Hacker arrested for Video Giving Tips for ATM Skimmers

It will be interesting how you see it. When I blogged on Suspended Jail for Hacking Tutorial in France, I got quite some negative feedback like “do you have nothing better to do than to go after these guys”, “why should it be illegal to publish such a tutorial” etc. So, where do you draw…

2

Risk of Outsourcing (and Security Outsourcing)

I am often asked about the risks of outsourcing (we often talk about processes, legal risks (e.g. Data Protection), etc.) – the list is very long. Today I read an article which touches a completely different issue: It is all about the security processes and the turnover within the outsourcing company. The story is about…

3

Getting Ready for TechED EMEA

It is as so often, autumn is the time when all the big events are happening in EMEA. This week was RSA Europe (or I think still is) and next week I am looking forward to TechEd EMEA in Barcelona. So, I worked at RSA Europe on Monday and Tuesday on the two stories with…

2

H1 OS Desktop Vulnerability Report – Get It Now

You might know Jeff Jones’ work on the different vulnerability reports comparing different products and vendors. Our goal is to understand and measure our progress and see where we stand with regards to the industry. Today, Jeff release his OS Desktop vulnerability report for H1 2008, which shows to me some interesting results. One is…

3

More Details on the MS08-067 Vulnerability

Our security team just published an excellent post with a lot more details on the vulnerability we patched. You should definitely read it: http://blogs.technet.com/swi/archive/2008/10/23/More-detail-about-MS08-067.aspx Roger

1

MS08-067 Out of Band Released

This is just to inform you that we just released the announced out of band security update MS08-067. Please read the bulletin carefully and then apply the update as soon as possible Roger

1

Out of Band Security Update to be Released

I guess you have seen this already but wanted to make sure that we are reaching you: We are planning to release an Out of Band Security Update today 10am Pacific Time (which is 18pm GMT). This update will affect all currently supported versions of Windows. Please read the official Advanced Notification in our MSRC…

0

“Stacked against hacks” in World Finance

I recently had the pleasure to be part of an article in World Finance called Stacked against hacks Visit the virtual version here and go to page 60 and 61 Roger

2

Microsoft Security Assessment Tool v4.0 available

I already blogged a few times on MSAT (the Microsoft Security Assessment Tool). We just released a new version for it, version 4. For those of you who do not know MSAT: MSAT is a free (stress: free) Risk Assessment Tool mainly targeted a Small and Medium Businesses to get a good understanding of their…

1

Two Important Changes Today to Our Bulletin Process

Today is the day! At Blackhat in August we announced two significant changes to our bulletin release process and today it is the first time this actually kicks in. Just to recapitulate: What did we change? We introduced the Microsoft Active Protections Program which is to me a major shift in policy. Up to now…

0