Welcome to TechNet Blogs Sign in | Join | Help

December 2005 - Posts

HAPPY NEW YEAR!!!

H A P P Y N E W Y E A R A N D A L L T H E B E S T F O R 2 0 0 6 ! Hopefully you will stay with us and perhaps we will see some more comments and feedbacks from you as well... ;-) Urs & Roger Read More...
Posted Saturday, December 31, 2005 8:36 AM by chsecblo | 1 Comments

Update on WMF 0day

Just for your information: We released an advisory regarding the WMF 0day tonight. You can find it here: http://www.microsoft.com/technet/security/advisory/912840.mspx Roger Read More...
Posted Thursday, December 29, 2005 10:23 AM by chsecblo | 190 Comments

Windows Server 2003 Security Guide 2.0 is Live

Besides the 0day there is some good news as well. Today (you see we are working during Christmas time J ) we published V2 of the Windows Server 2003 Security Guide covering SP1 If can be found here: http://www.microsoft.com/downloads/details.aspx?FamilyId=8A2643C1-0685-4D89-B655-521EA6C7B4DB&displaylang=en Read More...
Posted Wednesday, December 28, 2005 8:12 PM by chsecblo | 0 Comments

The Black Hats Don't Sleep

Well, I hope you enjoyed Christmas as much as I do and additionally I hope that you have the opportunity to have a few days off. But it seems that the bad guys have too much time as well. There are reports that there is a 0day out there attacking a vulnerability Read More...
Posted Wednesday, December 28, 2005 7:58 PM by chsecblo | 1 Comments

The Social Engineering Story of the Year

You probably know those mails that tell you that a legal investigation has been started against you because child pornography has been found on your computer. When you open the attachement, a trojan will be installed. Well, those kind of mails sometimes Read More...
Posted Saturday, December 24, 2005 12:09 PM by chsecblo | 0 Comments

MERRY CHRISTMAS!!!!

We wish you a merry christmas! Hopefully you can take a few days off! Stay secure and do not open unknown gifts without proper scanning... ;-) Urs & Roger Read More...
Posted Friday, December 23, 2005 12:32 PM by chsecblo | 0 Comments

Best Practices Analyzer Tool for Microsoft Internet Security and Acceleration (ISA) Server 2004

The Microsoft Internet Security and Acceleration (ISA) Server Best Practices Analyzer Tool is designed for administrators who want to determine the overall health of their ISA Server computers and to diagnose current problems. The tool scans the configuration Read More...
Posted Tuesday, December 20, 2005 3:19 PM by chsecblo | 0 Comments

Security/Forensic Tool: AIM Sniff

AIM Sniff is a utility for monitoring and archiving AIM and MSN messages across a network. It can be used to monitor for cases of harassment or warez trading. It has the ability to do a live dump (actively sniff the network) or read a PCAP file and parse Read More...
Posted Tuesday, December 20, 2005 9:47 AM by chsecblo | 0 Comments

Windows Platform Common Criteria Certification (EAL4)

Microsoft Windows Platform Products Awarded Common Criteria EAL 4 Certification (December 14, 2005) This is extremely good news. It gives credit to what we are doing to improve security and gives us credibility on the market. Common Criteria is one of Read More...
Posted Friday, December 16, 2005 8:52 AM by chsecblo | 0 Comments

This months Updates - some comments

I would like to make some comments regarding this month's updates: The IE Security Udpate does adress the public vulnerability that made some press recently We seem to have some issues with SUS 1.0 SP1. To get the details, please see the MSRC blog at: Read More...
Posted Wednesday, December 14, 2005 9:56 PM by chsecblo | 0 Comments

Case of Industrial Espionage

A pretty interesting case. Especially as those guys have been caught like any other normal thief - they did not behave too clever - and not by something like the IT-security: http://news.com.com/Former+software+chief+admits +stealing+trade+secrets/2100-7350_3-5989750.html Read More...
Posted Monday, December 12, 2005 11:13 PM by chsecblo | 0 Comments

Organize your Mails

Not exactly security-related but cool :-) Microsoft Research released a tool called SNARF that should help you to organize your mails according to importance. I did not yet try it but it sounds interesting. Feel free to test: http://www.research.microsoft.com/community/snarf/ Read More...
Posted Wednesday, December 07, 2005 9:30 PM by chsecblo | 0 Comments

IE 7 Blog

As probmised during today's IE-7-webcast, here is the link to the IE7-Blog: http://blogs.msdn.com/ie/ Roger Read More...
Posted Wednesday, December 07, 2005 4:00 PM by chsecblo | 70 Comments

Looking Back: The Blaster Case Study

If you intereseted in a deep analysis what happened during Blaster including some quantitative metrics, you should look into this case study, we recently published: http://www.microsoft.com/downloads/details.aspx?FamilyId=A66EA079-9180-4D4F-A8AF-269486D3217B&displaylang=en Read More...
Posted Wednesday, December 07, 2005 8:36 AM by chsecblo | 0 Comments

MELANI published Semi-Annual Report

MELANI, our Swiss CERT, just recently published its first semi-annual report. It gives a pretty interesting overview of the situation in Switzerland and internationally regarding information security. You can find the report here: German: http://www.melani.admin.ch/newsticker/00071/index.html?lang=de Read More...
Posted Wednesday, December 07, 2005 8:31 AM by chsecblo | 0 Comments

Source Code Analysis Tools (Overview)

A security analyzer is an automated tool for helping analysts find security-related problems in software. Modern security analyzers focused on building security in analyze software source code, trying to automate some of the tasks that a human analyst Read More...
Posted Monday, December 05, 2005 7:16 PM by chsecblo | 0 Comments

Microsoft launches anti-virus service: OneCare (beta)

Microsoft launches anti-virus service. Microsoft has launched Windows One Care Live Security beta, an anti-virus and anti-spyware service for consumers only. The service offers anti-virus, firewall, backup and recovery, as well as personal computer maintenance. Read More...
Posted Monday, December 05, 2005 7:12 PM by chsecblo | 0 Comments

Additional Information on the Isreali Trojan Attack

A few months ago there was news that in Israel a trageted trojan attack blew up. Today there were additional (pretty interesting) information on CNet News: http://news.com.com/Online+scammers+go+spear-phishin/2100-1029_3-5981917.html?part=rss&tag=5981917&subj=news Read More...
Posted Monday, December 05, 2005 7:31 AM by chsecblo | 0 Comments

Want to see IE7 on Vista

Some advertising: Next Wednesday we will run a webcast for IE7 and the corresponding security technology (what has changed since IE6 SP1). If you are interested, please register: http://www.microsoft.com/switzerland/technet/de/events.mspx in the middle Read More...
Posted Friday, December 02, 2005 12:40 PM by chsecblo | 0 Comments

Newest Malware Attack Vector: RSS?

There is a pretty interesting White Paper by Trendmicro describing the "Future of Bot Worms". One of the trends they see is RSS feed hijacking. Pretty interesting and scary. Read more at: http://www.trendmicro.com/NR/rdonlyres/EEE8DBC3-6948-4F0D-B5F4-0673260B88D5/17036/Future_of_Bots_FINAL.pdf Read More...
Posted Friday, December 02, 2005 12:34 PM by chsecblo | 0 Comments
 
Page view tracker