Microsoft Security Bulletins

• MS08-025 ? Important: Vulnerability in Windows Kernel Could Allow Elevation of Privilege (941693)
• MS08-024 - Critical: Cumulative Security Update for Internet Explorer (947864)
• MS08-023 - Critical: Security Update of ActiveX Kill Bits (948881)
• MS08-022 ? Critical: Vulnerability in VBScript and JScript Scripting Engines Could Allow Remote Code Execution (944338)
• MS08-021 ? Critical: Vulnerability in GDI Could Allow Remote Code Execution (948590)
• MS08-020 ? Important: Vulnerability in DNS Client Could Allow Spoofing (945553)
• MS08-019 ? Important: Vulnerabilities in Microsoft Visio Could Allow Remote Code Execution (949032)
• MS08-018 ? Critical: Vulnerability in Microsoft Project Could Allow Remote Code Execution (950183)
• MS08-017 - Critical: Vulnerabilities in Microsoft Office Web Components Could Allow Remote Code Execution (933103)
• MS08-016 ? Critical: Vulnerabilities in Microsoft Office Could Allow Remote Code Execution (949030)

US-CERT Technical Cyber Security Alerts

• TA08-100A: Adobe Flash updates for Multiple Vulnerabilities
• TA08-099A: Microsoft Updates for Multiple Vulnerabilities
• TA08-094A: Apple Quicktime Updates for Multiple Vulnerabilities
• TA08-087A: Mozilla Updates for Multiple Vulnerabilities
• TA08-087B: Cisco Updates for Multiple Vulnerabilities
• TA08-079A: Apple Updates for Multiple Vulnerabilities
• TA08-079B: MIT Kerberos Updates for Multiple Vulnerabilities
• TA08-071A: Microsoft Updates for Multiple Vulnerabilities
• TA08-066A: Sun Updates for Multiple Vulnerabilities in Java
• TA08-043C: Microsoft Updates for Multiple Vulnerabilities

SANS ISC SecNewsFeed

• Admidio 1.4.8 (getfile.php) Remote File Disclosure Vulnerability (milw0rm)
• Vuln: InspIRCd Prior to 1.1.18 'namesx' 'uhnames' Modules Multiple Denial Of Service Vulnerabilities (SecurityFocus Vulnerabilities)
• CVE-2008-2121 (Solaris) (Natl. Vulnerability Database)
• Schneier Talks (Schneier blog)

The Register - Security

• Vista security credentials tarnished in malware survey
• India and Belgium decry Chinese cyber attacks
• I Was A Teenage Bot Master
• Facebook agrees to child-safety measures
• Interpol appeal unmasks US actor as child abuse suspect
• Renault F1 comp site spills entrants' details
• HSBC in further data loss
• Firefox language pack provides adware back-door
• Rare SCADA bug poses power plant risk
• FBI withdraws secret Internet Archive probe

MSNBC.com: Security

• Perils of the pocket call
• Hackers try to spur epileptic seizures
• Panel chair offers network neutrality bill
• Facebook, states set predator safeguards
• Yahoo search to alert users to bad Web sites
• Bad idea? Posting all Italians' incomes on Web
• Government Web site posts Italian incomes
• Criminals try to 'copyright' malware
• A faster, cheaper way to catch criminals
• Israeli military enlists robotic soldier

InfoWorld RSS Feed

• Easing network congestion caused by virtual servers
• Sun exec ponders OpenSolaris, Linux
• Microsoft to appeal $1.3 billion EU fine
• Tech company CEO compensation raises ire
• Microsoft talks up using printers to make drugs
• Google's Street View snaps of Paris may result in lawsuits
• XP SP3 cripples some PCs with endless reboots
• Apple slammed on climate change
• Vista as insecure as Windows 2000
• NEC to expand rugged laptop sales