Browse by Tags

Related Posts
  • Blog Post: November 2014 Updates

    Today, as part of Update Tuesday, we released 14 security updates – four rated Critical, nine rated Important, and two rated Moderate, to address 33 Common Vulnerabilities and Exposures (CVEs) in Microsoft Windows, Internet Explorer (IE), Office, .NET Framework, Internet Information Services (IIS...
  • Blog Post: Advance Notification Service for the November 2014 Security Bulletin Release

    Today, we provide advance notification for the release of 16 Security Bulletins. Five of these updates are rated Critical, nine are rated as Important, and two are rated Moderate in severity. These updates are for Microsoft Windows, Internet Explorer, Office, Exchange, .NET Framework, Internet Information...
  • Blog Post: Security Advisory 3010060 released

    Today, we released Security Advisory 3010060 to provide additional protections regarding limited, targeted attacks directed at Microsoft Windows customers. A cyberattacker could cause remote code execution if someone is tricked into opening a maliciously-crafted PowerPoint document that contains an infected...
  • Blog Post: Theoretical Thinking and the June 2014 Bulletin Release

    As security professionals, we are trained to think in worst-case scenarios. We run through the land of the theoretical, chasing “what if” scenarios as though they are lightning bugs to be gathered and stashed in a glass jar. Most of time, this type of thinking is absolutely the correct thing...
  • Blog Post: May 2014 Security Bulletin Webcast and Q&A

    Today we published the May 2014 Security Bulletin Webcast Questions & Answers page . We answered 17 questions in total, with the majority focusing on the update for SharePoint ( MS14-022 ), Group Policy ( MS14-025 ) and Internet Explorer ( MS14-029 ). Here is the video replay: We invite...
  • Blog Post: The May 2014 Security Updates

    Today, we released eight security bulletins – two rated Critical and six rated Important – to address 13 Common Vulnerability & Exposures (CVEs) in .NET Framework, Office, SharePoint, Internet Explorer, and Windows. We encourage you to apply all of these updates, but for those who need...
  • Blog Post: Advance Notification Service for the May 2014 Security Bulletin Release

    Today we provide Advance Notification Service (ANS) for the release of eight bulletins, two rated Critical and six rated Important in severity. These updates will address vulnerabilities for .NET Framework, Office, Internet Explorer, and Windows. As we do every month, we’ve scheduled the security...
  • Blog Post: April 2014 Security Bulletin Webcast and Q&A

    Today we published the April 2013 Security Bulletin Webcast Questions & Answers page . We answered 13 questions in total, with the majority focusing on the update for Internet Explorer ( MS14-018 ) and the Windows 8.1 Update ( KB2919355 ). Two questions that were not answered on air have been included...
  • Blog Post: The April 2014 Security Updates

    T. S. Elliot once said, “What we call the beginning is often the end. And to make an end is to make a beginning. The end is where we start from.” So as we put one season to bed, let’s start another by looking at the April security updates . Today, we release four bulletins to address...
  • Blog Post: Advance Notification Service for the April 2014 Security Bulletin Release

    Today we provide advance notification for the release of four bulletins, two rated Critical and two rated Important in severity. These updates address issues in Microsoft Windows, Office and Internet Explorer. The update provided through MS14-017 fully addresses the Microsoft Word issue first described...
  • Blog Post: Microsoft Releases Security Advisory 2953095

    Today we released Security Advisory 2953095 to notify customers of a vulnerability in Microsoft Word. At this time, we are aware of limited, targeted attacks directed at Microsoft Word 2010. An attacker could cause remote code execution if someone was convinced to open a specially crafted Rich Text Format...
  • Blog Post: Antimalware Support for Windows XP and the January 2014 Security Bulletin Webcast and Q&A

    Today we’re publishing the January 2014 Security Bulletin Webcast Questions & Answers page . We answered 16 questions in total, with the majority of questions focusing on the Dynamics AX bulletin ( MS14-004 ), the update for Microsoft Word ( MS14-001 ) and the re-release of the Windows 7 and...
  • Blog Post: A Look Into the Future and the January 2014 Bulletin Release

    In January, there are those who like to make predictions about the upcoming year. I am not one of those people. Instead, I like to quote Niels Bohr who said, “Prediction is very difficult, especially if it’s about the future.” However, I can say without a doubt that change is afoot...
  • Blog Post: Advance Notification Service for the January 2014 Security Bulletin Release

    Today we provide advance notification for the release of four bulletins for January 2014. All bulletins this month are rated Important in severity and address vulnerabilities in Microsoft Windows, Office, and Dynamics AX. The update provided in MS14-002 fully addresses the issue first described in Security...
  • Blog Post: November 2009 Bulletin Release Advance Notification

    Advance Notification for the November 2009 Security Bulletin Release To help customers plan and prioritize for this month’s security updates, we wanted to let you know that we will be releasing 6 bulletins (three critical and three important) addressing 15 vulnerabilities, affecting Windows and Microsoft...
  • Blog Post: Microsoft Customer Protections for May 2013

    Today, we are releasing 10 bulletins, addressing 33 vulnerabilities in Microsoft products. Before we get into the details, we wanted to first let our enterprise customers know about a change in how we’re communicating technical details within our security advisories. Starting today, customers will...
  • Blog Post: Benefits of Office 2010 File Validation will be made available for Office 2003 and 2007

    Hello everyone -- We're really excited to announce that Office File Validation, currently part of Office 2010, will soon be made available for Office 2003 and 2007. During development of Office 2010, the Office Team, in conjunction with members of the Microsoft Engineering Center (MSEC) organization...
  • Blog Post: Microsoft Releases Security Advisory 2896666

    Today we released Security Advisory 2896666 regarding an issue that affects customers using Microsoft Windows Vista and Windows Server 2008, Microsoft Office 2003 through 2010, and all supported versions of Microsoft Lync . We are aware of targeted attacks, largely in the Middle East and South Asia....
  • Blog Post: Security Bulletin Webcast Video, Questions and Answers – June 2009

    During the security bulletin webcast for June 2009, we answered a wide array of questions around the 10 bulletins we released. Of primary interest to customers, based on the number of questions we received on the topic, is the RPC issue addressed by MS09-026 . As this issue affects third party products...
  • Blog Post: Welcome to the 1024-bit world and the October security updates

    As previously mentioned in the Advance Notification blog on Thursday, today we’re releasing seven bulletins, one Critical-class and six Important-class bulletins. Before we discuss those releases, let’s take a closer look at the Security Advisories we also released today. Security Advisory...
  • Blog Post: Advance Notification Service for November 2012 Security Bulletin Release

    Today, we’re providing advance notification for six bulletins to help protect customers against 19 CVEs. The four Critical-rated updates will address 13 vulnerabilities in Microsoft Windows, Internet Explorer and the .NET Framework. One bulletin rated Important will address four vulnerabilities...
  • Blog Post: March 2013 Security Bulletin Webcast, Q&A, and Slide Deck

    Today we’re publishing the March 2013 Security Bulletin Webcast Questions & Answers page . We fielded 13 questions on various topics during the webcast, with specific bulletin questions focusing primarily on Internet Explorer ( MS13-021 ), SharePoint ( MS13-024 ) and the update for Kernel-Mode...
  • Blog Post: Advance Notification for the May 2010 Security Bulletin Release

    Hi everyone, Today we published our advance notification for the May security bulletin release letting customers know that next Tuesday, May 11, we will release two Critical bulletins addressing two vulnerabilities - one in Windows and one in Office. Windows 7 and Windows Server 2008 R2 customers...
  • Blog Post: Microsoft Security Advisory 973472 Released

    Hi Everyone, This is Dave Forstrom, group manager for our security response communications team. We have just posted Microsoft Security Advisory 973472, which highlights a vulnerability in Microsoft Office Web Components. Specifically, the vulnerability exists in the Spreadsheet ActiveX control...
  • Blog Post: MBSA 2.3 and the November 2013 Security Bulletin Webcast, Q&A, and Slide Deck

    Today we’re publishing the November 2013 Security Bulletin Webcast Questions & Answers page . The majority of questions focused on the ActiveX Kill Bits bulletin ( MS13-090 ) and the advisories. We also answered a few general questions that were not specific to any of this month’s updates...