Microsoft Security Blog

The official Microsoft blog for discussing industry and Microsoft security topics.

Browse by Tags

  • Blog Post: Windows Vista x64 Security – Pt 2 – Patchguard

    NOTE: I know this is a long post. If you don’t want to read all the details I discuss here, I still encourage you to go read What Were They Thinking? Anti-Virus Software Gone Wrong , by Skywing, to give you a perspective on “known good” extensions to kernels. Also, as always, this blog post represents...
  • Blog Post: Huh? Is that a "Yes" or a "No", Mr. Symantec CEO?

    With such an eye-catching headline of Symantec CEO says no Vista for me , how could I not read it? My hat is off to you Joris, for having the most popular security story of the day! WARNING: This post is chock-full of exaggerated incredulity and hyperbole! (Though not necessarily as much as most recent...
  • Blog Post: Interview with Patchguard Architect Forrest Foltz (Windows Vista x64 Security - Patchguard follow up)

    Here I am doing my thing, looking at some of the security improvements in Windows Vista x64 (see pt1 and pt2 ), when all of a sudden, Patchguard seems to be hot news . [NOTE: Readers, if you need more details on Patchguard, start with my previous post Windows Vista x64 Security – Pt 2 – Patchguard...
  • Blog Post: RSA 2008 Keynote: John Thompson

    Following RSA President Art Coviello on the keynotes this morning was John Thompson, CEO of Symantec. The topic of the keynote was " Information Centric Security: The Next Wave. " On one hand, this was one of the more interesting sessions of the morning, because John brought up his Research Labs VP...
  • Blog Post: Symantec's Plea : Protect our Protection Racket

    I must emphasize that these are my thoughts as an individual and do not necessarily reflect those of Microsoft, or MSN, or any of the teams I happen to work with. While some of the notions in this article may be provocative, they are consistent with my charter of provoking thoughtful discussions and...
  • Blog Post: December 2006 Catch-up

    Well, between the Holidays and 2 weeks of being sick, I didn't stay very current during December. So, to get back on track, I thought I'd create this summary, backdate it to December 31 (today is January 2nd, 2007), just so I can share my comments on some of the interesting security happenings during...
  • Blog Post: No 64-bit Windows Vista Security from <YourVendor> ?, Give Sophos a Try

    UPDATE: It turns out that the Global Director of SophosLabs is Mark Harris , an old colleague from our days at McAfee. I've asked Mark if I could interview him on the blog here to get some details about their HIPS solution, so stay tuned! Sophos issued a press release today that I want to highlight...
  • Blog Post: Windows Vista 90 Day Vulnerability Analysis

    February 28 th marked 90 days that Windows Vista had been available to business customers. Has it been a good or a bad 90 days for security vulnerabilities? Dang, this is a sweet chart, but click here to read all the details and download the full report . Best regards ~ Jeff
  • Blog Post: Windows Vista and 3rd Party Security Protection

    Over the past month or so, I have been amazed by the amount of speculation, strong assertions and outright misinformation that has been printed with respect to Kernel Patch Protection and the offical Application Programming Interfaces (APIs) into the kernel. Thankfully, Jim Allchin respond to this directly...