Last week, we will released product updates for Internet Security & Acceleration (ISA) Server 2006 and Intelligent Application Gateway (IAG) 2007. This is the first time we have synchronized updates for our edge security solutions as we move toward better integration across our Forefront edge security and access product line. The updates include:
IAG 2007 Service Pack 1 adds Windows Vista client support, improved performance, stability and security, and enables new solutions with select feature enhancements. Key updates delivered with SP1 include:
· Broader client support with Windows Vista and Windows Mobile 5.0 (for Exchange ActiveSync push e-mail).
· Better enterprise integration through ADFS deployment scenarios and support, as well as KCD support for SmartCard-only authentication.
· A Stronger platform with up to a 6X performance increase in certain scenarios (HTTP) and upgrade support on Whale 4700 2U hardware (software version 3.6 only).
ISA Server 2006 SU provides new troubleshooting options and tools available directly from the ISA Server Management console, including new diagnostic logging functionality, and enhanced log viewer and log filter options for ISA Server 2006 Standard and Enterprise Editions. Key updates delivered with the SU include:
· Enhanced troubleshooting
o Improvements to the ISA Server Management console with the addition of a new Troubleshooting node
o Integration with the Microsoft ISA Server Best Practices Analyzer tool
· Improved logging and analysis
o Enhanced log viewing and filtering functionality
o Updated diagnostic logging, including over 200 new diagnostic logging events
Read more at http://www.microsoft.com/forefront/edgesecurity
We have a neat print and video case study of the Vienna International Airport, that’s currently our most popular security case study. The airport maintains its efficiency in part the way any large enterprise does: through e-mail. Vienna International Airport relies on Microsoft Exchange Server to manage a flow of 100,000 e-mail messages per day, where about 11,500 messages are flight relevant status messages. About 70,000 e-mails are spam.
There’s lots more..
VIE Final 2MB.wmv VIE Final 350.wmv VIE Final 750.wmv ViennaIntAirport Forefront Final.DOCGet Office File Viewers
The ISA Server 2006 has won the Reader’s Choice Award for best software-based Firewall, based on voting by IT pros. We’re especially proud to be nominated directly by our customers. WindowSecurity.com conducts monthly polls to discover which product is preferred by Network Security administrators in a particular category of third party network security solutions. The awards draw a huge response per category and are based entirely on the visitors’ votes.
The blog of the Microsoft Anti-Malware Engineering team, which makes our fine Forefront Client Security anti-malware engine, reports on the recent wave of “Storm” malware:
In August, Microsoft’s Malware Protection Center (MMPC), the group of researchers responsible for each month’s additions to the Malicious Software Removal Tool (MSRT), decided to add this family to the September MSRT release based on its prevalence.
The Renos family of malware has been removed from 668,362 distinct machines. The Zlob family has been removed from 664,258 machines. And the Nuwar family has been removed from 274,372 machines. In total, malware has been removed by this month’s MSRT from 2,574,586 machines.
So, despite some public concern in the press and among researchers about the “Storm” worm, it ranks third among the families of malware whose signatures have been added to the MSRT.
Another antimalware researcher who has been tracking these recent attacks has presented us with data that shows we knocked out approximately one-fifth of “Storm’s” Denial of Service (DoS) capability on September 11th. Unfortunately, that data does not show a continued decrease since the first day. We know that immediately following the release of MSRT, the criminals behind the deployment of the “Storm” botnet immediately released a newer version to update their software. To compare, one day from the release of MSRT, we cleaned approximately 91,000 machines that had been infected with any of the number of Nuwar components. Thus, the 180,000+ additional machines that have been cleaned by MSRT since the first day are likely to be home user machines that were not notably incorporated into the daily operation of the “Storm” botnet. Machines that will be cleaned by MSRT in the subsequent days will be of similar nature.
There’s more on the Anti-Malware blog