SECURITY WARNINGS & Notices - Please post them here

[AdrianH]

Cisco, Microsoft, VMware, and other tech giants unite behind critical open-source projects

http://www.zdnet.com/cisco-microsoft-vmware-and-other-tech-giants-unite-behind-critical-open-source-projects-7000028743/

[Asyn]

Microsoft Security Advisory 2963983
Vulnerability in Internet Explorer Could Allow Remote Code Execution
https://technet.microsoft.com/en-US/library/security/2963983

[polonus]

To be protected against new IE zero day enable Enhanced Protected Mode,
read: http://blogs.msdn.com/b/ie/archive/2012/03/14/enhanced-protected-mode.aspx

polonus

[Pondus]

No fix for XP users
http://blogs.norman.com/2014/business/no-fix-for-xp-users

[Pondus]

Beware malware myths involving Malaysia Flight MH370
http://blogs.norman.com/2014/for-consumption/beware-malware-myths-involving-malaysia-flight-mh370

[Para-Noid]

Avast responds to IE hacking.

http://blog.avast.com/2014/04/29/internet-explorer-users-avast-has-got-your-back-for-free/

[Asyn]

Avast responds to IE hacking.
http://blog.avast.com/2014/04/29/internet-explorer-users-avast-has-got-your-back-for-free/

Great.

[essexboy]

MS is releasing an IE update today for all versions (including XP) http://blogs.technet.com/b/msrc/archive/2014/05/01/out-of-band-release-to-address-microsoft-security-advisory-2963983.aspx

EDIT :  Available now

[mchain]

No fix for XP users
http://blogs.norman.com/2014/business/no-fix-for-xp-users

MS is releasing an IE update today for all versions (including XP) http://blogs.technet.com/b/msrc/archive/2014/05/01/out-of-band-release-to-address-microsoft-security-advisory-2963983.aspx

EDIT :  Available now

Whaddya know?  Microsoft?  For XP?  Nice.

[abruptum]

Microsoft Explains Why It Decided to Patch Windows XP Despite End of Support

  http://news.softpedia.com/news/Microsoft-Explains-Why-It-Decided-to-Patch-Windows-XP-Despite-End-of-Support-440318.shtml

[DavidR]

Microsoft Explains Why It Decided to Patch Windows XP Despite End of Support

  http://news.softpedia.com/news/Microsoft-Explains-Why-It-Decided-to-Patch-Windows-XP-Despite-End-of-Support-440318.shtml

That was my best guess, XP with some 30% of OS Market share (not sure about their 26% claim) and many of then still using IE - if MS didn't patch then many of them would be forced to migrate to other browsers. That would be a big drop in Browser market share for IE.

Once they migrate to another browser, who knows even if they upgrade their OS they may stick with their new browser. MS want you to stick with IE, but to upgrade your OS, unfortunately for many that would mean a system upgrade/replacement.

[polonus]

An important example that the Internet is fundamentally broken/holed and big players are reluctant to fix it.
See this typical example of a so-called WONTFIX: http://tetraph.com/covert_redirect/oauth2_openid_covert_redirect.html
link article author = Wang Jing

polonus

[abruptum]

AV Comparatives analysis of Data Transmission of security products

  http://www.ghacks.net/2014/05/03/av-comparatives-analysis-data-transmission-security-products/

[Charyb-0]

Dropbox Scrambles To Block Leaks Of Shared Data

http://www.techweekeurope.co.uk/news/dropbox-scrambles-block-leaks-shared-data-144992

[AdrianH]

New ransomeware found on Android

http://www.theguardian.com/technology/2014/may/08/android-porn-koler-a-ransomware