A vulnerability in servers used by EarthLink to handle mistyped Web page requests may have allowed attackers to launch undetectable phishing attacks against any Internet site, according to a noted Internet security researcher.

The Open Solutions Alliance is hoping to shake off some growing pains as it moves through its second year, according to its president, Dominic Sartorio.

Oracle plans to expand its lawsuit against SAP to include charges that its TomorrowNow subsidiary stole software applications from Oracle, and that it did so with the knowledge of SAP executives, according to court papers filed Thursday.

Microsoft on Friday confirmed it is planning to release a subscription-based "value box" of low-end productivity software code-named Albany, and has sent an early version of the product to thousands of beta participants for private testing.

PayPal, eBay's electronic payment service, plans to take the dramatic step of locking out people using older versions of Web browsers in order to stem phishing attacks.

In the latest death knell for Outlook Express, Microsoft announced Thursday that it will turn off access to its Web-based Hotmail service from the desktop e-mail software at the end of June.

Apple has changed its software update tool for Windows users so that it separates updates for already-installed programs from offers to install new software.

Chinese-language blogs are detailing a zero-day vulnerability in Microsoft Works, the company's lower-end office productivity suite, according to security vendor McAfee.