Security

Microsoft confesses to posting a flawed update

The admission was the third time in the past two months that Microsoft has had to re-issue a security-related update

Red Hat admits breach of its servers, Fedora

Though execs "confident" that hackers did not obtain necessary passphrases, company has converted to new Fedora signing keys

Brazilian charged in botnet scheme, will be extradited to U.S.

Network of 100,000 hacked computers used to send spam was a botnet spread entirely through social engineering

SSDs are hot, but not without security risks

SSDs do not completely erase data and are vulnerable to physical hacks from light sources like an ultraviolet laser

Firefox SSL-certificate debate grows

Among the gripes: Web site operators are forced to do business with specific vendors of SSL certificates or risk the appearance that their Web sites are broken

Comcast: No new traffic management plan yet

Some reports suggest that Comcast will slow traffic for heavy users for up to 20 minutes during times of peak network use

Legal group releases guide to GPL compliance

Software Freedom Law Center says most GPL compliance violations stem from a few common mistakes that can be easily avoided

Update: Did Nokia pay for vulnerability information?

Nokia is evasive on whether it paid a Security Explorations researcher for his effort spent finding flaws in its Series 40 OS

Nokia admits security flaws in Series 40 OS

Update: Online encyclopedia lists internal network security threats

Promisec includes popular Web-based applications among possible data-loss threats