We have moved!

To ease navigation and be more in synch with our security colleagues within Microsoft, we have moved to a new blog address: http://blogs.technet.com/mmpc We hope you like the new look. Please remember to redirect any links to our new web address.


When SQL Injections Go Awry, Incident Case Study

It seems to be the "in-thing" these days – using an automated tool to perform SQL injections against vulnerable sites across multiple domains. Although the attack method isn’t new, some sites are hit multiple times, as evident by a corruption of the injection code when one attacker overwrite a previously injected record. Below, you can…


Oderoor – all it’s Kraked up to be?

Greetings from (sorta) sunny Melbourne, Australia! We’re the newest addition to Microsoft’s Security Research and Response global team. In arbitrary seating order we have: Jakub Kaminski, Scott Molenkamp, Hamish O’Dea, Heather Goudey, Raymond Roberts, David Wood, Chun Feng, Oleg Petrovsky, Hermineh Tchagatzbanian, Hil Gradascevic and Matt McCormack. In the same order we have: Skinny Latte…


Microsoft acquires Komoku

Today, Microsoft announced the acquisition of Komoku to add to Forefront and Windows Live OneCare’s technological capabilities.  I would like to take this opportunity to review the year since my “Hello World” blog post and again provide insight on where we will be going.   A year ago, I noted our test results were “not…


MBR rootkit: VirTool:WinNT/Sinowal.A report

This week you may have heard or read about a new rootkit that has been reported in the wild that uses the Master Boot Record (MBR) as its Auto-Start Entry Point (ASEP).  The malware is being called VirTool:WinNT/Sinowal.A.  First we want to let you know that if you use any of the Microsoft antivirus technologies…


Microsoft Security Intelligence Report (January – June 2007) is Now Available

One of the Microsoft Malware Protection Center’s (MMPC) goals is to share the valuable data, insights and expertise we have with customers on a regular basis in an effort to help customers better understand the changes occurring in the threat landscape and improve their defenses accordingly.  We just released the third volume of our threat…


Back from Vienna/VB2007

Hi again, WOW so a month now since the VB2007 Conference in Vienna, Austria.  Vienna was beautiful! Where has the time gone, since then!? I couldn’t let too much more time pass before saying a few words, as I’m finally off the road to be able to sit and gather some thoughts on it.  We…


Storm Drain

Over the past few months, there has been talk about a wave of malware known commonly as “Storm”.  “Storm” has been noted to be responsible for Distributed Denial of Service (DDoS) attacks, mass phishing emails, spam, botnets, and all sorts of online malicious activity.   While the name “Storm” was adopted by press, security companies…


Malware Protection Center Portal v1 Live!

Hey all, if you recall, back in April we released the PREVIEW version of our new portal affectionately known as the Microsoft Malware Protection Center Portal.  Since then we’ve received loads of feedback from customers and partners on what they like about the portal and the features they really want to see now and in…


My TechEd Summer Vacation

Hi again, just recently returned from MS TechEd in Orlando, oh it was HOT! It was great to get a chance to meet some customers and partners face to face and discuss what’s happening at a more granular level today in the enterprise.  The issues they face are of course at the heart of what…