Leave it to phishers to find simple ways to make their deceptive and criminal web sites harder to take down. A new advisory from the Anti-Phishing Work Group blows the whistle on a new phisher technique, called "subdomain registry."

More than five dozen ISPs and large carriers tell you what happened on the Internet in 2007 (and they oughtta know). Short version: it's as bad as you thought. And here's the proof.

A mere two security bulletins today! Woo-hoo! ...Oh, wait. One of them is rated Critical, and it affects the way Windows handles XML. Okay, no day of rejoicing, but maybe your staff can install the patches and still be home in time for dinner?

Last month, Microsoft issued 11 security bulletins on Patch Day. And they've already issued a startling out-of-cycle patch earlier in November. By comparison, this coming Patch Day feels like a half day off work: they're issuing a mere two bulletins.

Today, Microsoft released 11 security bulletins, fixing 20 security vulnerabilities in their products. Microsoft rates four bulletins as Critical; these affect Windows, Internet Explorer, Office, and Microsoft's Host Integration Server.

Looks as though Microsoft plans to pile it on for network administrators tomorrow. Last Thursday, they posted their monthly Advance Notification, letting us know they intend to release 11 security bulletins on Tuesday 14 October.

A Fox News report claims that the World Bank has been infiltrated by hackers for over a year, But is it for real? We could not find the story reported in any other major news publication.

Within one week of the collapse of Washington Mutual Bank in the US, and its subsequent purchase by JPMorgan Chase, phishing scams were already trying to take advantage of people who might be confused by the latest round of mega-mergers.

When we began the WatchGuard Wire back in 2005, RSS feeds were the cutting-edge of web interaction. Since then, blogs have become the dominant way to share news, views and your comments. And so we have created WatchGuard Blogs. Check it out here!

Yesterday, Washington Attorney General Rob McKenna brought suit against Branch Software, which has been scamming innocent victims with a product called "Registry CleanerXP," malware which claims to rid your computer of malware.

We wouldn't want to find the First Amendment helping junk emailers to lard our inboxes with spam. But in the state of Virginia, where the issue has seesawed over the years, the state Supreme Court has tilted toward protecting the spammers.

On Tuesday, Apple released four minor security advisories. Most of these pose little risk to our typical readers; nonetheless, you should patch them anyway. Read on, and we'll explain.

Today, Microsoft released four security bulletins, fixing eight security vulnerabilities in Windows, Office, Media Player and Media Encoder. Microsoft rates all these bulletins as Critical.

Seems like you can ease your way back in from summer with a relatively light Patch Day this month. Microsoft's monthly Advance Notification says that they intend to release four Critical security bulletins next Tuesday.

Last week, two security incidents cropped up that Linux users should be aware of. The first affects digital signatures in Red Hat and Fedora; the second involves stolen SSH keys.