Microsoft is working to patch a vulnerability in Internet Explorer that allows attackers to bypass the same origin policy, inject malicious code into websites, and steal cookies, session and login details.

Microsoft has said Google’s disclosure of the security vulnerability in Windows 8.1 was more of a “gotcha” moment than about protecting customers. They also argued Google should be more flexible and be willing to work with other companies privately to help fix vulnerabilities.

A source has said a “bad code update” that failed to roll back was responsible for the outage that took out Microsoft’s Bing, and also Yahoo’s search engine which relies on Bing.

US President Barack Obama has signed an order authorizing sanctions against North Korea, in response to the cyber attack against Sony and threats against movie theaters and moviegoers.

Sony has announced that members who were impacted by Lizard Squad’s attack on PSN will receive a five-day extension and a once-off 10% discount in the PlayStation Store.

The EU’s new Consumer Rights Directive has forced Apple to offer a 14-day money back guarantee on App Store and iTunes purchases in Europe, ending its long-held no refunds policy.

Sony Pictures attorney David Boies warned in a sternly worded three-page letter that Sony will take legal action against any news organizations which continue to publish the stolen information in the leaked documents. Boies said Sony does not consent to the “possession, review copying, dissemination, publication, uploading, downloading or making any use of the stolen information”

Hackers will not include personal information of Sony’s employees in their latest leak if the workers object. The group, calling themselves Guardians of Peace, threatened to leak more information they stole from Sony, calling it a “Christmas gift”.