Microsoft Security Bulletin MS08-078 – Critical avaiable now!

Microsoft Security Bulletin MS08-078 – Critical is now avaiable, patches are there and ready for download:http://www.microsoft.com/technet/security/bulletin/MS08-078.mspx. Please install, update as soon as possible! Urs  

0

Internet Explorer security levels compared

As a couple of people are looking at their IE currently, I found some interesting information on Steve Riley’s Technet blog: “A pretty good question came across the newsgroups the other day. Someone was asking what are the differences between IE’s “medium” and “medium-high” security settings. I did some digging, and found only this on MSDN:…

0

Security Advisory 961051 – More information

Microsoft revised the Workarounds section of Security Advisory 961051. The Security Vulnerability Research & Defense team wanted to share more detail about the vulnerability and explains the additional workarounds here to help you protect your computers:http://blogs.technet.com/swi/archive/2008/12/12/Clarification-on-the-various-workarounds-from-the-recent-IE-advisory.aspx Microsoft Security Advisory (961051)Vulnerability in Internet Explorer Could Allow Remote Code Executionhttp://www.microsoft.com/technet/security/advisory/961051.mspx Urs      

0

Microsoft support lifecycle for service Packs

Perhaps a good idea to do some end-of-year cleanup! You can find what product services packs are supported here: http://support.microsoft.com/gp/lifesupsps Urs    

0

China running out of IP addresses

Chinese officials are calling for a mass migration to IPv6 after disclosing that they have only 830 days’ worth of IPv4 resources left. Around 80 per cent of China’s IPv4 resources have now been taken up. The country’s IP allocation recently exceeded Japan’s, making it the second largest in the world behind the US. http://www.vnunet.com/vnunet/news/2226849/china-running-ip-addresses…

1

New Security Development Lifecycle (SDL) Programs

As part of its commitment to make the SDL more accessible to every developer, Microsoft is delivering three new programs and tools: discover the Microsoft SDL Pro Network, the Microsoft SDL Optimization Model, and the Microsoft SDL Threat Modeling Tool v3. http://msdn.microsoft.com/en-us/security/cc448177.aspx Urs    

1

Out of band security update MS08-067

Microsoft released the announced out of band security update MS08-067. Please read the bulletin carefully and then apply the update as soon as possible.http://www.microsoft.com/technet/security/Bulletin/MS08-067.mspx In addition there is also an excellent post with a lot more details on the vulnerability Microsoft patched. You should definitely read it: http://blogs.technet.com/swi/archive/2008/10/23/More-detail-about-MS08-067.aspx Urs      

1

Microcosm of a massive security problem

Blog Post by Jon Oltsik: A few weeks ago, I gave a presentation to a number of companies about the future of endpoint security. During this presentation, I had the opportunity to ask these folks a number of questions about their IT infrastructure and their plans for it. There were only about 20 organizations represented,…

1

IT security guide: Understanding cyber-risks means knowing what questions to ask

A good place for senior executives to start in trying to understand their companies’ financial exposure to cyberthreats is by getting an overall assessment — not just from IT, but also from business units and corporate operations such as the human resources, legal and public relations departments. The 40-page guide was put together by a…

1

Chinese surfers see red over Microsoft black-outs

Chinese Internet users have expressed fury at Microsoft’s launch of an anti-piracy tool targeting Chinese computer users to ensure they buy genuine software. In a related story… An angry Chinese lawyer accused Microsoft of perpetrating the biggest ever hacker attack in response to the software giant’s controversial move to trigger hourly screen blackouts on computers…

1