This isn’t a week-in-review post, or a pre-holiday recap. But here are viewpoints from two IT security blogs on some pre-Memorial Day stories covered this week.

New Office 2000 ActiveX flaw
McAfee on Thursday downplayed the flaw, disclosed as part of the Month of ActiveX Bugs project, on the Avert Labs blog. Researcher Allysa Myers pointed out that “if you’re practicing good computer hygiene, you’ll be just fine.”

“The PoC code itself is harmless, as intended, but will lower macro security settings in Word 2000. However, if you’ve been regularly applying your Office patches, you don’t have to worry about the exploit,” she said. “This vulnerability was patches seven years ago this month, so you’d have to be a pathological procrastinator to have missed the update. This fix is also included in Office 2000 (Service Pack 3).”

nCircle acquires Cambia Security
Almost a depressing send off to Cambia here from Mark Wood, who was the company’s VP of product management and marketing, before it was acquired this week by nCircle. He’s stressing opportunity over sentimentality in this post.

“For the past two years, I’ve worked hard with a team of incredibly talented people here in Atlanta to bring an agent-less configuration compliance solution to market and to make it as effective and as well-known as possible. That journey ended this morning when the Cambia website vanished for the last time and was replaced by the redirects to the nCircle site. I sat alone in a silent office at 8 am as I watched the Cambia home page go dark,” he said. “Now, I don’t want you to think I’m unhappy with this acquisition. It’s terrific. It was just harder to watch the Cambia stuff go away than I expected. Transitions like this often are, I suppose.”