Get on-the-go access to the latest insights featured on our Trustworthy Computing blogs.
We recently published volume 15 of the Microsoft Security Intelligence Report. This volume of the report contains detailed data on the types of phishing attacks Microsoft products helped to block during the first half of 2013. For the first time ever, the report also contains data on phishing attacks that targeted mobile device users; data on the phishing sites that Windows Phone 8 devices encountered provides valuable insights into one of the ways attackers are trying to take advantage of the rapidly growing number of mobile devices coming online. Read more
On Saturday July 13, 2001, Microsoft was alerted of a nasty piece of malware called “Code Red.” In just two weeks, ABC News reported that the Code Red worm had infected more than 300,000 Windows computers around the world. When the news broke, it was like something straight out of a Tom Clancy novel. Microsoft learned early on that if it was going to succeed at building trust with its customers, it could not make security an afterthought when developing its products and services.
So how do you get a large organization like Microsoft to prioritize security with thousands of developers, writing millions of lines of code? How do you get everyone marching toward the same goal?
We spent time with some of the people behind the scenes in security at Microsoft to discuss their journey and how they helped to fundamentally shift the culture within Microsoft.
Now you can get the never-before told inside story on Microsoft Security: www.sdlstory.com
Today at RSA Conference 2014, Microsoft released a new version of its Enhanced Mitigation Experience Toolkit (EMET), “EMET 5.0 Technical Preview.” EMET is one of our most popular free security tools that helps IT Professionals and Developers manage risk for their organizations. Typically it is used by IT Professionals and Developers to help protect systems from exploitation via software vulnerabilities. Read more
The closing ceremonies are quickly approaching in Sochi, Russia, with ice skaters, skiers, curlers and other world-renowned athletes racing to stand atop the podium. But one nation is already seeing gold: Finland has once again prevailed as the country with the lowest malware infection rates.
We’re thrilled to honor Finland’s computer security efforts with the gold medal in the closing ceremonies of our blog series. Microsoft measures quarterly malware infection rates in 106 countries/regions worldwide in its Security Intelligence Report (SIR). The latest report indicates that Finland has demonstrated its prowess with the least amount of malware infections in the second quarter of 2013. Read more
Skaters are speeding around Sochi ice rinks this week at the 2014 Winter Games, capturing the world’s attention with their grace and athletic prowess. Our blog series also skates along to another medal round, as we honor Japan with our second-place silver medal for its exemplary approach to managing malware threats. Read more
Posted by Matt Thomlinson, Vice President, Microsoft Security
Yesterday, the Administration released the much anticipated Cybersecurity Framework. What does the Framework mean for the critical infrastructures, both in the United States and beyond? The Framework, developed over the past year by the National Institute of Standards and Technology (NIST), is a significant milestone in an ongoing and successful collaboration among a broad range of industry and government organizations concerned with improving the cybersecurity of critical infrastructure. Microsoft appreciates the opportunity to contribute to the development of the Cybersecurity Framework, and we were honored to participate in Wednesday’s launch event. Read more
It’s hard to believe RSA Conference USA 2014 is just a few weeks away. Microsoft has been an active participant at RSA Conference for over a decade now and it’s great to see how far the awareness and importance of IT security has come. Over the past decade, attendance has grown dramatically, and this year’s conference is expected to be attended by more than 24,000 people. Read more
One of the most important things an IT Professional can do in any organization is help protect its employees from cybercriminal activity by raising the level of education and awareness for IT Security. Doing so helps to reduce risks to both employees and the company. While ongoing education is important, it can sometimes be challenging to get the attention of employees. Many of the IT Professionals that I talk with are interested in finding new ways to stimulate these conversations within their organization. One great way to do so is on Safer Internet Day (SID). Read more
Norway could dominate cross-country skiing events this week, thanks to several renowned athletes already making headlines. Whether its skiers racing past their competition or not, Norway’s cross-country efforts in computer security are already victorious, scooping up Microsoft’s bronze medal as one of the world’s best at keeping their environment free of malware. Read more
As world-class winter athletes compete on the slopes of Russia today, we decided to celebrate our own global medalists — the countries/regions which had the least amount of malware infections in the first half of 2013. Read more