I just saw the first news regarding arrests for Zotob: http://apnews.excite.com/article/20050826/D8C7K9NO3.html It seems that the work we are doing together with the different policies starts to pay off Roger

Well, I have seen several virus alerts on Level 2 from F-Secure without actually atking off. But this time there is a huge difference: When Slammer broke out, I have been on vacation. When Blaster took off - I have been on vacation. Since an hour, I am...

The Swiss Federal Institute of Technology (ETH) just released a pretty interesting e-Learning Course regarding "Security in the Information Age". I personally think that ir somewhere opens up the IT-Security-Guy's mind: http://www.isn.ethz.ch/crn...

Barracuda Networks released its annual spam report, which shows between 90 to 95 percent of all e-mail sent in 2007 is spam. This is based on an analysis of more than 1 billion daily e-mail messages sent to its more than 50,000 customers worldwide. ...

It seems that SANS is expecting that the exploits for our August patches or for the vulnerability in the Veritas Backup software will be integrated in a worm pretty soon. To quote them: "there are enough exploits for these vulnerabilities known to be...

Microsoft released a security Advisory on recent security vulnerabilities in Macromedia Flash Player, a third party software application that also was redistributed with Microsoft Windows XP Service Pack 1, Windows XP Service Pack 2, Windows 98, Windows...

Just for your information: We released an advisory regarding the WMF 0day tonight. You can find it here: http://www.microsoft.com/technet/security/advisory/912840.mspx Roger

When I talk to customers regarding Windows XP SP2 and the improvements we made in IE, they relate the security changes with the Pop-Up Blocker. But believe it or not - there is more...... If you are interested to learn about IE 6 SP2 security, check...

During the last week, I have been on the Microsoft Campus in Redmond. We had the Quarterly Meeting of the worldwide Chief Security Advisors. During those meetings we usually meet with the products groups to discuss your needs and our plans.Additionally...

We just finished our CBK (Common Body of Knowledge) seminar, a one week training covering ten domains of security knowlegde: Access Control Systems and Methodology Applications and Systems Development Security Business Continuity Planning...

I do not know whether you know John Pescatore, Gartner. He is definitely not, what you can call a Microsoft fan. Today he seems to have made the following statement: "It [Vista] is going to remove the low-hanging fruit. It is going to make it that...

A simple airline stub, picked out of a bin near Heathrow, led Steve Boggan to investigate a shocking breach of security... http://www.guardian.co.uk/idcards/story/0,,1766266,00.html I will carefully destroy those papers from now on! ;-) -Urs

Breplibot.b is a backdoor with bot capabilities. It connects to several IRC servers and waits for commands from the backdoor author. The backdoor tries to utilize Sony DRM software for hiding its process, file and registry keys. An AV vendor discuses...

Microsoft® Phishing Filter Add-in for MSN® Search Toolbar (Beta) Dynamic Service Helps Protect Against Fraudulent Websites and Personal Data Theft Phishing (pronounced "Fishing") is one of the fastest growing threats on the Internet and a form of identity...

I wrote already about this tool - it RTMed now and is ready for download. You can find it here . At the moment we are discussing about flying those guys in and running some workshops about the way we do threat modelling and this tool. Woudl there be...

MS Research has released a paper on "Strider Typo-Patrol: Discovery and Analysis of Systematic Typo-Squatting" Typo-squatting refers to the practice of registering domain names that are typo variations of popular websites. We propose a new approach, called...

There is chatter going on that we will withdraw the plans to deploy IE 7 through Automatic Update. I am in Redmond at the moment and talked to the IE 7 team. At the moment it is planned to release IE 7 to Web this month and it will be on AU after this...

As probmised during today's IE-7-webcast, here is the link to the IE7-Blog: http://blogs.msdn.com/ie/ Roger

See the TechEd/IT Forum security sessions online (Referenz: Michael Howard): http://blogs.msdn.com/michael_howard/archive/2006/12/21/online-security-sessions-from-teched-it-forum-available.aspx Urs

The March edition of the IBM Internet Security Systems X-Force Threat Insight Monthly has some interesting information on: Internet Protocol Television (IPTV) Modern Profile of the Malicious Web site http://www.iss.net/documents/x-force_monthly_reports...

Once your network is up and running, it's up to you to keep it healthy. This means incorporating all of the security features that come with your operating system, whether it's Windows Vista or Windows XP, and taking care of your network hardware properly...

It is kind of scary but pretty often we see claims that exploits to 0day-vulnerabilities are sold on the Internet. There was one recently for Excel on eBay and now there are claims that there was a WMF-exploit on the market pretty early in December (...

We get a lot of questions about MS05-051 and whether there are issues with this Update. Yes, we know about isolatied problems and documented them in a knowledgebase article: http://www.microsoft.com/technet/security/advisory/909444.mspx I would like...

User Account Control (UAC) is an often misunderstood feature in Windows Vista, see online article by Mark Russinovich on TechNet: http://www.microsoft.com/technet/technetmag/issues/2007/06/UAC/default.aspx Urs

Researchers have devised an encryption scheme that could simplify the protection of sensitive information by allowing banks, hospitals, and other organizations to lock files using keys that are based on specific attributes, such as an employee's position...