Michael Gracie 

This is where the whole security by obscurity thing really comes into play… MacWorld is starting, and concurrent with it is comes a beautiful step-child – the Month of Apple Bugs. People are finding bugs in OS X, and others are busy fixing them. That’s great, but you can never make everyone happy – some [...]

Once you run them, you will realize that you have 2 million cross-site scripting vulnerabilities on your site that were supposedly fixed months ago by open-source hackers, and the firewall you just paid three grand for will resemble swiss cheese because your junior sys-admin is still trying to get it configured. Nevertheless, check out the [...]

As a result of the “Month of Apple Bugs” initiative, the first pest has been found (h/t to Slashdot). It is a buffer overflow issue that when applied very carefully, could lead to an “exploitable remote arbitrary code execution condition.” I won’t opine on exactly what “exploitable remote arbitrary code execution condition” Mac users might [...]

SANS has named its top hacker targets for 2006, and surprisingly, Internet Explorer and other Windows components are on the list. Also included, Mac OS X, including its Safari browser, the image input/output framework, wireless networking, and the ubiquitous “other.” Most of this stuff is either patched with significant speed, or was someone else’s fault [...]

And people writing internet news need to pay attention to details. In the last twelve hours, I have noted roughly fifty online articles touting the latest US-CERT Security Bulletin, and how UNIX/Linuxes have three times as many vulnerabilities as Windows. Pay attention, and do your homework! There are a number of popular flavors of UNIX, [...]