Microsoft Switzerland Security Blog

Security informations brought to you by the Swiss Security Team.

August, 2006

  • Buy and Tell

    Now, this is driving me mad. Not only have we the discussion about Full Disclosure and Responsible Disclosure but now security companies are starting to buy vulnerabilities to go public with them afterwards. Hoiw can you trust a company like this to help...
  • THis is not a security bulletin

    Once again: Websense received reports about a mail claiming to be from us. This mail is a faked Security Bulletin. Even though the patch you download is pretty similar to the one we released, there is a Trojan horse part of the patch as well: http...
  • Rumors about a Powerpoint 0day

    Well, there is a lot of chatter going on out there regarding claims of "yet another" PowerPoint 0-day. What really annoys me is that some sources claim that Microsoft is back in the good old days, where we have been accused of not saying the truth. People...
  • MS06-042 re-released

    During my customer visits in the last few days, I have been often asked about MS06-042. I assume that you all saw that we re-released it today after having to pull it yesterday due to some problems with the installation of the new update. The re-release...
  • IBM to buy ISS

    It is not only Microsoft buying security companies, it seems that other have a need there as well. This acquisition is a pretty interesting one and I am looking forward to seeing what IBM is doing with it: http://www.forbes.com/entrepreneurs/feeds...
  • What happens to the stuff in the Recycle bin?

    Forensic Analysis of Microsoft Windows Recycle Bin Records "Contrary to popular belief, when a file is deleted from a computer it is not really deleted. Windows utilizes a repository for deleted files called the Recycle Bin. The existence of the Recycle...
  • Windows Live OneCare Safety Scanner goes worldwide

    Since this week, our online Safety Scanner is availble for worldwide use. Go and have a test-run: http://safety.live.com Roger
  • Update on MS06-040

    You probably read about it: There are poeple out there trying to exploit MS06-040. We warned yesterday about a Proof of Concept code on the web: http://www.microsoft.com/technet/security/advisory/922437.mspx Today, SANS posted that there is virus/bot...
  • Microsoft at Blackhat

    As you probably know, we participated at Blackhat this year and even showed the new Vista security featrues there. We got quite some press. Here are some links for those who would like to read: Microsoft overhauls Windows security Black Hat Conference...
  • New Windows Vista Security Blog

    "Thousands of people from around the world have been hard at work to ensure that Windows Vista is the most secure versions of Windows ever released. From new engineering best practices as part of the Security Development Lifecycle (SDL) to new data protection...