Hi! I’m Richie Lai and I’m a lead on the Microsoft Secure Windows Initiative (SWI) team. One of the things our team does is work side by side with the program managers of the MSRC, so they invited us to guest blog. While MSRC may be the most visible face of security at Microsoft, the SWI team plays a complementary role in securing our products. Organizationally, SWI is under the direction of Microsoft’s Director of Security Engineering, Matt Thomlinson . This organization is responsible for...

I wanted to talk a little more about going to the Worldwide Partner Conference in Minneapolis , Minnesota , to meet partners and get feedback on how they think we’re doing around security. The feedback was very positive, particularly around the progress we’ve made on security since the same conference two years ago, when Steve Ballmer made security a top priority for Microsoft. On Sunday morning, as I blogged before, Security Business and Technology Unit Vice President Mike Nash gave a comprehensive...

Breakfast on release day is important, but no biscuits and gravy for breakfast for Craig. Last week I tried putting on my life jacket in preparation for some jet skiing and wakeboarding when I realized I looked like an elephant with a rubber band wrapped around his midsection. Needless to say I don’t think the life jacket would have been the flotation "device" saving me. So now I’m on one of these no carb diets, which means I’m stuck eating cardboard for breakfast. Then on top of it our internal...

Hi everyone, Debby Fry Wilson here. I just got back from a great trip to the Microsoft World Wide Partner Conference. Mike Nash, our Vice President of the Microsoft Security Business and Technology Unit, delivered a keynote yesterday morning detailing the progress we have made in security to date. We've come a long way, but there's still great work to be done and the MSRC is at the forefront of it. Here's the location of the feature that describes Mike's keynote: http://www.microsoft.com/presspass...

Hi everyone, Stephen Toulouse here. We have posted this morning our Advance Notification for security bulletins releasing on Tuesday, July 12th, 2005. You can check it out here: http://www.microsoft.com/technet/security/bulletin/advance.mspx S. *This posting is provided "AS IS" with no warranties, and confers no rights.*

Hi everyone, Stephen Toulouse here. The IE team and MSRC worked over the holiday weekend to put together a killbit package to protect against the recent Jview COM object issue that we provided a security advisory for on Thursday. We'll be working to put this on Windows Update soon but for now it is available on the Microsoft Download Center. You can get the link from the revised security advisory here: http://www.microsoft.com/technet/security/advisory/903144.mspx Thanks again to the Internet...

Hi everyone, Stephen Toulouse here. Just wanted to remind everyone to come join myself and MSRC Operations Manager Mike Reavey for our webcast tomorrow morning at 9:00am Pacific Time, where we'll take you inside the Microsoft Security Response Process! As a side note we'll be taking your questions live! Here's the link: http://msevents.microsoft.com/CUI/WebCastEventDetails.aspx?EventID=1032275660&EventCategory=4&culture=en-US&CountryCode=US We hope to see you there! S. *This...

Time for yet another one of the Security Program Managers here at the MSRC to introduce himself. Lennart Wistrand is my name and as you may suspect I don’t hail from the US, so we do have some European representation here in the MSRC! Having had been here in the US and in the MSRC for a while I have had the opportunity to work with many of our different products and at the moment, one of my current key responsibilities is Internet Explorer and any security updates we release for it. What does...

Hi everyone, Stephen Toulouse here. Just wanted to make a note that this morning we have published a security advisory to note the availability of the Windows 2000 Update Rollup. Please review the security advisory and the associated documentation and KB articles provided with the rollup to get more information on this release. Here's the location of the advisory: http://www.microsoft.com/technet/security/advisory/891861.mspx In another note, I know that each of the blog entries have my user...

Hey everyone, Mike Reavey here. I wanted to write a brief entry to let everyone know that we have posted a new security advisory today. The advisory describes information that was posted publicly involving Internet Explorer and can be found here: http://www.microsoft.com/technet/security/advisory/902333.mspx We're not aware of any customer impact at this time, and the issue can be avoided with safe browsing practices. We just wanted to make customers aware of the information and specific steps...