This week, CNET.com's Robert Vamosi features guest security researcher Chris Boyd of FaceTime Communications. Boyd says he has discovered a new Skype-based worm that manages to jump the fence and infect other IM clients such as Trillian, ICQ, AIM, Yahoo Messenger and MSN Messenger. Boyd also talks about his ongoing work with botnets, in particular one network that appears to be using the botnet's spam profits to buy firearms for a Middle East terrorist cell.

Despite some confusion over a recent press release, the next major update for Windows XP is still on track for 2008.

Accordint to Microsoft, Office 2007 users running Windows Vista may not have received a patch for "important" Excel and Office 2007 holes.

Security company F-Secure has answered criticisms of its suggestion that a .bank top-level domain (TLD) be created to improve the protection of online financial services.

Symantec announced on Wednesday that it has filed lawsuits against eight software distributors, alleging they illegally copied the company's software. The security and storage management software maker is seeking a total of $55m in damages. The lawsuits were filed over the past few months in three US district courts in California.

After installing this month's six-bug patch, some users aren't able to use the IE7 browser, Microsoft said.

Responding to user grumbling about peripheral device incompatibilities, Microsofts claims Vista now supports 1.9 million devices.

Microsoft said on Wednesday that the follow-on to its Windows Server 2008 operating system will be an interim release due to arrive in 2009.

As it tries to finish the next version of Office for the Mac, Microsoft has delayed efforts to enable current users of the productivity software to work with the new file formats used in the latest Windows version of the desktop software.

Around 100,000 users have been infected with malware that has piggybacked on Windows updates, according to a report from security research firm Symantec.

Google has warned web users of the increasing threat posed by malware that can be dropped onto a computer as a web surfer visits a particular site.

Intel and PGP have teamed up to sell encryption products on systems with Centrino Pro and vPro processors.

The massive data breach at TJX has been linked to badly secured Wi-Fi networks. CNET News.com's Joris Evers and CNET's Robert Vamosi give their take on this week's Security Bites podcast.

Updated VMWare supports Vista, displays images on multiple monitors.

Microsoft on Tuesday released fixes for 19 security flaws in several of its products, including the new Internet Explorer 7, Office 2007 and Exchange 2007.

Symantec has lashed out at Microsoft's business security product, saying that the technology used to run it is not adequate.

Intel will roll out Vista internally only once the first service pack of the operating system has been released, and Dell is likely to do the same.

The Royal Bank of Scotland is dishing out chip and PIN devices to its online banking customers.

Microsoft on Tuesday plans to release seven security bulletins, including a fix for a zero-day flaw in Windows that is already being used in cyberattacks.

Microsoft on Tuesday plans to release seven security bulletins, including a fix for a zero-day flaw in Windows that is already being used in cyberattacks.

VeriSign has picked a partner to integrate one-time passwords onto banking cards.

Symantec Corp. is slipping on its target delivery time for the next major upgrade of its security product for enterprises.