Browse by Tags

All Tags » Incidents » Security   (RSS)
How much does a lost Laptop cost?
I stumbled upon this study today commissioned by Intel and executed by Ponemon. They key findings were: The average value of a lost laptop is $49,246. This value is based on seven cost components: replacement cost, detection, forensics, data breach, lost Read More...
Posted 27 April 09 02:14 by rhalbh | 1 Comments   
Filed under , ,
Finjan reports world's largest Botnet
digg_url = "http://blogs.technet.com/rhalbheer/archive/2009/04/24/finjan-reports-world-s-largest-botnet.aspx";digg_title = "Finjan reports world\'s largest Botnet";digg_bgcolor = "#555555";digg_skin = "normal"; digg_url = undefined;digg_title = undefined;digg_bgcolor Read More...
Posted 24 April 09 11:45 by rhalbh | 0 Comments   
Filed under , ,
Security Intelligence Report: “Scareware” on the Raise
You know that we release our Security Intelligence Report twice an year: Today Version 6 is due. Let me try to give you an overview of the “highlights” of the report from my point of view: As I wrote in the title and as I blogged about this summer ( „Scareware“ Read More...
Posted 08 April 09 08:50 by rhalbh | 2 Comments   
Filed under , , , , ,
You deployed MS09-008 – are you now protected?
You might have seen several reports that MS09-008 does not protect you from the vulnerabilities. We reviewed these claims and customers who have deployed MS09-008 are protected from the four vulnerabilities. If you want to have the details, you should Read More...
Posted 14 March 09 04:18 by rhalbh | 3 Comments   
Filed under , , ,
Would a properly managed IT have withstood Conficker?
Before I start here: Let’s be clear that I will not say (and will never say) that if a customer was infected with Conficker he had a poorly managed network! I had a lot of discussions over the course of time about the reasons for customers being infected. Read More...
Posted 04 March 09 03:37 by rhalbh | 1 Comments   
Filed under , , , ,
Two new Security Advisories
I just want to make sure you have seen it: There were some reports in the last day or two about targeted attacks on Excel. We are aware of these reports and are looking into this. In order to give you our assessment of the situation, we published Microsoft Read More...
Posted 24 February 09 08:56 by rhalbh | 1 Comments   
Filed under , ,
Additional Conficker Guidance
Yes, Conficker is far from being over. We still see a lot of infections. Therefore we decided to publish additional guidance for Conficker: Microsoft Conficker guidance page for IT Professionals and those focused on security in the enterprise: http://technet.microsoft.com/en-us/security/dd452420.aspx Read More...
Posted 07 February 09 11:42 by rhalbh | 0 Comments   
Filed under , ,
UAC in Windows 7: The “Final” Decision
Jon and Steven released another blog post on UAC and explained their decision how to change things : They start with the risk of blogging: When we started the “E7” blog we were both excited and also a bit uneasy. The excitement is obvious. The unease Read More...
Posted 06 February 09 10:45 by rhalbh | 0 Comments   
Filed under , ,
Both Sides of the Windows 7 UAC Problem
I have to come back to the UAC problem again. I just read a good article from Larry Seltzer on eWeek.com: Both Sides of the Win7 UAC Problem I think it is one of the first one I read, which takes the emotions out of the discussion and tries to understand Read More...
Posted 05 February 09 11:34 by rhalbh | 3 Comments   
Filed under , , ,
The Windows 7 UAC “Vulnerability”
It is always interesting how some things spin off. The claimed UAC vulnerability in Windows 7 in one of those events. There are numerous blogs which claim that they found a huge vulnerability in Windows 7. The reason for that is that you can change the Read More...
Posted 03 February 09 10:03 by rhalbh | 22 Comments   
Filed under , , ,
Conficker and Microsoft Anti-Malware Software
I want to add a few things as it is still not over: More and more enterprises are still hit. My last blog post showed you what you can do but I wanted to add two resources and a comment. The comment first: There were some discussions about our Anti-Malware Read More...
Posted 14 January 09 07:46 by rhalbh | 2 Comments   
Filed under , ,
Additional Information on Conficker – MSRT removing Conficker
Over the last few days I blogged several times about Conficker and some of the posts caught quite some press attention. Especially when I talked about the Russian Roulette. Today I have very, very good news: The Malicious Software Removal Tool (MSRT) Read More...
Posted 13 January 09 07:11 by rhalbh | 11 Comments   
Filed under , , ,
Russian Roulette with your Network
First of all, before I really start, I hope that you all had a great start in 2009. Mine was actually pretty mixed. The good side was, how my year really started and what I saw when I looked out the window at January 1st (yes, I was on vacation skiing Read More...
Posted 04 January 09 01:17 by rhalbh | 17 Comments   
Filed under , , , ,
SQL Injection – again?
This week I had – again – a longer mail thread on SQL Injection attacks. Probably it caught me at the wrong moment, as it was a very long week preparing for the IE Out of Band making sure everybody knows what they have to do. And then… I was actually Read More...
Posted 22 December 08 01:04 by rhalbh | 1 Comments   
Filed under , ,
Is there a Botnet building on MS08-067 exploits?
There are a lot of reports on a Botnet building on the back of exploits targeting MS08-067: New Windows worm builds massive botnet MS08-067 Vulnerability: Botnets Reloaded Bots exploiting Microsoft's latest RPC flaw Exploit-MS08-067 Bundled in Commercial Read More...
Posted 07 December 08 10:49 by rhalbh | 0 Comments   
Filed under , , ,
More Posts Next page »

Search

This Blog

Chat directly with me if you want. Go to my About page to find a web messenger!

Visit ourPhoto Gallery

Locations of visitors to this page

Rogers Security Blog at Blogged Add to Technorati Favorites

Syndication

Page view tracker