February 2009 - Posts

Pre-warning: Windows Server 2003 SP1 Out of Support in April
During Conficker we realized that a lot of customers are on unsupported OSs. I would like to draw your attention to a few things: There is a webpage called Microsoft Support Lifecycle where you find all the information on the lifecycle of our products. Read More...
Posted 27 February 09 03:25 by rhalbh | 1 Comments   
Two new Security Advisories
I just want to make sure you have seen it: There were some reports in the last day or two about targeted attacks on Excel. We are aware of these reports and are looking into this. In order to give you our assessment of the situation, we published Microsoft Read More...
Posted 24 February 09 08:56 by rhalbh | 1 Comments   
Filed under , ,
Security Compliance Management Toolkit
A few days ago, we released the Security Compliance Management Toolkit. I think that this toolkit might definitely help you to secure your environment and monitor it against a security baseline Security Compliance Management Toolkit Series Roger Read More...
Posted 24 February 09 03:09 by rhalbh | 1 Comments   
Filed under ,
Gazelle – the secure Web browser of the future?
This is an interesting paper from Microsoft Research. Now, before you read it: This is research and be no means a commitement to develop it for IE 9. The Multi-Principal OS Construction of the Gazelle Web Browser Roger Read More...
Posted 20 February 09 09:52 by rhalbh | 0 Comments   
Filed under ,
The Impact of the Security Development Lifecycle
Jeff Jones just started a blog series to show the impact of our Security Development Lifecycle on the updates to be deployed. It is a pretty interesting read: Here is the February version: Feb09 Security Bulletin SDL Benefit Summary Roger Read More...
Posted 18 February 09 12:24 by rhalbh | 1 Comments   
Filed under , , ,
Scam Awareness Month in the UK
I guess you know Get Safe Online in the meantime. They are publishing a lot of good and insightful information. Now, they collaborate with the Office of Fair Trading in the UK for a Scam Awareness Month. Again, there is a log of excellent information Read More...
Posted 16 February 09 11:03 by rhalbh | 0 Comments   
Filed under , , ,
News from the Interop front
Not directly security related: I am often asked about the interoperability between our products and third-party products. Additionally people claim that we do not allow others to use our technology – that we lock you in. Just now I read the following Read More...
Posted 10 February 09 05:50 by rhalbh | 1 Comments   
Filed under , ,
Additional Conficker Guidance
Yes, Conficker is far from being over. We still see a lot of infections. Therefore we decided to publish additional guidance for Conficker: Microsoft Conficker guidance page for IT Professionals and those focused on security in the enterprise: http://technet.microsoft.com/en-us/security/dd452420.aspx Read More...
Posted 07 February 09 11:42 by rhalbh | 0 Comments   
Filed under , ,
UAC in Windows 7: The “Final” Decision
Jon and Steven released another blog post on UAC and explained their decision how to change things : They start with the risk of blogging: When we started the “E7” blog we were both excited and also a bit uneasy. The excitement is obvious. The unease Read More...
Posted 06 February 09 10:45 by rhalbh | 0 Comments   
Filed under , ,
Both Sides of the Windows 7 UAC Problem
I have to come back to the UAC problem again. I just read a good article from Larry Seltzer on eWeek.com: Both Sides of the Win7 UAC Problem I think it is one of the first one I read, which takes the emotions out of the discussion and tries to understand Read More...
Posted 05 February 09 11:34 by rhalbh | 3 Comments   
Filed under , , ,
The Way to a Zero Day
No, sorry but this is not a tutorial I just read this blog post on Websense which is pretty interesting: The way to a zero-day Roger Read More...
Posted 05 February 09 09:10 by rhalbh | 0 Comments   
Filed under ,
The Windows 7 UAC “Vulnerability”
It is always interesting how some things spin off. The claimed UAC vulnerability in Windows 7 in one of those events. There are numerous blogs which claim that they found a huge vulnerability in Windows 7. The reason for that is that you can change the Read More...
Posted 03 February 09 10:03 by rhalbh | 22 Comments   
Filed under , , ,

Search

This Blog

Chat directly with me if you want. Go to my About page to find a web messenger!

Visit ourPhoto Gallery

Locations of visitors to this page

Rogers Security Blog at Blogged Add to Technorati Favorites

Syndication

Page view tracker