Windows 7 almost five times more secure than XP

CNET: Windows 7 almost five times more secure than XPThose are the findings of Microsoft’s latest Security Intelligence Report, which detailed in depth the state of software vulnerabilities, exploits, security breaches, and malware in 2010. Microsoft SIR Report – Volume 10Direct download (PDF) or Microsoft webpage: What is SIR: The Security Intelligence Report (SIR) is…


Germany provides a secure way to deal with spam

“In theory, stopping spam is easy: just make it uneconomic to send millions of messages by charging for each one sent, or make senders authenticate their identity to stop address spoofing and simplify blocking. In practice, that would involve building a secure, parallel email infrastructure linking electronic authentication with real-world identities: a daunting task. Yet…


Microsoft Freshens Retro Code Lock-Down Tool

Microsoft has released a new version of a software tool that developers and administrators can use to harden older applications against common vulnerabilities. Short for Enhanced Mitigation Experience Toolkit, EMET version 2.0 brings several new protections to operating systems and applications such as Windows XP or Internet Explorer 6, which remain widely used even though…


Security Secrets the Bad Guys don’t want you to know

[PCWorld] You already know the basics of internet security, right? But when you’ve got the basics covered, but you still don’t feel secure, what can you do? Here are a few advanced security tips to help you thwart some of today’s most common attacks. Urs    


Microsoft Malware Protection Center – The Stuxnet Sting

For the past week or so, MSRC has been closely tracking a new family of threats called Stuxnet (a name derived from some of the filename/strings in the malware — mrxcls.sys, mrxnet.sys).  In the past few days, it has become a  popular topic of discussion amongst security researchers and in the media. First and foremost, MSRC…


Microsoft Security Compliance Manager released

The Security Compliance Manager will help you accelerate knowledge to merge best practices, customize once to centralize decision making, and export to multiple formats to enable monitoring, verification, and compliance. The tool is designed to help accelerate your organization’s ability to efficiently manage the security and compliance process for the most widely used Microsoft technologies….


Microsoft out-of-band security bulletin release for IE

Microsoft has released an out-of-band security bulletin on March 30, 2010. The bulletin is being released to address new attacks against customers of Internet Explorer. Users of Internet Explorer 8 and Windows 7 are not vulnerable to these current attacks. However, the released update contains fixes for IE5, IE6, IE7 and IE8 and therefore, it is recommended…


What your users don’t know about vulnerabilities can hurt you

DarkReading: If your security strategy relies on end users to perform updates or avoid risky behavior, then it’s time to ask yourself a question: How much do end users really know about security vulnerabilities? “Non-IT folks are often only aware of security vulnerabilities that are covered in mainstream publications and media or hit close to…


Newest Security Reports Show Changing Threats

Scott Hogg, Core Networking and Security: “I find it useful to seek out new perspectives on the ever-changing security realm. By reviewing these [security] reports, we can gain a greater understanding of the emerging Internet threats our organizations are facing.” Includes links to various security reports: -Urs  


MS: What We Know (and Learned) from the Waledac Takedown

Very interesting article from the MSRC: Recently, following an investigation to which various members of the MMPC contributed, Microsoft’s Digital Crimes Unit initiated a takedown of the Waledac botnet in an action known as Operation b49, an ongoing operation to disrupt the botnet for the long term.  To effectively counter a botnet like Waledac, we…