprise software, software, joe mckendrick; Blog posts 2008-08-06
Microsoft aims to close Patch Tuesday vulnerability window: Microsoft is upping the ante in an effort to head off hackers at the Patch Tuesday pass. Ryan Naraine reports: The new Microsoft Active Protections Program MAPP, which will be formally announced at Black Hat USA 2008 here, will give anti-virus, intrusion prevention/detection and corporate network...; Tags: window, security company, microsoft corp., security, larry dignan; Blog posts 2008-08-05

Microsoft makes daring vulnerability sharing move: LAS VEGAS -- Starting in October, Microsoft will start sharing details on software vulnerabilities with security vendors ahead of Patch Tuesday under a daring new program aimed at reducing the window of exposure to hacker attacks. The new Microsoft Active Protections Program MAPP, which will be formally...; Tags: vulnerability, security company, exploit code, microsoft corp., security, ryan naraine; Blog posts 2008-08-05
How I Learned to Stop Worrying and Love Windows Vista: How I Learned to Stop Worrying and Love Windows VistaKubuntu on main desktop ...... Windows XP SP2 in the VMware sandbox, same for Vista if someone sends me a copy gratis. I've been burned too many times with malware to even think of going back to Windows as my main...; Tags: microsoft windows vista (longhorn), operating systems, microsoft windows vista, love windows vista, love windows, stop worrying, operating system; Discussion threads 2008-08-04
News to know: iPhone Dev Camp; So long computer science; Intel: Notable headlines: Andrew Mager: Touring iPhone Dev Camp 2 Live: Day 2 from the iPhone Dev Camp 2 Hands full? Get the iPhone arm Video: Spectrum ZX game montage Dion Hinchliffe: Enterprise cloud computing gathers steam ...; Tags: apple iphone, comcast corp., yahoo! inc., computer science, broadband, computer, intel corp., robots, corporate governance, digital cameras, federal government, monitors & displays, broadband internet, network technology, emerging technologies, business operations, corporate law, consumer electronics, personal technology, government, hardware, components, telecommunications, networking, larry dignan; Blog posts 2008-08-04
On GIFARs: Ever since Rob McMillan of IDG published a story giving a preview of our coming Black Hat talk, specifically a preview of the portion of our talk related to GIFARs, media coverage of the research has swirled a bit out of control and there's been some misconceptions. My co-presenter John...; Tags: black hat, vector, applet, image, attack, heasman, nathan mcfeters; Blog posts 2008-08-02
Did Apple forget to patch something?: Did Apple forget to patch something?AppleI usually sing the praises of Apple except when they don't live up to the hype or expectations. If they really want to grow their user base, they'd better get with it when it comes to delivering patches in a timely manner. In terms of...; Tags: domain names, operating systems, apple mac os x, bind, apple mac os, apple macintosh, dns, apple inc., server; Discussion threads 2008-08-01
Did Apple forget to patch something?: Less than 24 hours after Apple belatedly released a patch for the DNS cache poisoning vulnerability, there are reports circulating that the DNS client on the OSX 10.4.11 distribution still has not been patched. According to nCircle's Andrew Storms, the client libraries on a fully patched OSX...; Tags: dns, domain, ip, server, apple inc., bsd, client library, domain names, networking, internet, ryan naraine; Blog posts 2008-08-01
Why open source fails application security tests: Why open source fails application security testsMakes SenseMost FOSS is built by people with a passion to make something important to them. Implementing comprehensive security is not a fun task to do when developing software.RE: Why open source fails application security testsYou could have summed it up by saying that...; Tags: application security test, application security, open source, security; Discussion threads 2008-08-01
News to know: Apple patch; IBM; PC upgrades; EDS; Yahoo: Notable headlines: Ryan Naraine: Apple finally ships DNS flaw fix, patches 16 other Mac OS X holes Nate McFeters: Black Hat talk on Apple encryption flaw pulled Black Hat Sneak Preview Larry Dignan: IBM plans building spree: To build $360M...; Tags: google inc., facebook, larry dignan, pc, yahoo! inc., apple inc., electronic data systems corp., ibm corp., firewire, sales strategy, desktops, consumer electronics, personal technology, sales, hardware; Blog posts 2008-08-01
Black Hat Sneak Preview: Rob McMillan from IDG interviewed John Heasman and I today about the presentation we will be delivering with Rob Carter at Black Hat Vegas next week. The article has a good teaser about one of the more interesting of the many attacks we will cover, namely what we've coined...; Tags: black hat, java applet, web application, web browser, applet, attack, gifar, java, programming languages, security, software development, software/web development, nathan mcfeters; Blog posts 2008-08-01
Apple finally ships DNS flaw fix, patches 16 other Mac OS X holes: [ UPDATE: nCircle Andrew Storms reports that the DNS client on the OSX 10.4.11 distribution still has not been patched. ] Apple has shipped a Mac OS X security update with patches for at least 17 documented vulnerabilities, including a fix for the serious DNS...; Tags: apple macintosh, dns, patch management, apple inc., issue, arbitrary code execution, flaw, application termination, apple mac os x, apple mac os, domain names, operating systems, software, internet, ryan naraine; Blog posts 2008-07-31
Dissecting Microsoft's Mojave Experiment: Dissecting Microsoft's Mojave ExperimentWant to dissect Vista Licenses sold as well?regarding MS quote "Revenue growth was primarily driven by continued customer demand for all products, including Windows Vista, which has sold over 180 million licenses since launch"http://arstechnica.com/journals/microsoft.ars/2008/07/18/three-months-later-180-million-vista-licenses-sold-in-totalhttp://www.theinquirer.net/gb/inquirer/news/2008/07/29/vista-sales-really-windows-xpWhat did you expect?Do you honestly think you get the oportuninty to view all...; Tags: microsoft windows vista (longhorn), games, mojave experiment, microsoft windows vista, microsoft corp.; Discussion threads 2008-07-30
Evolution is punctuated equilibria: Guest editorial by Dino Dai Zovi In evolutionary biology, the theory of punctuated equilibiria states that evolution is not a gradual process but instead consists of long periods of stasis interrupted by rapid, catastrophic change. This is supported by fossil evidence that shows...; Tags: vulnerability, exploit, internet security, internet security community, internet, security, ryan naraine; Blog posts 2008-07-30
Dell customers unhappy with BIOS band-aid for faulty NVIDIA GPUs: Dell customers are unhappy with the BIOS patch released by Dell to counter the problem with faulty NVIDIA GPUs, and quite rightly so! by Adrian Kingsley-Hughes; Tags: dell computer corp., nvidia corp., gpu, bios, notebooks, hardware, components, notebooks & tablets, adrian kingsley-hughes; Blog posts 2008-07-29
DNS cache poisoning attacks exploited in the wild: DNS cache poisoning attacks exploited in the wildMy W2k server and SuSE 10.2...server were easily patched through their respective automatic updates. The patching was so easy that anyone running a DNS server that hasn't patched already is an idiot.Is https still safe?I'm imagining that https connections are still safe. In...; Tags: domain names, networking, referral url, server-name, whois, dns, whois server, ip address, dns cache poisoning attack, ip; Discussion threads 2008-07-29
Safari browser flaw: Session fixation attacks possible: Safari browser flaw: Session fixation attacks possibleOh, but "Apple engineers designed Safari to be secure from day one."Day One of 2015 maybe...Never a big believer in throwing stones.....and glass houses.. and all of that...Ryan, change the title, you'll get more hitsThe title should read: [i]IE browser flaw: Session fixation attacks...; Tags: web browsers, cyberthreats, security, viruses and worms, apple safari, fixation attack, flaw, web browser, apple inc.; Discussion threads 2008-07-28