Microsoft has released the following updates: Update for Windows Mail Junk E-mail Filter for x64-based Systems [January 2012] (KB905866), Update for Windows Mail Junk E-mail Filter [January 2012] (KB905866), Microsoft Anti-Cross Site Scripting Library V4.2, Security Update for Windows Server 2008 R2 x64 Edition (KB2631813), Update for Windows XP (KB2632503), Security Update for Windows Server 2008 (KB2646524), Security Update for Windows Server 2003 x64 Edition (KB2598479), Security Update for Windows Server 2008 (KB2644615), Security Update for Windows Server 2008 for Itanium-based Systems (KB2631813), Security Update for Windows Vista for x64-based Systems (KB2598479), Security Update for Windows Server 2008 x64 Edition (KB2598479), Security Update for Windows XP (KB2631813), Security Update for Windows Server 2008 for Itanium-based Systems (KB2598479), Security Update for Windows Vista (KB2598479), Security Update for Windows 7 for x64-based Systems (KB2644615), Update for Windows 7 for x64-based Systems (KB2632503), Security Update for Windows Server 2003 (KB2644615), Security Update for Windows 7 (KB2631813), Security Update for Windows Server 2008 x64 Edition (KB2646524), Security Update for Windows Server 2003 x64 Edition (KB2603381), Security Update for Windows Server 2003 (KB2631813), Security Update for Windows Server 2003 x64 Edition (KB2644615), Security Update for Windows XP x64 Edition (KB2598479), Security Update for Windows Vista (KB2631813), Security Update for Windows Embedded Standard 7 (KB2644615), Security Update for Windows Server 2003 for Itanium-based Systems (KB2646524), Update for Windows Vista for x64-based Systems (KB2632503), Security Update for Windows Server 2008 for Itanium-based Systems (KB2644615), Security Update for Windows Server 2003 x64 Edition (KB2631813), Security Update for Windows Server 2008 x64 Edition (KB2644615), Update for Windows XP x64 Edition (KB2632503), Update for Windows Server 2008 x64 Edition (KB2632503), Security Update for Windows Server 2003 (KB2646524), Security Update for Windows XP (KB2646524), Security Update for Windows Vista for x64-based Systems (KB2644615), Security Update for Windows Vista for x64-based Systems (KB2646524), Security Update for Windows Server 2003 for Itanium-based Systems (KB2638806), Security Update for Windows Vista for x64-based Systems (KB2631813), Security Update for Windows Server 2003 for Itanium-based Systems (KB2631813), Update for Windows Server 2008 R2 x64 Edition (KB2636573), and Security Update for Windows XP x64 Edition (KB2631813)
Seculert Cyber Threat Management has done a lot of research on the Ramnit worm and recently spotted it targeting Facebook accounts stealing over 45,000 logins mostly from the UK and France
This week a program was released to allow brute force cracking of vulnerabilities in wifi protected networks
Microsoft published a Security Bulletin Advance Notification for December 2011
H Online posted a story that a vulnerability in the 64-bit version of Windows 7 may permit attackers to run malicious code with kernel privileges
ComputerWorld posted a story that Adobe plans to release a patch for an older version of the Reader PDF viewer to stymie attacks like those aimed at major defense contractors earlier this month.
Microsoft has released the following security updates: Cumulative Security Update for Internet Explorer 8 for Windows Server 2003 x64 Edition (KB2618444), Security Update for Microsoft Office Publisher 2007 (KB2596705), Cumulative Security Update for Internet Explorer 8 for Windows XP (KB2618444), Security Update for Windows Vista for x64-based Systems (KB2621146), Security Update for Windows Server 2003 x64 Edition (KB2620712), Security Update for Windows Server 2003 x64 Edition (KB2621146), Security Update for Windows Vista (KB2621146), Security Update for Windows 7 for x64-based Systems (KB2639417), Security Update for Windows 7 (KB2620712), Security Update for Windows Server 2008 for Itanium-based Systems (KB2639417), Security Update for Windows XP x64 Edition (KB2620712), Security Update for Windows Server 2008 x64 Edition (KB2621146), Security Update for Windows XP (KB2633171), Security Update for Windows Server 2008 R2 x64 Edition (KB2621146), Security Update for Windows XP (KB2624667), Security Update for Windows Vista for x64-based Systems (KB2639417), Security Update for Windows Server 2008 R2 x64 Edition (KB2620712), Security Update for Windows Server 2008 R2 for Itanium-based Systems (KB2620712), Security Update for Windows Server 2003 x64 Edition (KB2624667), Security Update for Windows 7 (KB2621146), Security Update for Windows Server 2003 for Itanium-based Systems (KB2639417), Security Update for Windows Embedded Standard 7 for x64-based Systems (KB2620712), and Security Update for Windows Server 2008 R2 for Itanium-based Systems (KB2639417)
Microsoft published the Microsoft Security Bulletin Advance Notification for December 2011
Adobe has released patches for a string of critical vulnerabilities in Flash on all of the major supported platforms
Microsoft has released an updated certificate revocation list for Windows
Microsoft released only four new security bulletins for November's Patch Tuesday, but the main concern is that the zero day flaw exploited by the Duqu worm is not addressed by any of them.
Microsoft has released 43 security updates
Microsoft has released a workaround for the Windows kernel zero-day vulnerability exploited by the Duqu malware
Mozilla and Microsoft said Thursday they are revoking trust in all certificates issued by Digicert, a Malaysian intermediate certificate authority (CA)
Microsoft published the Microsoft Security Bulletin Advance Notification for November 2011
Malware exploits Microsoft Windows kernel zero-day vulnerability. Installer file is a Word document.
The Duqu trojan infects systems by exploiting a previously unknown Windows kernel vulnerability that is remotely executable.
Microsoft has released a security update for Windows XP, Windows XP x64 Edition, and Windows Server 2003
The UKs largest telco and ISP BT has been ordered by the High Court in London to block access to a site called Newzbin2 which the Hollywood movie industry claimed was allowing users to access unlicensed material.
PC World posted a story that Sony has suspended 93,000 user accounts on several of its gaming and entertainment networks after unauthorized login attempts on those accounts
