Sign In
Microsoft Malware Protection Center
Threat Research & Response Blog
Go to the MMPC Portal
Like us on Facebook
Follow us on Twitter
About
RSS for posts
Atom
OK
Search Blogs
Advanced search options...
Search In:
Everything
Blogs
Forums
People
Groups
Places
Pages
Date range:
All Time
Last Year
Last 6 Months
Last 3 Months
Last Month
Last Week
Last Two Days
Archive
Archives
May 2012
(4)
April 2012
(6)
March 2012
(9)
February 2012
(5)
January 2012
(8)
December 2011
(5)
November 2011
(8)
October 2011
(8)
September 2011
(7)
August 2011
(8)
July 2011
(9)
June 2011
(10)
May 2011
(13)
April 2011
(6)
March 2011
(11)
February 2011
(9)
January 2011
(4)
December 2010
(7)
November 2010
(5)
October 2010
(12)
September 2010
(10)
August 2010
(8)
July 2010
(7)
June 2010
(6)
May 2010
(5)
April 2010
(5)
March 2010
(9)
February 2010
(7)
January 2010
(3)
December 2009
(4)
November 2009
(9)
October 2009
(6)
September 2009
(8)
August 2009
(4)
July 2009
(5)
June 2009
(7)
May 2009
(8)
April 2009
(18)
March 2009
(10)
February 2009
(8)
January 2009
(5)
December 2008
(11)
November 2008
(7)
October 2008
(12)
September 2008
(8)
August 2008
(11)
July 2008
(4)
June 2008
(3)
Partner Links
Microsoft Safety Scanner
The Microsoft Safety Scanner is a free downloadable security tool that provides on-demand scanning and helps remove viruses, spyware, and other malicious software. It works with your existing antivirus software.
Microsoft Security Response Center
The Microsoft Security Response Center (MSRC) identifies, monitors, resolves, and responds to Microsoft software security vulnerabilities.
Microsoft Security Essentials
Get high-quality, hassle-free antivirus protection for your home PC now.
Microsoft Forefront
Microsoft Forefront: a comprehensive security product portfolio.
Windows Defender
Windows Defender Homepage
Microsoft AntiSpam
Microsoft AntiSpam
Industry Links
ICSA Labs
Virus Bulletin
Virus Bulletin: Independent Malware Advice
West Coast Labs
West Coast Labs (WCL) is one of the world's leading independent test facilities.
AV-Test
AV-Test.org - Tests of Anti-Virus and Security-Software
AV-Comparatives
Independent comparatives of Anti-Virus Software
Partner Blogroll
Forefront Client Security Team Blog
The scoop from the FCS engineering team.
Forefront Team Blog
Information about what's happening with the entire Microsoft Forefront Family of products.
Microsoft Security Research & Defense Blog
Information from Microsoft about vulnerabilities, mitigations and workarounds, active attacks, and other related guidance.
The Microsoft Security Response Center Blog
Working to help protect customers from vulnerabilities in Microsoft software.
Trustworthy Computing Blog
Perspectives on security, privacy, online safety and reliability topics.
MMPC Links
Microsoft Malware Protection Center
The Microsoft Malware Protection Center (MMPC) Portal.
Microsoft Security Intelligence Report
Microsoft Security Intelligence Report
March, 2010
TechNet Blogs
>
Microsoft Malware Protection Center
>
March, 2010
Posts
Subscribe via RSS
Sort by:
Most Recent
|
Most Views
|
Most Comments
Excerpt View
|
Full Post View
Microsoft Malware Protection Center
Active Exploitation of CVE-2010-0806
Posted
over 2 years ago
by
mmpc2
On March 9, Microsoft started investigating reports of targeted attacks using a previously undisclosed vulnerability (CVE-2010-0806) affecting Internet Explorer 6 and 7 (Internet Explorer 8, Windows 7, and Windows Server 2008 R2 are not susceptible)....
Microsoft Malware Protection Center
Bots, bots, and again bots
Posted
over 2 years ago
by
mmpc2
Today we are going to take a closer look at bots and botnets. On the black market, selling bots and botnets is quite profitable, which makes creating them a popular activity for criminals. It helps that bot sources and creation kits are available on the...
Microsoft Malware Protection Center
What we know (and learned) from the Waledac takedown
Posted
over 2 years ago
by
mmpc2
Recently, following an investigation to which various members of the MMPC contributed, Microsoft’s Digital Crimes Unit initiated a takedown of the Waledac botnet in an action known as Operation b49 , an ongoing operation to disrupt the botnet for the...
Microsoft Malware Protection Center
Got Zbot?
Posted
over 2 years ago
by
mmpc2
PWS:Win32/Zbot a.k.a Zeus/WSNPoem is a password-stealing trojan that monitors for visits to certain Web sites. It allows limited backdoor access and control and may terminate certain security-related processes. In our collection, although we have some...
Microsoft Malware Protection Center
Win32/FakeRean is 33 rogues in 1
Posted
over 2 years ago
by
mmpc2
Back in August 2009 we added a rogue called Win32/FakeRean to the list of families removed by MSRT. At the time, I wrote about how it used several different names, like Home Antivirus 2010 and PC Antispyware 2010, which all looked pretty much the same...
Microsoft Malware Protection Center
MSRT: Helping us de-Helpud you
Posted
over 2 years ago
by
mmpc2
Greetings purveyors of the Internet! Welcome to another thrilling installment of "MSRT: Miami", aka "What's new in MSRT this month?"! It's Win32/Helpud . What, anti-climactic? Perhaps. However that doesn't take away from the importance of this addition...
Microsoft Malware Protection Center
CVE-2010-0188: Patched Adobe Reader Vulnerability is Actively Exploited in the Wild
Posted
over 2 years ago
by
mmpc2
While recently analyzing a malicious PDF file, I noticed a vulnerability exploited by the sample which I've never encountered before. After a bit of research I came to the conclusion that this specific sample exploited CVE-2010-0188 . This is a fresh...
Microsoft Malware Protection Center
In focus: Mariposa botnet
Posted
over 2 years ago
by
mmpc2
In January this year, the MMPC added Win32/Rimecud to MSRT's removal capability. Win32/Rimecud to MSRT's removal capability. As previously discussed by Marian , this worm propagates mainly via removable devices, IM, and P2P channels; and utilizes backdoor...
Microsoft Malware Protection Center
Waledac, Botnets and RSA
Posted
over 2 years ago
by
mmpc2
By now you have likely seen multiple reports of Operation b49 which has targeted the Win32/Waledac botnet’s command and control infrastructure. As I mentioned in my last blog there is still more work that needs to be done in terms of cleaning up infected...
Page 1 of 1 (9 items)