February 2, 2012 - If the newswires are to be believed, the death of spam is imminent. Again! The saviour this time round is DMARC, which is backed by Microsoft, Google, Facebook, PayPal, LinkedIn, Bank Of America and more. Find out what it's all (continue reading...) Read more
February 1, 2012 - Last September of 2011, Microsoft and an anti-malware security company had joined forces to take (continue reading...) Read more
January 31, 2012 - January marked half-time for the folks at the DNS Changer Working Group (DCWG) who are now running the DNS servers originally used in the Rove botnet. Ever since a (continue reading...) Read more
January 30, 2012 - A Russian man who has been accused by Microsoft of being the mastermind behind the Kelihos botnet has used his LiveJournal blog to protest his innocence. Read more
January 24, 2012 - Microsoft has alleged that a computer security firm's ex-employee is the mastermind behind the Kelihos botnet. Read more
January 23, 2012 - Microsoft is going all out on hammering the last nail on Kelihos’s coffin. The takedown that took place 4 (continue reading...) Read more
January 23, 2012 - There have been warnings over the last few days regarding a Halo 4 Beta invite scam. Information was pretty thin on the ground, however, so I decided to take a look – especially as there were reports of (continue reading...) Read more
January 12, 2012 - Hello, Today we published the January Security Bulletin Webcast Questions & Answers page. We fielded nine questions on various topics during the webcast, including bulletins released, deployment tools, and update detection tools. There were two questions during the (continue reading...) Read more
January 10, 2012 - Paul Henry, Security and Forensics Analyst for Lumension, discusses the impact of the January 2012 Patch Tuesday releases. Read more
January 10, 2012 - Hello. As I previously mentioned in the Advance Notification Service blog post on Thursday, today we are releasing seven security bulletins, one of which is rated Critical in severity, with the remaining six classified as Important. These bulletins will address (continue reading...) Read more
January 10, 2012 - In the first Patch Tuesday of 2012, Microsoft has addressed 1 critical issue and 6 important. It’s interesting to note that despite all of the media hype over “The Beast”, attacks have simply never materialized and (continue reading...) Read more
January 10, 2012 - 2012's first Patch Tuesday has seven bulletins, including the postponed bulletin from December 2011 that addresses the BEAST style information disclosure. Talking about changes in schedules, Microsoft also released a bulletin (continue reading...) Read more
January 6, 2012 - Tony Bradley published yesterday a blog entry that contains a great summary of the top security incidents of 2011. This is worth reading for any IT administrator as these attacks will grow (continue reading...) Read more
January 5, 2012 - Microsoft is starting 2012 with a surprisingly large first release of seven security bulletins covering eight separate vulnerabilities. In contrast, in past years we usually had relatively small January release containing (continue reading...) Read more
January 5, 2012 - Hello. Today we’re releasing our advance notification for the January security bulletin release, which is scheduled for Tuesday, January 10. This month’s release includes seven bulletins addressing eight vulnerabilities in Microsoft Windows and Microsoft Developer Tools And Software. As (continue reading...) Read more
December 30, 2011 - Hello, Today we published the December 2011 Out-of-Band Security Bulletin Webcast Questions & Answers page. We fielded 41 questions on the subject of MS11-100 . There were four questions during the webcast that we were unable to answer (continue reading...) Read more
December 30, 2011 - Hosts: Jonathan Ness, Security Development Manager, MSRC Pete Voss, Sr. Response Communications Manager, Trustworthy Computing Website: TechNet/Security Chat Topic: December 2011 Out-Of-Band Security Bulletin Release Date: Thursday, December 29, 2011 Q: How are Denial of Service, Tampering, Information Disclosure orSpoofing issues rated?A: (continue reading...) Read more
December 29, 2011 - Hello, Today we released Security Update MS11-100 to address the issue described in Security Advisory 2659883. The security update has a severity rating of Critical and resolves a publicly disclosed remote unauthenticated Denial of Service issue in ASP.NET versions 1.1 (continue reading...) Read more
December 29, 2011 - Today Microsoft released a security bulletin addressing a flaw in ASP.NET that was disclosed early morning yesterday at the Chaos Communication Congress (CCC) in Berlin. Microsoft tested and finished MS11-100 in (continue reading...) Read more
December 28, 2011 - Hello, Today we’re providing advance notification for an out-of-band security update to address the publicly disclosed issue described in (continue reading...) Read more