Secunia scanner is an excellent (and free) tool for scanning your computer to see what needs to be updated. Now in final release. Recommended.
http://secunia.com/vulnerability_scanning/personal/
98% of all computers have 1 or more insecure programs installed on their PC. Your anti-virus will not protect you from the security threats of vulnerabilities in programs. For example, Symantec detected a mere 64 out of 300 exploits, or less than one-fourth.
http://secunia.com/blog/37

Sun Java versions prior to 6 Update 11 need to be updated to fix multiple security flaws. You should get a notification in your toolbar. If not, go to control panel, java, update tab, or update from www.java.com .   http://secunia.com/advisories/32991/

Adobe Flash Player Multiple Security Issues and Vulnerabilities
Update to version 9.0.151.0: www.adobe.com/go/kb406791
Adobe Flex 3.x and Adobe Flash CS4 - Upgrade to version 10.0.12.36.
www.adobe.com/support/flashplayer/downloads.html#fp10

Acrobat Reader 9 is out, and fixes a number of security problems with earlier versions. Update if you have not already. www.adobe.com/products/reader/

Apple QuickTime Multiple Vulnerabilities
Update to QuickTime 7.5.5 for Windows by downloading and installing:
www.apple.com/support/downloads/quicktime755forwindows.html

Microsoft: Six "critical" updates, 2 important updates released Tues Dec. 9^th. Windows, IE, and office. www.microsoft.com/technet/security/bulletin/ms08-dec.mspx

.NET 3.0 will not update if you have XP SP3 installed. Use Secunia scanner if you have XP SP3 to tell if you are missing updates to .NET 3.0.  .NET comes in versions 1.1, 2.0, 3.0 and 3.5. It is usually installed by software that uses it, such as QuickBooks. Once installed it can be patched, and patches are out for most versions. No patch is needed if it is not installed.
The workaround is to manually install the update if needed.
Symantec Backup Exec for Windows version 12.6 and prior needs security update:
http://securityresponse.symantec.com/avcenter/security/Content/2008.11.19.html

The Windows Server Service that Microsoft patched in an emergency update last month is facing a new wave of attacks. Microsoft officials reported a spike in exploits earlier this week. If you haven't patched, now is the time. The worm appears to be creating a sizeable botnet. Just run windows update if you have not already, and verify that MS08-067 was installed. This virus will spread to all vulnerable (un-patched) computers on the Lan if any one pc gets infected.
www.microsoft.com/technet/security/Bulletin/MS08-067.mspxs
www.securityfocus.com/brief/862
http://blogs.technet.com/mmpc/archive/2008/11/25/more-ms08-067-exploits.aspx

Buffer Overflow Flaw in Windows Vista TCP/IP Stack. No fix available yet.
http://news.zdnet.co.uk/security/0,1000000189,39559185,00.htm?r=1
www.heise-online.co.uk/security/Buffer-overflow-in-Vista-s-TCP-IP-stack--/news/112040

The latest cool phones:
BlackBerry Storm ($199 after mail-in rebate, Verizon) www.blackberry.com/blackberrystorm
Apple IPhone 3G ($199/8GB, $299/16GB, AT&T)  www.apple.com/iphone
BlackBerry Bold ($299 after mail-in rebate, AT&T) http://na.blackberry.com/eng/devices/blackberrybold
T-Mobile G1 ($179 for new and existing T-Mobile customers if purchased with a two-year T-Mobile voice and data plan, and $399 without a contract).
This is the first smartphone to run on Google’s Android OS platform. Not compatible with Exchange email – works with Google apps. www.t-mobileg1.com

More evidence that you should be careful where you click: http://blog.trendmicro.com

Read Green Initiative: Zinio is offering full year free subscription for Digital editions of magazines including Popular Science, US News, IPhone Life, MIT’s Technology Review, Stereophile, Popular Science, Home Theater, and Electronic Gaming Monthly.  http://goreadgreen.com/category/subscriptions/featured  www.zinio.com

Tim Torian
Torian, Group, Inc.
http://www.toriangroup.com