December's Patch Tuesday coming

NetworkWorld.com | Security Research Center | Update Your Profile December's Patch Tuesday coming By Jason Meserve Microsoft's Patch Tuesday for December is this week and the focus seems to me on Media formats. In a preview of the coming updates, Microsoft said DirectX and the Windows Media Format Runtime will be targeted for patching. Also today, patches from Debian, Ubuntu, rPath and Mandriva. Read full story Jason Meserve is Network World's Multimedia Editor and writes about streaming media, search engines and IP Multicast. Check out his Multimedia Exchange Weblog. Check out Jason Meserve and Keith Shaw's weekly podcast "Twisted Pair" SPONSORED BY LANDESK SOFTWARE Extend Your Management Reach to Remote Users View this informative white paper discussing how organizations can extend the enterprise management of remote devices across the Internet without having to "punch holes" in the firewall or have access to a VPN. Using a simple Internet connection, remote systems can be updated, patched and brought into compliance when they connect to the Internet from wherever they are. RELATED NEWS: Sophisticated cyberattack on national labs under way, Oak Ridge says The U.S. science and technology lab Oak Ridge National Laboratory yesterday disclosed it has been compromised by what it described as a "sophisticated cyber attack that appears to be part of a coordinated attempt to gain access to computer networks at numerous laboratories and other institutions across the country." Network World, 12/07/07. Cookie variants can skirt blockers, antispyware tools Just because your Web browser is set to block third-party tracking cookies that doesn't mean all of them are being blocked. Computerworld, 12/06/07. Microsoft Vista's IPv6 raises new security concerns Members of the Internet engineering community have raised several new security concerns about Teredo, a mechanism for sending IPv6 traffic over IPv4 networks that comes turned on by default in Microsoft’s Vista software. Network World, 12/06/07. ITIL takes on security management role Long touted for streamlining processes and reducing operating costs, the ITIL best-practices framework also helps mitigate enterprise risk, say its adopters. Network World, 12/06/07. Cisco spins out another corporate security architecture Cisco this week rolled out yet another method for securing corporate networks. Called TrustSec, the architecture is intended to determine, through policies, the role of users and devices in the network before granting access to resources. This has been practiced in applications for years, Cisco officials say, but is only now being enforced at the network level. Network World, 12/05/07. 'Zombie' exploits cached by search engines Over a year after first coming to light, the cache engines of major search engines are still providing a safe hiding place for malicious code, a security company has revealed. TechWorld, 12/07/07. Glory hunter hacks MySpace pages of Timberlake, Hilary Duff Several celebrity MySpace.com sites were defaced Wednesday by someone hoping to impress a hacker crew, a security researcher said today, a motivation of yore that harks back to when hackers sought notoriety rather than credit card numbers. Computerworld, 12/07/07. Google disables Gmail accounts by mistake Google this week mistakenly disabled the Gmail accounts of an undetermined number of users due to an apparently overzealous attempt by the company to combat spammers. IDG News Service, 12/07/07. HOLIDAY GIFT GUIDE Find the very best tech holiday gift ideas. '07 ENTERPRISE ALL-STARS Honoring outstanding technology projects. SPONSORED BY LANDESK SOFTWARE Extend Your Management Reach to Remote Users View this informative white paper discussing how organizations can extend the enterprise management of remote devices across the Internet without having to "punch holes" in the firewall or have access to a VPN. Using a simple Internet connection, remote systems can be updated, patched and brought into compliance when they connect to the Internet from wherever they are. Holiday Tech Toys Stumped on what gadgets and gizmos to give this holiday? Have no fear, Cool Tools' Keith Shaw is here. We do all of the heavy lifting of wading through hundreds of submitted technology products to find the very best holiday gift ideas. Click here to view our holiday gift guide: http://www.nww.com/PSA2_1210 Featured reader resource 90% of IT Managers are leaving their company at risk for a DNS ATTACK. Get the tools and resources you need to keep your DNS healthy and secure. Run a DNSreport on your domain today - 56 critical tests run in 8 seconds. Visit www.dnsreport.com to learn more. (apply coupon NWW2007NLA for a 25% membership discount)   12/10/07 TODAY'S MOST-READ STORIES: Microsoft pulls plug on potty-mouth Santa 2007 Cool Yule Tools gift guide FTC nails Adultfriendfinder.com The 9 worst Microsoft products ever Sophisticated cyberattack on national labs 10 funniest Microsoft YouTube videos Top IT turkeys of 2007 Top 10 real-life Star Trek inventions Vista's IPv6 raises new security concerns Cisco warns of bug in desktop software TOP 100 OF 2007 Executive Guide The Security Treadmill This Executive Guide offers interviews with leading, real-world security experts who tell you how to get inside users' heads, fight for a bigger security budget, and whether VoIP security issues are overstated or underrated, and much more. Review this informative guide today. Click Here for More Information IT Buyer's Guides Compare products, get advice, and check out tests and reviews from the experts at Network World. Over 70 categories. Visit now.   To continue receiving NetworkWorld's Security: Threat Alert newsletter, please add @nwfnews.com to your white list. COMPLIMENTARY SUBSCRIPTIONS AVAILABLE As a NW newsletter subscriber you are eligible to receive 50 issues of Network World Magazine, in print or electronic format, free of charge. Sign up for your subscription today: Apply here. International subscribers,click here.   SUBSCRIPTION SERVICES To subscribe or unsubscribe to any Network World newsletter, change your e-mail address or contact us, click here. Terms of Service/Privacy Network World, Inc., 118 Turnpike Road, Southborough, MA 01772 Copyright Network World, Inc., 2007