Browse by Tags

All Tags » Microsoft » Incidents   (RSS)
Security Intelligence Report: “Scareware” on the Raise
You know that we release our Security Intelligence Report twice an year: Today Version 6 is due. Let me try to give you an overview of the “highlights” of the report from my point of view: As I wrote in the title and as I blogged about this summer ( „Scareware“ Read More...
Posted 08 April 09 08:50 by rhalbh | 2 Comments   
Filed under , , , , ,
Would a properly managed IT have withstood Conficker?
Before I start here: Let’s be clear that I will not say (and will never say) that if a customer was infected with Conficker he had a poorly managed network! I had a lot of discussions over the course of time about the reasons for customers being infected. Read More...
Posted 04 March 09 03:37 by rhalbh | 1 Comments   
Filed under , , , ,
Both Sides of the Windows 7 UAC Problem
I have to come back to the UAC problem again. I just read a good article from Larry Seltzer on eWeek.com: Both Sides of the Win7 UAC Problem I think it is one of the first one I read, which takes the emotions out of the discussion and tries to understand Read More...
Posted 05 February 09 11:34 by rhalbh | 3 Comments   
Filed under , , ,
Additional Information on Conficker – MSRT removing Conficker
Over the last few days I blogged several times about Conficker and some of the posts caught quite some press attention. Especially when I talked about the Russian Roulette. Today I have very, very good news: The Malicious Software Removal Tool (MSRT) Read More...
Posted 13 January 09 07:11 by rhalbh | 11 Comments   
Filed under , , ,
Is there a Botnet building on MS08-067 exploits?
There are a lot of reports on a Botnet building on the back of exploits targeting MS08-067: New Windows worm builds massive botnet MS08-067 Vulnerability: Botnets Reloaded Bots exploiting Microsoft's latest RPC flaw Exploit-MS08-067 Bundled in Commercial Read More...
Posted 07 December 08 10:49 by rhalbh | 0 Comments   
Filed under , , ,
MS08-067 – ACT NOW!
I blogged today about the work outbreak. We are seeing an increasing number of critical support calls because of customers being infected by the worm attacking the vulnerability fixed in MS08-067. Let me be even clearer than before: The update is out Read More...
Posted 26 November 08 09:49 by rhalbh | 0 Comments   
Filed under , ,
Attacks on MS08-067
As we were pushing on our Out-of-Band release earlier this month we tried to make you understand that immediate deployment is needed as the vulnerability is high risk. Otherwise we would not have gone out of band… Interestingly enough, we have not seen Read More...
Posted 26 November 08 02:09 by rhalbh | 0 Comments   
Filed under , , , , ,
Security Intelligence Report v5 Live!
As you are probably used from us, we are issuing our Security Intelligence Report twice an year. It is by far the most comprehensive report across the industry. This report helps us to understand the threat landscape and will help you to do the same as Read More...
Posted 03 November 08 03:54 by rhalbh | 3 Comments   
Filed under , ,
H1 OS Desktop Vulnerability Report – Get It Now
You might know Jeff Jones' work on the different vulnerability reports comparing different products and vendors. Our goal is to understand and measure our progress and see where we stand with regards to the industry. Today, Jeff release his OS Desktop Read More...
Posted 27 October 08 03:05 by rhalbh | 3 Comments   
Filed under , , ,
Out of Band Security Update to be Released
I guess you have seen this already but wanted to make sure that we are reaching you: We are planning to release an Out of Band Security Update today 10am Pacific Time (which is 18pm GMT). This update will affect all currently supported versions of Windows. Read More...
Posted 23 October 08 10:18 by rhalbh | 0 Comments   
Filed under , ,
Once Again: A Scam using Microsoft’s Name to Install Malware
It happens pretty often but this time it seems to be wider spread then normal as our traffic with regards to this issue is higher than usual: There is a mail circulating pretending that it is coming from Steve Lipner here at Microsoft telling you to install Read More...
Posted 10 October 08 07:01 by rhalbh | 0 Comments   
Filed under , ,
Announcing the Exploitability Index
At Blackhat we announced an important change to our Security Bulletins becoming effective during the October release. One of the requests we often heard talking to our customers is, that they would like to get better information on how hard it is to exploit Read More...
Posted 06 August 08 06:23 by rhalbh | 1 Comments   
Filed under , , ,
Security through Collaboration
If you ever heard me keynote an event you know that one of the key messages I have is, that partnerships are necessary in order to be able to protect against today's threats. At Black Hat USA we just announced a new program called Microsoft Active Protections Read More...
Posted 06 August 08 04:35 by rhalbh | 0 Comments   
Filed under , , , ,
Issue deploying updates with SCCM 2007
There seems to be some problems deploying the latest security updates with System Center Configuration Manager 2007 to SMS 2003 Agents. If you have any challenges with that or need more information, please see the just published advisory System Center Read More...
Posted 16 June 08 07:25 by rhalbh | 0 Comments   
Filed under , ,
0-Day-Patch – An new Metric for Security?
The Federal Institute of Technology in Zurich released a study at Blackhat, which is definitely worth looking into. Now, let's be serious: They looked at a metric they call 0-Day-Patch being the number of patches a vendor is able to release at the day Read More...
Posted 18 April 08 09:51 by rhalbh | 2 Comments   
Filed under , , ,
More Posts Next page »

Search

This Blog

Chat directly with me if you want. Go to my About page to find a web messenger!

Visit ourPhoto Gallery

Locations of visitors to this page

Rogers Security Blog at Blogged Add to Technorati Favorites

Syndication

Page view tracker