Numerous articles have been circulating about an annoucement made by researchers claiming to be able to break WPA in 12 minutes. While the paper seems to be valid, it is not exactly as has been reported. Erik Tews and Martin Beck found a way of breaking the TKIP component of WPA, which was known to be imperfect.
The IE7 development team has introduced a new browser concept based on color coding the address bar that should enable users to better protect themselves on the net. Currently most users are used to the idea of looking for the padlock icon on the status bar to know if they have a secure connection and some browsers out there also change the address bar to a different color (yellow in FireFox) to show SSL status. The next evolution of this idea is to have several color codes to represent different security levels (green for newer "high-assurance" SSL certificates, yellow for suspected phishing site, red for known fishing sites). Another improvement to go along with this idea is to show the organization name alternating with the certificate authority from the certificate on the address bar at the same time. I believe that this will ultimately result in users having a much better understanding of what it means to use a secure connection, expect this more often, and the implications of different certifying authorities. IE will also always show the address bar when new windows are opened so that the user can always see this information (and preventing sites from hiding their location from you with menu-less windows).
Since this was previewed on the IEBlog, there has been discussion between the various browser developers out there to coordinate and standardize this behavior - an excellent example of when competition & cooperation come together for the benefit of the consumer.
Read more at IEBlog
MS05-055 fixes a local kernel exploit that allowed a locally logged on user to elevate their priviledges.