December 30, 2011 - Hosts: Jonathan Ness, Security Development Manager, MSRC Pete Voss, Sr. Response Communications Manager, Trustworthy Computing Website: TechNet/Security Chat Topic: December 2011 Out-Of-Band Security Bulletin Release Date: Thursday, December 29, 2011 Q: How are Denial of Service, Tampering, Information Disclosure orSpoofing issues rated?A: (continue reading...) Read more
December 29, 2011 - Hello, Today we released Security Update MS11-100 to address the issue described in Security Advisory 2659883. The security update has a severity rating of Critical and resolves a publicly disclosed remote unauthenticated Denial of Service issue in ASP.NET versions 1.1 (continue reading...) Read more
December 29, 2011 - Today Microsoft released a security bulletin addressing a flaw in ASP.NET that was disclosed early morning yesterday at the Chaos Communication Congress (CCC) in Berlin. Microsoft tested and finished MS11-100 in (continue reading...) Read more
December 28, 2011 - Hello, Today we’re providing advance notification for an out-of-band security update to address the publicly disclosed issue described in (continue reading...) Read more
December 28, 2011 - Update: Microsoft just advised they will provide an out-of-band update tomorrow for KB2659883 and other vulnerabilities. Details at the usual ANS page MS11-Dec Original:Earlier today at the CCC Congress in (continue reading...) Read more
December 28, 2011 - Hello, Today we published Security Advisory 2659883 to provide a workaround to help protect ASP.NET customers from a publicly disclosed vulnerability that affects various Web platforms industry-wide. We are not aware of any attacks using this vulnerability, which affects all (continue reading...) Read more
December 20, 2011 - Gary Korhonen joins Chet for this week's podcast discussing the automatic upgrade of Internet Explorer, Android Market malware, Carrier IQ and an infection that shut down a hospital in Georgia. Read more
December 19, 2011 - Hello, Today we published the December Security Bulletin Webcast Questions & Answers page. We fielded six questions on various topics during the webcast, including bulletins released, deployment tools, and update detection tools. For more details on this month’s bulletins, click (continue reading...) Read more
December 15, 2011 - Hosts: Jonathan Ness, Security Development Manager, MSRC Jerry Bryant, Group Manager, Trustworthy Computing Communications Website: TechNet/Security Chat Topic: December 2011 Security Bulletin Release Date: Wednesday, December 14, 2011 Q: Some of my users had issues with text being deleted from Word documents. Is (continue reading...) Read more
December 15, 2011 - While I share the reluctance of my colleagues to predict the future, I think there are some trends that can be classified as “reasonably likely to occur” in 2012. I make no promises, but here’s what I think we will (continue reading...) Read more
December 15, 2011 - Microsoft is beginning to automatically upgrade users to Internet Explorer 9 as part of their effort to eradicate versions of their old and vulnerable browsers. Read more
December 15, 2011 - Good security news this morning... Microsoft announced that in 2012 Internet Explorer will be updated "silently" to its newest possible version. This new silent update will eliminate the pop-up window that currently (continue reading...) Read more
December 13, 2011 - A researcher has discovered a flaw in Windows Phone 7.5 "Mango" that can crash the message center by simply receiving a malformed SMS, Tweet or Facebook message. Read more
December 13, 2011 - As always on the second Tuesday of the month Microsoft and Adobe release their monthly security bulletins. This month Microsoft has released 13 bulletins, although they had originally announced there would be 14 this month. In the final stages of (continue reading...) Read more
December 13, 2011 - Hi everyone – Mike Reavey here. Today, we’re releasing our December set of security updates. As we do every month, we're providing a heads-up on what’s coming in this month’s release as well as offering links to more information so (continue reading...) Read more
December 13, 2011 - Hello. As I previously mentioned in the Advance Notification Service blog post on Thursday, today we are releasing 13 security bulletins, three of which are rated Critical in severity, and 10 Important. These bulletins will increase protection by addressing 19 (continue reading...) Read more
December 13, 2011 - This month, we have 13 Security Bulletins instead of the expected 14, bringing us up to 99 bulletins this year. The original anticipated 14th bulletin was for the BEAST attack, but (continue reading...) Read more
December 13, 2011 - Think the 12 Days of Christmas jingle: On this Patch Tuesday before Christmas ….. Microsoft Gave to me ….. 3 critical patches… 10 important ones…and a patch for the Duqu vulnerability… We initially expected 14 bulletins for this December Patch Tuesday (continue reading...) Read more
December 13, 2011 - Paul Henry, Security and Forensics Analyst for Lumension, discusses the impact of the December 2011 Patch Tuesday releases. Read more
December 13, 2011 - Free Windows phones are being offered by Microsoft to users who describe their Android malware problems. Read more