Microsoft Security Blog

The official Microsoft blog for discussing industry and Microsoft security topics.

Browse by Tags

  • Blog Post: Project Quant : Patch Management Cycle

    Although we posted some of our initial thoughts, and have been getting some great feedback from everyone, Rich and I realized that we need a standard patch management cycle so that we can break apart the different parts of the project, so that they can be considered separately and in detail. Rich has...
  • Blog Post: Open Patch Management Survey

    If you are involved in Patch Management, I’d like to ask for your help and participating in Project Quant.  Since launching in April, we’ve made some good progress in developing a high level patch cycle and have had some great participation on the forums in exploring the details of the functional...
  • Blog Post: Weekly Roundup : Sep 2, 2011 : DigiNotar and Fraudulent Google Cert

    Trending Security News The big security news this week focused on the security breach of Dutch certificate authority DigiNotar, a subsidiary of Chicago-based Vasco Data Security. This significance of the event was underscored when it was announced that one of the certificates affected by the breach was...
  • Blog Post: Weekly Roundup : Aug 19, 2011

    Trending Security News This week security news stories focused on the rise of rapidly changing social engineered malware spread through mail attachments designed to infect your computer. You may have received these suspicious often poorly written emails before, asking you to open an attached form that...
  • Blog Post: Weekly Roundup : Sep 9, 2011 : DigiNotar Reverberations Continue

    Trending Security News DigiNotar continued to reverberate through the industry this week. Companies scrambled to block and eliminate potentially compromised certificates. Meanwhile security experts took time to ponder what the event meant for security going forward. This led to headlines that included...
  • Blog Post: Nobody Attacks <Macs/Linux/APache>! – Thinking About The Apache.org Attacks

    Hackers successfully compromised the Apache.org servers this month and it has given me food for thought. If you are working to improve software security, then you have to take the (risk) viewpoint that at some point, attackers will target one of your users and attack the software as an avenue of access...