qualys - News, Features, and Slideshows


  • Microsoft fixes 46 flaws in Windows, IE, Office, other products

    Fourteen critical vulnerabilities in Internet Explorer were among the targets of Microsoft's monthly batch of security patches released Tuesday. In all, it fixed 46 vulnerabilities across products including Windows, Internet Explorer and Office.

    Written by Lucian Constantin13 May 15 20:57
  • Qualys devises a virtual patch to protect against vulnerabilities

    If you can't wait for that critical patch to secure your system from some just-discovered bug, IT security firm Qualys may have an answer, through new security software that can secure the trouble spot until the patch arrives.

    Written by Joab Jackson23 April 15 02:17
  • The POODLE flaw returns, this time hitting TLS security protocol

    Webmasters who patched their sites against a serious SSL flaw discovered in October will have to check them again. Researchers have discovered that the vulnerability also affects implementations of the newer TLS (Transport Layer Security) protocol.

    Written by Lucian Constantin09 Dec. 14 09:42
  • Shellshock vulnerability roils Linux server shops

    A long-standing vulnerability unearthed in the GNU Bash software, nicknamed Shellshock, has disrupted the daily activities of the Linux system administrator community, as Linux distributors, cloud vendors and end users grapple to understand the full scope of the potential damage it could cause.

    Written by Joab Jackson26 Sept. 14 09:19
  • Microsoft Patch Tuesday thwarts nosey malware

    Cyberattackers curious about the contents of users' hard drives will now have a tougher time finding that information, thanks to a new patch that Microsoft issued Tuesday in the latest round of "Patch Tuesday" bug fixes.

    Written by Joab Jackson10 Sept. 14 06:19
  • Microsoft Patch Tuesday focuses on Internet Explorer

    Microsoft has issued 29 patches for its Internet Explorer browser, including one fixing a critical vulnerability that would allow a remote attacker to gain access to a computer from over the Internet.

    Written by Joab Jackson13 Aug. 14 06:29
  • Android 4.4.4 fixes OpenSSL connection hijacking flaw

    Less than three weeks after pushing Android 4.4.3 to users of its Nexus devices, Google released a new version of the OS that incorporates a patch for a serious vulnerability identified in the OpenSSL cryptographic library.

    Written by Lucian Constantin20 June 14 20:25