Browse by Tags

Related Posts
  • Blog Post: The September 2014 Security Updates

    Today, as a part of our regular Update Tuesday process, we released four security bulletins – one rated Critical and three rated Important in severity – to address 42 Common Vulnerabilities & Exposures (CVEs) in Microsoft Windows, Internet Explorer, .NET Framework, and Lync Server. We...
  • Blog Post: Advance Notification Service for the September 2014 Security Bulletin Release

    Today, we provide advance notification for the release of four Security Bulletins. One of these updates is rated Critical and three are rated as Important in severity. These updates are for Microsoft Windows, Internet Explorer, .NET Framework and Lync. As a reminder, we are now using a new format...
  • Blog Post: July 2014 Security Bulletin Webcast and Q&A

    Today we published the July 2014 Security Bulletin webcast questions and answers page along with the webcast replay. We answered eight questions on air, with the majority focusing on the update for Internet Explorer . The transcript also includes a question we did not have time to answer on the air....
  • Blog Post: July 2014 Security Bulletin Release

    Many around the globe have been following the 2014 FIFA World Cup Brazil™ closely. Regardless of which country you are supporting, many folks have been impressed by the defensive display put on by keeper Tim Howard in a loss against Belgium. It was a great performance highlighting a strong defense...
  • Blog Post: Advance Notification Service for the July 2014 Security Bulletin Release

    Today, we provide advance notification for the release of six Security Bulletins. Two of these are rated Critical, three are rated as Important, and one is rated Moderate in severity. These Updates are for Microsoft Windows and Internet Explorer. This month we will also premier the new format for...
  • Blog Post: June 2014 Security Bulletin Webcast and Q&A

    Today we published the June 2014 Security Bulletin webcast questions and answers page along with the webcast replay. We answered six questions on air, with the majority focusing on the updates for TCP and Internet Explorer . The transcript also includes a question we did not have time to answer on the...
  • Blog Post: Theoretical Thinking and the June 2014 Bulletin Release

    As security professionals, we are trained to think in worst-case scenarios. We run through the land of the theoretical, chasing “what if” scenarios as though they are lightning bugs to be gathered and stashed in a glass jar. Most of time, this type of thinking is absolutely the correct thing...
  • Blog Post: Advance Notification Service for the June 2014 Security Bulletin Release

    Today we provide advance notification for the release of seven Bulletins, two rated Critical and five rated Important in severity. These Updates are for Microsoft Windows, Microsoft Office and Internet Explorer. The Update for Internet Explorer addresses CVE-2014-1770 , which we have not seen used in...
  • Blog Post: May 2014 Security Bulletin Webcast and Q&A

    Today we published the May 2014 Security Bulletin Webcast Questions & Answers page . We answered 17 questions in total, with the majority focusing on the update for SharePoint ( MS14-022 ), Group Policy ( MS14-025 ) and Internet Explorer ( MS14-029 ). Here is the video replay: We invite...
  • Blog Post: The May 2014 Security Updates

    Today, we released eight security bulletins – two rated Critical and six rated Important – to address 13 Common Vulnerability & Exposures (CVEs) in .NET Framework, Office, SharePoint, Internet Explorer, and Windows. We encourage you to apply all of these updates, but for those who need...
  • Blog Post: Advance Notification Service for the May 2014 Security Bulletin Release

    Today we provide Advance Notification Service (ANS) for the release of eight bulletins, two rated Critical and six rated Important in severity. These updates will address vulnerabilities for .NET Framework, Office, Internet Explorer, and Windows. As we do every month, we’ve scheduled the security...
  • Blog Post: April 2014 Security Bulletin Webcast and Q&A

    Today we published the April 2013 Security Bulletin Webcast Questions & Answers page . We answered 13 questions in total, with the majority focusing on the update for Internet Explorer ( MS14-018 ) and the Windows 8.1 Update ( KB2919355 ). Two questions that were not answered on air have been included...
  • Blog Post: The April 2014 Security Updates

    T. S. Elliot once said, “What we call the beginning is often the end. And to make an end is to make a beginning. The end is where we start from.” So as we put one season to bed, let’s start another by looking at the April security updates . Today, we release four bulletins to address...
  • Blog Post: Advance Notification Service for the April 2014 Security Bulletin Release

    Today we provide advance notification for the release of four bulletins, two rated Critical and two rated Important in severity. These updates address issues in Microsoft Windows, Office and Internet Explorer. The update provided through MS14-017 fully addresses the Microsoft Word issue first described...
  • Blog Post: March 2014 Security Bulletin Webcast and Q&A

    Today we published the March 2014 Security Bulletin Webcast Questions & Answers page . We answered eight questions in total, with the majority focusing on the updates for Windows ( MS14-016 ) and Internet Explorer ( MS14-012 ). One question that was not answered on air has been included on the Q&A...
  • Blog Post: The March 2014 Security Updates

    This month we release five bulletins to address 23 unique CVEs in Microsoft Windows, Internet Explorer and Silverlight. If you need to prioritize, the update for Internet Explorer addresses the issue first described in Security Advisory 2934088 , so it should be at the top of your list. While that update...
  • Blog Post: Advance Notification Service for the March 2014 Security Bulletin Release

    Today we provide advance notification for the release of five bulletins for March 2014, two rated Critical and thee rated Important in severity. These updates address issues in Microsoft Windows, Internet Explorer and Silverlight. The update provided in MS14-012 fully addresses the issue first described...
  • Blog Post: Safer Internet Day 2014 and Our February 2014 Security Updates

    In addition to today being the security update release , February 11 is officially Safer Internet Day for 2014. This year, we’re asking folks to Do 1 Thing to stay safer online. While you may expect my “Do 1 Thing” recommendation would be to apply security updates, I’m guessing...
  • Blog Post: Update (2/10) - Advance Notification Service for February 2014 Security Bulletin Release

    Update as of February 10, 2014 We are adding two updates to the February release. There will be Critical-rated updates for Internet Explorer and VBScript in addition to the previously announced updates scheduled for release on February 11, 2014. These updates have completed testing and will be included...
  • Blog Post: Antimalware Support for Windows XP and the January 2014 Security Bulletin Webcast and Q&A

    Today we’re publishing the January 2014 Security Bulletin Webcast Questions & Answers page . We answered 16 questions in total, with the majority of questions focusing on the Dynamics AX bulletin ( MS14-004 ), the update for Microsoft Word ( MS14-001 ) and the re-release of the Windows 7 and...
  • Blog Post: A Look Into the Future and the January 2014 Bulletin Release

    In January, there are those who like to make predictions about the upcoming year. I am not one of those people. Instead, I like to quote Niels Bohr who said, “Prediction is very difficult, especially if it’s about the future.” However, I can say without a doubt that change is afoot...
  • Blog Post: Advance Notification Service for the January 2014 Security Bulletin Release

    Today we provide advance notification for the release of four bulletins for January 2014. All bulletins this month are rated Important in severity and address vulnerabilities in Microsoft Windows, Office, and Dynamics AX. The update provided in MS14-002 fully addresses the issue first described in Security...
  • Blog Post: Windows Help Vulnerability Disclosure

    Hello, We are aware of a publicly disclosed vulnerability affecting Windows XP and Windows Server 2003. We are not aware of any current exploitation of this issue and customers running Windows Vista, Windows 7, Windows Server 2008, and Windows Server 2008 R2, are not vulnerable to this issue, or at...
  • Blog Post: July 2010 Security Bulletin Release

    Hi everyone. As part of our usual monthly update cycle, today Microsoft is releasing four security bulletins to address five vulnerabilities in Windows and Microsoft Office. MS10-042 resolves a publicly disclosed and actively exploited vulnerability discussed in Security Advisory 2219475 . The update...
  • Blog Post: Investigating a new win32hlp and Internet Explorer issue

    Hi everyone, On Friday 2/26/2010, an issue was posted publicly that could allow an attacker to host a maliciously crafted web page and run arbitrary code if they could convince a user to visit the web page and then get them to press the F1 key in response to a pop up dialog box. We are not aware of any...