Month: May 2018

Analysis and mitigation of speculative store bypass (CVE-2018-3639)

In January, 2018, Microsoft published an advisory and security updates for a new class of hardware vulnerabilities involving speculative execution side channels (known as Spectre and Meltdown). In this blog post, we will provide a technical analysis of an additional subclass of speculative execution side channel vulnerability known as Speculative Store Bypass (SSB) which has …

Analysis and mitigation of speculative store bypass (CVE-2018-3639) Read More »

May 2018 security update release

Today, we released security updates to provide additional protections against malicious attackers. As a best practice, we encourage customers to turn on automatic updates.  More information about this month’s security updates can be found on the Security Update Guide.   MSRC team 

BlueHat v18 Announced & Call for Papers Opens

We are back!  Microsoft is excited to announce the next installment of the BlueHat Security Conference – BlueHat v18.  We will be holding the event at Microsoft’s headquarter campus September 25-27, 2018.  This year we are adding the option for workshops and networking on the first day prior to the content beginning.  More information on …

BlueHat v18 Announced & Call for Papers Opens Read More »

Hyper-V Debugging Symbols Are Publicly Available

The security of Microsoft’s cloud services is a top priority for us. One of the technologies that is central to cloud security is Microsoft Hyper-V which we use to isolate tenants from one another in the cloud. Given the importance of this technology, Microsoft has made and continues to make significant investment in the security of …

Hyper-V Debugging Symbols Are Publicly Available Read More »