Customers Help Us Improve Security Communications

Debby Fry Wilson here!  I had the opportunity to attend the CanSecWest security research conference in Vancouver, Canada last week. It was a tremendously valuable and eye-opening experience to see and hear the passion, dedication and commitment that segments of security researchers put into their craft of finding and exposing security vulnerabilities in software products. …

Customers Help Us Improve Security Communications Read More »

One security bulletin for May and a few more things…

Hi everyone, Mike Reavey here to tell you about today’s security bulletin and some other offerings to help protect and provide guidance for customers.   Today’s release includes one bulletin affecting Windows 2000.  It’s rated as “Important”.  (This update addresses the recently disclosed “greymagic” vulnerability that Stephen blogged about a few weeks back.)   You …

One security bulletin for May and a few more things… Read More »

Information on Publicly Disclosed Windows Vulnerability

Stephen Toulouse here with the MSRC, just wanted to provide everyone with some information related to public reports of a possible vulnerability in Microsoft Windows that was publicly disclosed.  The issue involves the Windows Shell, and our initial investigation has found that significant user interaction would be required for an attacker to exploit this vulnerability.  …

Information on Publicly Disclosed Windows Vulnerability Read More »

Welcome to our new home…. and April Security Updates.

Hey everyone, this is Mike Reavey from the MSRC. Welcome to the Microsoft Security Response Center Blog’s new home! We here at the MSRC started the blog for our time at RSA 2005, but we had such great support and positive responses from customers that we’ve have decided to keep it going. Today we’ve moved the blog to a …

Welcome to our new home…. and April Security Updates. Read More »

A little bit about the Security Update Validation Program

A little bit about the Security Update Validation Program Late last week there was some confusion about the Security Update Validation program, and I wanted to take a minute to explain how the program works and our reasons behind implementing it. To start, the Security Update Validation Program (SUVP) was tested for about a year …

A little bit about the Security Update Validation Program Read More »

And introducing….

And introducing…. I’m Mike Reavey the Operations Lead for the Microsoft Security Response Center.  I wanted to take a second to introduce myself and what my team does within the MSRC.   Have you ever wondered who’s watching secure@microsoft.com around the clock to respond to new vulnerabilities?  Or who works with the security researchers, product teams, …

And introducing…. Read More »