Half a million websites have been infected with a new round of malware attack and poorly implemented website configurations have been blamed.

A vendor of anti-spyware and anti-virus software has released a report saying that Windows Vista, the latest version of Microsoft's latest operating system, is more susceptible to malware than the company's Windows 2000.

An add-on for the popular Firefox browser hid potentially malicious code, possibly contaminating the machines of anyone who downloaded it.

Security researchers at the Shadowserver Foundation have discovered another round of SQL injection attacks, this one affecting more than 4,000 web pages that are based on Microsoft's ASP and .NET technologies.

Researchers at McAfee said they have detected the largest outbreak of malware in three years, an infection impacting hundreds of thousands of users whose machines contain poisoned media files.

Researchers at an Eastern European security company have uncovered a spam-sending scheme of "Byzantine complexity" that attempts to use military and university email servers to send junk email

IT security vendors' sole purpose is to generate revenue -- not offer complete security -- and they will only create solutions to stop dangerous threats when they are incentivized to do so, the principal security strategist for IBM Internet Security Systems said Wednesday at Interop in Las Vegas.

The insidious Kraken botnet has been infiltrated and a way found to shut it down remotely.

Microsoft has gone on the defensive in the massive SQL injection attack that has hit websites running the company's Internet Information Services web server and SQL Server products.

Spammers have developed automated techniques to create fake pages on Google's Blogger service that are used to hawk typical junk mail merchandise.