Attack

Security Advisory 2286198 Updated

We’ve just updated Microsoft Security Advisory 2286198 to let customers know that we now have an automated “Fix It” available to implement the workaround we first outlined in our original posting on Friday, July 16, 2010. More information is available in the KB article 2286198, but in summary running the “Fix It” can help prevent …

Security Advisory 2286198 Updated Read More »

July 2010 Security Bulletin Release

Hi everyone. As part of our usual monthly update cycle, today Microsoft is releasing four security bulletins to address five vulnerabilities in Windows and Microsoft Office. MS10-042 resolves a publicly disclosed and actively exploited vulnerability discussed in Security Advisory 2219475. The update addresses an issue in the Windows Help and Support Center feature included in …

July 2010 Security Bulletin Release Read More »

Out-of-Band Security Bulletin Webcast Q&A – March 30, 2010

Hosts:                          Adrian Stone, Senior Security Program Manager Lead                                     Jerry Bryant, Group Manager, Response Communications Website:                     TechNet/security Chat Topic:                 March 2010 Out-of-Band Security BulletinDate:                           Tuesday, March 30, 2010     Q: CVE-2010-0483, like CVE-2010-0806, is a remote code executable vulnerability with an exploit code that has been published and publicly available since March 1, 2010. …

Out-of-Band Security Bulletin Webcast Q&A – March 30, 2010 Read More »

Security Bulletin MS10-018 Released

Hi everyone, Today we released MS10-018 out-of-band due to increases in attacks against Internet Explorer 6 and Internet Explorer 7 using the vulnerability discussed in Security Advisory 981374. I want to reiterate that Internet Explorer 8 is not affected by this issue so customers using this version are not affected by these attacks and we …

Security Bulletin MS10-018 Released Read More »

Internet Explorer Cumulative Update Releasing Out-of-Band

Today we issued our Advanced Notification Service (ANS) to advise customers that we will be releasing security update MS10-018 tomorrow, March 30, 2010, at approximately10:00 a.m. PDT (UTC-8). MS10-018 resolves Security Advisory 981374, addressing a publicly disclosed vulnerability in Internet Explorer 6 and Internet Explorer 7. Internet Explorer 8 is unaffected by the vulnerability addressed in …

Internet Explorer Cumulative Update Releasing Out-of-Band Read More »

Heya! Hola and Olá!

It was pretty fun sitting in the panel that kicked-off the first BlueHat Security Forum in Latin America and we are almost half-way through our day here in Buenos Aires.  (Check out Mike Reavey’s EcoStrat Blog post for details about the panel.) It is always great to see old friends from the ecosystem and meet …

Heya! Hola and Olá! Read More »

BlueHat Security Forum: Buenos Aires Edition–Shipping!

Handle:Silver Surfer IRL: Mike Reavey Rank: Director, MSRC Likes: Warm weather, Battlestar Galactica, and responsibly reported vulnerabilities Dislikes: Rain, Rain without end, Clouds with potential for rain, reality TV, and unpatched vulns I’m here at the second edition of the BlueHat Security Forum, this time in Buenos Aires. So far it is shaping up to …

BlueHat Security Forum: Buenos Aires Edition–Shipping! Read More »

Update on Security Advisory 981374

Hi everyone, I’m writing to let you know that we have updated Security Advisory 981374 with new workaround information. We are aware that exploit code has been made public for this issue. As with our last update, Internet Explorer 8 remains unaffected by the vulnerability addressed in the advisory and we continue to encourage all …

Update on Security Advisory 981374 Read More »

Who Gets It and Who Doesn’t? (Windows Genuine Advantage and Security Updates)

Handle:Mando Picker IRL: Dustin Childs Rank: Security Program Manager Likes: Protecting customers, working with security researchers, second Tuesdays, bourbon, mandolins Dislikes: Using “It’s hard” as an excuse, quitting when it gets tough, banjos One of the things I get to do in the Microsoft Security Response Center (MSRC) is talk to our customers and tell …

Who Gets It and Who Doesn’t? (Windows Genuine Advantage and Security Updates) Read More »