- Behind the scenes and inside workings of a CERT, Slashdot
- Microsoft investigates IE CSS XSS flaw, Ars Technica
- Safari, Firefox updates close critical holes, The Register
- The long term effects of snake oil security products, Slashdot
- Apple plugs drive by flaws in Safari, Zero Day
- Mozilla fixes DLL vulnerability in Firefox on Windows, Zero Day
- Firefox 3.6 update fixes click-jacking vulnerability, The H
- How Firefox 3.6 protects against click-jacking, Mozilla
- Adobe Reader zero day flaw under active attack, The Register
- PDF exploit bypasses protective measures, Zero Day
- DHS cybersecurity group misses over a thousand holes in its own network, Wired
- Django update fixes XSS flaw, The H
- New German ID card turns out to be hackable, Schneier on Security
- Apple patches FaceTime redirect security hole, Zero Day
- Security flaws persist in Cisco’s wireless LAN controller, Zero Day
- Microsoft advises of 13 vulnerabilities, patches 9, Zero Day
- What you need to know about malvertising, ReadWriteWeb
- New email worm in the wild, Slashdot
- Another Android SMS trojan, The Register