December 2007 - Posts

The PICNIC Problem

I hope you know the PICNIC problem ( P roblem i n C hair n ot i n C omputer) – it happened to me L . I get a significant amount of Spam-comments on my blog, which are filtered in the corresponding Spam-filter. From time to time I clean it up. Unfortunately Read More...

Posted 28 December 07 12:22 by rhalbh | 0 Comments   

How the security magic happens at Microsoft

This is cool: Microsoft Security Elves Roger Read More...

Posted 28 December 07 12:11 by rhalbh | 0 Comments   
Filed under Fun

Common Criteria and answering the “real” questions

It seems that I am not yet gone J . Eric Bidstrup, a colleague of mine, wrote a great blog post about Common Criteria, where it does a pretty good job and where it fails. Basically he claims – and I could not agree more – that the customer "only" wants Read More...

Posted 28 December 07 12:08 by rhalbh | 0 Comments   
Filed under Security, Trends, Processes, Industry Associations

I am gone – now :-)

Well, not really but I will now leave for the mountains and go skiing for the next week. Therefore, have a good time and "talk" to you in 2008 Roger BTW: Happy new year as soon as is it started!!! Read More...

Posted 28 December 07 10:55 by rhalbh | 0 Comments   

Insights into our Security Vulnerability Research

Secure Windows just started a blog which could be of interest for you as well. They will give some more insights into our vulnerability research and the outcome thereof. Definitely something worth keeping an eye on, especially if you have a technical Read More...

Posted 28 December 07 10:52 by rhalbh | 0 Comments   
Filed under Microsoft, Processes, Incidents

Insight into IPSec

I hope you enjoyed Christmas as much as I did (now working on losing weight again J ). Soon I will be in the mountains but before I leave, I found something pretty interesting to read: Tech Insight: Microsoft's IPSec Roger Read More...

Posted 27 December 07 11:08 by rhalbh | 1 Comments   
Filed under Microsoft Products, Microsoft, Technology

Consumer Trust in e-Business

If the light of the latest outreach we did around scam ( Lottery Scam – The voice of the victim ), Research firm Ipsos was retained to conduct research with consumers in Germany, Italy, Denmark, UK and The Netherlands. About 3'500 users were contacted Read More...

Posted 21 December 07 04:38 by rhalbh | 0 Comments   
Filed under Security, Cybercrime, Trends

Lottery Scam – The voice of the victim

We all know that there are scammers telling you that you won in the lottery. A lot of security people think that the victims are naïve and dumb. We just started to run a story on lottery scam and part of it was an interview with a victim. The victim – Read More...

Posted 20 December 07 07:47 by rhalbh | 1 Comments   
Filed under Security, Cybercrime, Trends

You are hacked – by your toaster :-)

I just read this this morning Man Uses Toaster to Hack Computer . Is this now funny or scary? Roger Read More...

Posted 15 December 07 11:19 by rhalbh | 0 Comments   
Filed under Security, Fun, Technology

HP confirms vulnerabilities on 82 Laptop models.

Remember this post OEMs: Join in to "Secure by Default" ? I wrote it in June… Now, HP just confirmed a vulnerability in their software delivered on 82 laptop models on all the different Windows versions: HP Quick Launch Buttons Critical Security Update Read More...

Posted 15 December 07 11:17 by rhalbh | 0 Comments   
Filed under Security, Trends, Incidents

“Keep Everything Clear of the Doors”

Ed Gibson, the Chief Security Advisor in the UK just wrote an interesting article, I would like to share with you: You've seen it, read it, heard it so many times you've blocked it out … routine, mundane. . . but instinctively you take the necessary precautions. Read More...

Posted 14 December 07 08:29 by rhalbh | 0 Comments   
Filed under Security, Cybercrime

Have a look at Server and Domain Isolation

I am often talking about different zones in the network and how you can create them. There is no a demo kit available for you to download and "play" with it: Server and Domain Isolation Demo Roger Read More...

Posted 13 December 07 09:25 by rhalbh | 0 Comments   
Filed under Security, Microsoft Products, Microsoft, Technology

Nigeria: I told you they are serious

Remember my blog post where I told you not to forget countries like Nigeria ( I was visiting Nigeria – watch out! )? They really seem to be serious. In the last few weeks we had some troubles getting hold of the head of EFCC (I will tell you more in a Read More...

Posted 13 December 07 11:52 by rhalbh | 0 Comments   
Filed under Security, Law Enforcement, Trends

How to Build a Bomb

Well, only partly. I commented several times already about WabiSabiLabi. I especially like their statement "closer to zero risk". At the moment there is an SAP vulnerability at stake. It is initially priced on €4'000. If you read their blog, Focus on: Read More...

Posted 12 December 07 10:05 by rhalbh | 1 Comments   
Filed under Security, Cybercrime

Once More: Only the Easiest Way is the Secure Way

Well, my credo is well known in the meantime: We have to make it easy for users to work in a secure way. Otherwise the business (say: the users) will find ways around all our security solutions. I customer of us recently said: "I rather accept a little Read More...

Posted 12 December 07 09:01 by rhalbh | 0 Comments   
Filed under Security, Policy

A Retrospect on my Trip to Kenya

I asked for feedback from you and got quite some. Some privately and some publically – thank you all who took the time to answer. One of the feedbacks I heard more than once was, that you are interested in my view on the region and the security there. Read More...

Posted 08 December 07 12:41 by rhalbh | 0 Comments   
Filed under Security, Policy

Update on our Piracy Strategy - Important Changes to WGA

From time to time people ask me about piracy and security. Let's start with piracy first. If you look at the 2007 Global Piracy Study by BSA , the numbers are frightening. Looking at EMEA, it starts with Moldova on 94% pirated software to Denmark with Read More...

Posted 04 December 07 05:00 by rhalbh | 3 Comments   
Filed under Cybercrime, Microsoft Products, Microsoft

Windows Vista is protecting the environment

When we launched Windows Vista, one of the features which was pointed out to me was power management and how it will lower the costs in the enterprise environment. Well, I put my focus on the security technologies (obviously) and ignored the power management Read More...

Posted 01 December 07 10:24 by rhalbh | 0 Comments   
Filed under Microsoft Products, Technology

Search

This Blog

• Home
• About
• Email

Tags

• Behaviour
• Cloud Computing
• Competition
• Consumer
• Critical Infrastructure Protection
• Cybercrime
• Events/Training
• Fun
• Incidents
• Industry Associations
• Interoperability
• Law Enforcement
• Microsoft
• Microsoft Products
• OpenSource
• Patch Management
• Piracy
• Policy
• Politics
• Privacy
• Processes
• Securing My Infrastructure
• Security
• TechEd EMEA
• TechEd-ITForum
• Technology
• Terrorism
• Trends
• Trustworthy Computing

Archives

• November 2009 (2)
• October 2009 (11)
• September 2009 (17)
• August 2009 (12)
• July 2009 (12)
• June 2009 (13)
• May 2009 (14)
• April 2009 (16)
• March 2009 (11)
• February 2009 (12)
• January 2009 (14)
• December 2008 (22)
• November 2008 (13)
• October 2008 (22)
• September 2008 (8)
• August 2008 (14)
• July 2008 (4)
• June 2008 (16)
• May 2008 (30)
• April 2008 (29)
• March 2008 (19)
• February 2008 (16)
• January 2008 (26)
• December 2007 (18)
• November 2007 (23)
• October 2007 (11)
• September 2007 (10)
• August 2007 (7)
• July 2007 (11)
• June 2007 (11)
• May 2007 (4)
• April 2007 (9)
• March 2007 (8)
• February 2007 (8)
• January 2007 (6)

Links to other blogs

• Roger's Blog on Security
• CSA Switzerland
• CSA Russia
• CSA Finland
• CSA Italy
• MS Security Response Center
• Microsoft Malware Portal
• Jeff Jone's Securiy Blog
• Security by Numbers
• Shoaib Yousuf
• ts/sci security
• Gerhard's Marktbeobachtungen

Syndication

• RSS 2.0
• Atom 1.0