Welcome to TechNet Blogs Sign in | Join | Help

Browse by Tags

Tuesday, September 27, 2005 4:18 PM

Credit Bureaus adopt data protection standard... so what?

So the three big credit bureaus are adopting a single data encryption standard to "further assure the protection of sensitive consumer data when transmitted between data furnishers and credit reporting companies" ( link ). Great. Except that data encryption
Posted by jeffnew | 24 Comments
Wednesday, September 14, 2005 10:30 AM

British Gov't validating security tools - "CSIA CT Mark"

The CSIA is sort of the British version of NIST, with respect to IT. They've invented their own accreditation for security tools ( link ), basically looking to validate the vendor's claims (thus the name, "Claim Tested Mark"). This is a very different
Posted by jeffnew | 0 Comments
Wednesday, September 14, 2005 10:19 AM

Cool stuff - Microsoft MAX

If you have a high-performance machine with a good video card, check out http://www.microsoft.com/max/ . It's the Codename Avalon user interface used for photo browsing. Not only is it really pretty, but it also shows some great ideas around how a UI
Posted by jeffnew | 0 Comments
Tuesday, September 13, 2005 6:28 PM

Trapping passwords by listening to typing

An interesting paper to be published shortly by three clever people at UC Berkeley reports that without training (other than a 10-minute recording of someone typing) a recognition algortithm can be built to derive what is being typed, including passwords.
Posted by jeffnew | 1 Comments
Tuesday, August 16, 2005 3:36 PM

Here's a list of Security Solutions

Tony Bailey, the Senior Product Manager on the Microsoft Solutions for Secrity & Compliance team, has put together a list of all of our security solutions. You can find it here: http://www.microsoft.com/technet/community/columns/sectip/default.msp
Posted by jeffnew | 2 Comments
Tuesday, August 16, 2005 9:21 AM

A National Database of Vulnerabilities

NIST has opened up a National Vulnerabillity Database, also available as an XML feed. I love the fact that all of the available info will be in one place, although I do fear that it will re-open the "what's more secure" arguments that have been running
Posted by jeffnew | 0 Comments
Wednesday, July 27, 2005 1:15 PM

First go for people with no armor; then look for chinks in the armor

If researchers are pointing out the issues, the bad guys will not be far behind. Start checking to make sure that your AV software is up to date! Link.
Posted by jeffnew | 0 Comments
Thursday, July 21, 2005 1:38 PM

Microsoft buys email managed-services company

Link . Microsoft Q&A . They provide email customers with security and compliance services (retention, etc.). As IT environments get more complex there are more opportunities for providing this type of service for part of the infrastructure. THis is
Posted by jeffnew | 35 Comments
Thursday, July 21, 2005 11:03 AM

Patch Tuesday becomes popular

Despite the slings and arrows that we endured originally when we came up with Patch Tuesday, it looks like this is gaining momentum. This article from eWeek talks about other companies starting to release patches on Tuesday as well. Of course there is
Posted by jeffnew | 0 Comments
Wednesday, June 01, 2005 3:30 PM

Oh great -- now spyware is disguised as antispyware!

This is classic -- you get infected with spyware that masquerades as antispyware. It pops up an alert that you're infected, and directs you to a web site to buy a licensed version of a disinfection program. InformationWeek called it "ransom-ware" and
Posted by jeffnew | 0 Comments
Wednesday, May 25, 2005 9:13 AM

Microsoft Solutions for Security team at TechEd

I was going to post on this but Tony Bailey beat me to it ( link ). We have several sessions at TechEd, and 6 program managers and subject matter experts from my team will be in the Security Cabanas. I can't make it down this year but I have reviewed
Posted by jeffnew | 0 Comments
Wednesday, May 25, 2005 8:54 AM

Spyware (I mean potentially unwanted software) and the law

You know that a concept has truly entered the mainstream when it spawns politically correct euphemisms. Potentially unwanted software is the latest safe and approved term for what most people think of as spyware and adware. So the House has just approved
Posted by jeffnew | 1 Comments
Monday, May 09, 2005 10:52 AM

OK, passwords are so 20th century and have to go!

This article ( Protect passwords? Not if latte is free ) was passed on to me from a colleague who also saw the irony in this. I would say that we're 3 years too late in making 2-factor auth a base part of computing. This makes identity theft almost too
Posted by jeffnew | 494 Comments
Monday, May 09, 2005 10:19 AM

What happened to IT journalism?

Has anyone else read this article on "safecount.org" wanting to encourage people to not delete cookies? While I understand that the advertisers have a difficult task, it makes me crazy that sites such as TechWeb just take press releases and post them
Posted by jeffnew | 0 Comments
Wednesday, April 27, 2005 5:09 PM

Internet fraud -- who's fault is it?

Awareness is our biggest challenge, but we've been doing a lot to make this happen. At this point the consumers that are walking into these rediculous schemes need to accept that they are, to some extent, the authors of their own misfortune. I like this
Posted by jeffnew | 36 Comments
More Posts Next page »
 
Page view tracker