Microsoft Security Blog

The official Microsoft blog for discussing industry and Microsoft security topics.

Browse by Tags

  • Blog Post: Perception: Case in Point

    I love it when a good, real-life example falls right into your lap. As you know from my recent posts, I’ve been doing a series of articles probing Mozilla and Firefox security claims.  I think I’ve been pretty open about why, but I always seem to get pushback around the idea that there might be...
  • Blog Post: Real Life Protection! IE7 on Vista

    Happy day, if you get this dialog box: This screenshot comes from Zdnet article Vista passes one security test that points out some of the benefits of the multiple levels of security in IE7 and Windows Vista, with respect to the zero day issue warned about in and Microsoft Security Advisory and...
  • Blog Post: The Goodness of IE Enhanced Security Configuration

    Way back before IE7 with "low rights IE" and its other improvements, Microsoft shipped IE6 for Windows Server 2003 in Enhanced Security Configuration . We're now getting ready for Windows Vista and Longhorn Server is on the horizon as well and I decided to look at how much the Enhanced Security Configuration...
  • Blog Post: CIO.COM: Mozilla and “Counting Still Easy…”

    [DISCLOSURE for those who don’t read about boxes: I work for Microsoft.] I admit that I enjoy discussing issues and digging into claims to see if I can find fractures or flaws in logic. When I ran product management teams for companies in previous roles, I would always review our draft product glossies...
  • Blog Post: Cyber-Threats in the European Union

    I recently visited Brussels, where the European Union has its main base of operations. I had the opportunity to talk to numerous people there about the latest Microsoft Security Intelligence Report containing data and insights on the cyber-threats Microsoft has observed specifically in the EU. Microsoft...
  • Blog Post: Download: Internet Explorer and Firefox Vulnerability Analysis

    Summary: For most people, their web browser is central to their interaction with the Internet, connecting to global web sites and helping them consume online services providing everything from booking flights to banking services to online shopping. This reality makes browsers a key tool when evaluating...
  • Blog Post: Firefox in 2008 – No Single Version Available for The Full Year?

    I’ve been busy doing analysis for the next article in my cio.com Firefox series of articles, looking at vulnerability disclosures during 2007 and 2008 and I stumbled upon a little factoid that I had not previously noticed – no single version of Firefox was available for the full year of 2008. In retrospect...
  • Blog Post: Brian Krebs Blog on ‘at Risk’ Chart Methodology

    I am a couple of articles into my series: Can Mozilla Support Claims of Firefox Being the Most Secure Web Browser? , and Can Mozilla Support Claims of Firefox Being the Most Secure Web Browser? (Part 2) In part 2, I probed Mozilla’s usage of an ‘at risk’ chart to claim that their customers...