December 28, 2011 - Hello, Today we published Security Advisory 2659883 to provide a workaround to help protect ASP.NET customers from a publicly disclosed vulnerability that affects various Web platforms industry-wide. We are not aware of any attacks using this vulnerability, which affects all (continue reading...) Read more
December 20, 2011 - Gary Korhonen joins Chet for this week's podcast discussing the automatic upgrade of Internet Explorer, Android Market malware, Carrier IQ and an infection that shut down a hospital in Georgia. Read more
December 19, 2011 - Hello, Today we published the December Security Bulletin Webcast Questions & Answers page. We fielded six questions on various topics during the webcast, including bulletins released, deployment tools, and update detection tools. For more details on this month’s bulletins, click (continue reading...) Read more
December 15, 2011 - Hosts: Jonathan Ness, Security Development Manager, MSRC Jerry Bryant, Group Manager, Trustworthy Computing Communications Website: TechNet/Security Chat Topic: December 2011 Security Bulletin Release Date: Wednesday, December 14, 2011 Q: Some of my users had issues with text being deleted from Word documents. Is (continue reading...) Read more
December 15, 2011 - While I share the reluctance of my colleagues to predict the future, I think there are some trends that can be classified as “reasonably likely to occur” in 2012. I make no promises, but here’s what I think we will (continue reading...) Read more
December 15, 2011 - Microsoft is beginning to automatically upgrade users to Internet Explorer 9 as part of their effort to eradicate versions of their old and vulnerable browsers. Read more
December 15, 2011 - Good security news this morning... Microsoft announced that in 2012 Internet Explorer will be updated "silently" to its newest possible version. This new silent update will eliminate the pop-up window that currently (continue reading...) Read more
December 13, 2011 - A researcher has discovered a flaw in Windows Phone 7.5 "Mango" that can crash the message center by simply receiving a malformed SMS, Tweet or Facebook message. Read more
December 13, 2011 - As always on the second Tuesday of the month Microsoft and Adobe release their monthly security bulletins. This month Microsoft has released 13 bulletins, although they had originally announced there would be 14 this month. In the final stages of (continue reading...) Read more
December 13, 2011 - Hi everyone – Mike Reavey here. Today, we’re releasing our December set of security updates. As we do every month, we're providing a heads-up on what’s coming in this month’s release as well as offering links to more information so (continue reading...) Read more
December 13, 2011 - Hello. As I previously mentioned in the Advance Notification Service blog post on Thursday, today we are releasing 13 security bulletins, three of which are rated Critical in severity, and 10 Important. These bulletins will increase protection by addressing 19 (continue reading...) Read more
December 13, 2011 - This month, we have 13 Security Bulletins instead of the expected 14, bringing us up to 99 bulletins this year. The original anticipated 14th bulletin was for the BEAST attack, but (continue reading...) Read more
December 13, 2011 - Think the 12 Days of Christmas jingle: On this Patch Tuesday before Christmas ….. Microsoft Gave to me ….. 3 critical patches… 10 important ones…and a patch for the Duqu vulnerability… We initially expected 14 bulletins for this December Patch Tuesday (continue reading...) Read more
December 13, 2011 - Paul Henry, Security and Forensics Analyst for Lumension, discusses the impact of the December 2011 Patch Tuesday releases. Read more
December 13, 2011 - Free Windows phones are being offered by Microsoft to users who describe their Android malware problems. Read more
December 12, 2011 - If you've been following this blog for a few years, you probably know that I'm reluctant to play the prediction game, but it seems to be expected at this time of year, so here's my contribution. Java will consolidate its (continue reading...) Read more
December 8, 2011 - Hello all. Before we look at next week’s bulletin release, we’d like to point out an update to our Microsoft Active Protections Program (MAPP) that should provide customers with greater transparency as to how (continue reading...) Read more
December 8, 2011 - Microsoft Holiday Patch Tuesday release will be substantial. We will get 14 bulletins for a total of 20 CVEs. Out of the 14, three are of the highest severity level, "critical", (continue reading...) Read more
December 2, 2011 - The EFF is asking the US Copyright Office to expand exemptions for jailbreaking/rooting devices to include game consoles and other smart devices. We explore the security risks and benefits of their proposal. (continue reading...) Read more
November 23, 2011 - Old hoaxes never die. They just get transplanted to Facebook. Sometimes literally, when a classic email hoax starts to spread with minor emendations through Facebook message or news feeds. In this case, the actual message (at least, as I received (continue reading...) Read more