Welcome to TechNet Blogs Sign in | Join | Help

June 2006 - Posts

Last IE7 Beta released

The final/last IE7 Beta is on the Web: http://www.microsoft.com/windows/ie/default.mspx As we said several timeas already: Get ready for it an check your websites. The easiest way to do this is to download the IE7-Readiness kit, which you get here Roge Read More...
Posted Friday, June 30, 2006 7:57 AM by chsecblo | 0 Comments

Q. What could a boarding pass tell an identity fraudster about you? A. Way too much...

A simple airline stub, picked out of a bin near Heathrow, led Steve Boggan to investigate a shocking breach of security... http://www.guardian.co.uk/idcards/story/0,,1766266,00.html I will carefully destroy those papers from now on! ;-) -Urs Read More...
Posted Monday, June 26, 2006 11:24 AM by chsecblo | 137 Comments

Local Attacks

Remote code execution is a statement that always gets a lot of press and attention from computer security professionals. Remotely compromising a computer is not the only threat posed to a network. What about a local attack carried out by a trusted, or Read More...
Posted Monday, June 26, 2006 11:17 AM by chsecblo | 0 Comments

The Layman's Unconventional Guide to the Advanced Encryption Standard (AES)

"An unconventional, elaborate glance at the mathematics behind the Advanced Encryption Standard, geared towards the non-mathematician." http://www.windowsecurity.com/articles/Laymans-Unconventional-Guide-Advanced-Encryption-Standard.html -Urs Read More...
Posted Monday, June 26, 2006 11:13 AM by chsecblo | 2 Comments

PoC for MS06-025

I assume that you are aware of this but just to make sure: We found Proof of Concept code for MS06-025 and published a corresponding Security Advisory Roger Read More...
Posted Saturday, June 24, 2006 10:12 AM by chsecblo | 0 Comments

Most Dangerous Applications

Not that I am proud to be on position 9 of the "most dangerous applications" but there have been times where we have been much higher: http://www.techweb.com/wire/security/189600176;jsessionid=WO2SOWHPZPGA4QSNDLRCKHSCJUNN2JVN Roger Read More...
Posted Thursday, June 22, 2006 9:44 PM by chsecblo | 1 Comments

0days Growing?

It seems a new trend not to report vulnerabilities in a responsible manner but using the irresponsible way of publishing vulnerabilities on the Internet. There is a new one: SANS was claiming that it is a second Excel vulnerability, which is not the case: Read More...
Posted Thursday, June 22, 2006 9:08 AM by chsecblo | 2 Comments

Malware's commercialization drives security

As long as there's money to be made, computer security will be an issue, panelists at the Microsoft TechEd 2006 conference said Tuesday... http://www.computerworld.com/action/article.do? command=viewArticleBasic&taxonomyName=security &articleId=9001178&taxonomyId=17 Read More...
Posted Sunday, June 18, 2006 9:06 AM by chsecblo | 0 Comments

Windows Malicious Software Removal Tool: Progress Made, Trends Observed

Whitepaper avaiable to show trends, progress and statistics of the Windows Malicious Software Removal Tool: http://www.microsoft.com/downloads/details.aspx?FamilyId=47DDCFA9-645D-4495-9EDA-92CDE33E99A9&displaylang=en Background: Security tools have Read More...
Posted Sunday, June 18, 2006 9:01 AM by chsecblo | 1 Comments

New Excel Vulnerability

MSRC (the Microsoft Securtiy Response Center) just posted a warning of a new Excel vulnerability. So far we got only one case from a single customer but we are actively looking into it. If you want more information read the MSRC Blog: http://blogs.technet.com/msrc/archive/2006/06/16/436174.aspx Read More...
Posted Friday, June 16, 2006 2:05 AM by chsecblo | 1 Comments

Regulatory Compliance Guide - Life!

Well, there are themes that are more sexy than this one but nevertheless. A lot of customers asked us for guidance how our products can support them with regardgs to regulatory compliance. Therefore we tried to pull the frameworks as well as the technologies Read More...
Posted Thursday, June 15, 2006 2:09 AM by chsecblo | 3 Comments

Windows Support Lifecycle

I just would like to stress it once again: There are different products going out of support soon: On July 11, 2006 we will stop providing Critical Security Updates for Windows 98 SE and Windows ME. For Windows XP SP1 we will provide Security Updates Read More...
Posted Thursday, June 15, 2006 1:48 AM by chsecblo | 0 Comments

Microsoft Standard User Analyzer (SUA) tool

The Windows Vista UAC team has just released the first beta version of the Microsoft Standard User Analyzer (SUA) tool. SUA is a tool that independent software vendors (ISVs) and IT developers can use to diagnose and identify possible application compatibility Read More...
Posted Wednesday, June 07, 2006 3:52 PM by chsecblo | 1 Comments

Steve Ballmer fighting viruses and worms... (nss)

"Microsoft's vice-president Jim Allchin told at a recent Windows Vista reviewers conference a story about chief executive Steve Ballmer: It seems Steve was at a friend's wedding reception when the bride's father complained that his PC had slowed to a Read More...
Posted Wednesday, June 07, 2006 9:45 AM by chsecblo | 0 Comments

Exchange 2007 built-in protection features

Microsoft will add new built-in protection features to the next version of its Exchange messaging server in an effort to provide a more secure user environment for business customers. Exchange Server 2007 will be in final beta release before September Read More...
Posted Wednesday, June 07, 2006 9:37 AM by chsecblo | 0 Comments

Will There be Attacks on 6/6/6?

It is pretty interesting to follow the discussion around "big days" and possible attacks following those days. There was significant chatter before the Y2k change but no major attacks happened. SANS started to discuss those big days ( http://isc.sans.org/diary.php?storyid=1379 Read More...
Posted Tuesday, June 06, 2006 1:58 AM by chsecblo | 1 Comments

Swiss Security Day at SANS

Unbelieveable: The Swiss Security Day was even internationnaly in the "news". SANS reported about it :-) http://isc.sans.org/diary.php?storyid=1343 Roger Read More...
Posted Friday, June 02, 2006 9:55 PM by chsecblo | 0 Comments
 
Page view tracker