An easy-to-fix -- but often overlooked -- problem most likely took the National Security Agency's website and its mail services down for six or seven hours on Thursday.

A security researcher said he has located a zero-day vulnerability in a printing feature on Internet Explorer that could allow remote attackers to execute malicious code.

The apparent development of a malicious rootkit for Cisco System's routers, which control much of the traffic on the internet, is a wake-up call to network administrators to ensure their Cisco devices are properly secured and configured.

The Asprox botnet, initially exclusively used for phishing scams, is now an SQL injection vector for website attacks.

A startup vendor of security software says it has a solution to the so-called "cold boot" encryption vulnerability uncovered by a team of Princeton researchers in February.

Microsoft fixed six vulnerabilities, three of them rated critical, with four patches in its May Patch Tuesday round this week.

Microsoft has refuted the claim by PC Tools that Windows 2000 is less susceptible to malware than Vista.

Half a million websites have been infected with a new round of malware attack and poorly implemented website configurations have been blamed.

Counterfeit networking equipment could jeopardize the security of U.S. military and other government systems.

Microsoft announced late Thursday that it plans to push out four patches, three to address critical vulnerabilities, in next week's monthly security update.