Note
Access to this page requires authorization. You can try signing in or changing directories.
Access to this page requires authorization. You can try changing directories.
Security informations brought to you by the Swiss Security Team.
New Excel Vulnerability
MSRC (the Microsoft Securtiy Response Center) just posted a warning of a new Excel vulnerability. So...
Author: Microsoft Swiss Security Team Date: 06/15/2006
Regulatory Compliance Guide - Life!
Well, there are themes that are more sexy than this one but nevertheless. A lot of customers asked...
Author: Microsoft Swiss Security Team Date: 06/14/2006
Windows Support Lifecycle
I just would like to stress it once again: There are different products going out of support soon:On...
Author: Microsoft Swiss Security Team Date: 06/14/2006
Microsoft Standard User Analyzer (SUA) tool
The Windows Vista UAC team has just released the first beta version of the Microsoft Standard User...
Author: Microsoft Swiss Security Team Date: 06/07/2006
Steve Ballmer fighting viruses and worms... (nss)
"Microsoft's vice-president Jim Allchin told at a recent Windows Vista reviewers conference a story...
Author: Microsoft Swiss Security Team Date: 06/07/2006
Exchange 2007 built-in protection features
Microsoft will add new built-in protection features to the next version of its Exchange messaging...
Author: Microsoft Swiss Security Team Date: 06/07/2006
Will There be Attacks on 6/6/6?
It is pretty interesting to follow the discussion around "big days" and possible attacks following...
Author: Microsoft Swiss Security Team Date: 06/05/2006
Swiss Security Day at SANS
Unbelieveable: The Swiss Security Day was even internationnaly in the "news". SANS reported about it...
Author: Microsoft Swiss Security Team Date: 06/02/2006
Link for Scoreboard
Unbelieveable but I seem mess up with links at the moment. Here is the one:...
Author: Microsoft Swiss Security Team Date: 05/31/2006
A Business Critical Application
I just got a message about an absolutely business critical application - at least starting from 11...
Author: Microsoft Swiss Security Team Date: 05/29/2006
Keyboard with integrated Keystroke Logger
Now it gets scary: I knew that you can buy pretty small keystroke logger to be placed between the...
Author: Microsoft Swiss Security Team Date: 05/29/2006
Microsoft Threat Analysis & Modeling v2.0 RC1 - Link
Do you really want the link :-)?...
Author: Microsoft Swiss Security Team Date: 05/24/2006
Microsoft Threat Analysis & Modeling v2.0 RC1
We just released Version 2 of our Threat Modelling tool - for free :-) Microsoft Threat Analysis...
Author: Microsoft Swiss Security Team Date: 05/22/2006
End of Support for Windows XP SP1
I just want to start to make you aware of the fact the Windows XP SP1 will get out of support on...
Author: Microsoft Swiss Security Team Date: 05/19/2006
0day Attacks on Word
At the moment we are investigating reports about 0day attacks on Microsoft Word. The best source to...
Author: Microsoft Swiss Security Team Date: 05/19/2006
Swiss Security Day - a few hours to go
It has been a busy week - preparing the Swiss Security Day. Back in November we launched...
Author: Microsoft Swiss Security Team Date: 05/18/2006
Ten Prinicples of Microsoft Patch Management
If you are doing patch management, there are a few things you should be aware of in my opinion....
Author: Microsoft Swiss Security Team Date: 05/16/2006
How Microsoft Built a Unified Approach to Windows Security
How Microsoft Built a Unified Approach to Windows Security. An inside look at the internal teams and...
Author: Microsoft Swiss Security Team Date: 05/09/2006
Peripheral Access Management - Security risk management
Guidance to organizations on managing the security risks of peripheral access devices, such as USB...
Author: Microsoft Swiss Security Team Date: 05/09/2006
Technical overview of the different types of penetration testing
Technical overview of the different types of penetration test and how these can be used within wider...
Author: Microsoft Swiss Security Team Date: 05/09/2006
Passwords on the brain - Authentication by "thinking" the password!
“What if we could authenticate by thinking a password?” https://eureka.carleton.ca/2006-03/60.htm But...
Author: Microsoft Swiss Security Team Date: 05/06/2006
ISA Server 2006 - Interesting preview article at isaserver.org
ISA Server 2006 is the next step in Microsoft’s Security Strategy. ISA Server 2006 is the successor...
Author: Microsoft Swiss Security Team Date: 05/05/2006
Security Myths and Passwords
...In the practice of security we have accumulated a number of “rules of thumb” that many people...
Author: Microsoft Swiss Security Team Date: 05/04/2006
Schneier on Bitlocker
You know Bruce Schneier? He is not too big a fan of Microsoft. Now he wrote about the new Windows...
Author: Microsoft Swiss Security Team Date: 05/03/2006
New security risk: Attacks from Lego (ro)bots! ;-)
...no, I'm just kidding, but fun anyway! ...The LEGO Group today announced that for the first time...
Author: Microsoft Swiss Security Team Date: 05/03/2006
Malware analysis reveals families of code
...A project focused on automating the process of classifying malicious software found that many...
Author: Microsoft Swiss Security Team Date: 05/03/2006
The biggest risk is inside the firewall
Well, it is pretty well known that more than 50% of the security incidents come from inside. But now...
Author: Microsoft Swiss Security Team Date: 04/29/2006
e-Learning: Security in the Infomration Age
The Swiss Federal Institute of Technology (ETH) just released a pretty interesting e-Learning Course...
Author: Microsoft Swiss Security Team Date: 04/27/2006
Social engineering reloaded
...The purpose of this article is to go beyond the basics and explore how social engineering,...
Author: Microsoft Swiss Security Team Date: 04/26/2006
Problems solved
I usually do not reference to bulletin releases or re-releases but as I mentioned the problems...
Author: Microsoft Swiss Security Team Date: 04/26/2006
Update on MS06-015
Based on some questions and feedback of our customers, I would like to give you an update on...
Author: Microsoft Swiss Security Team Date: 04/21/2006
Microsoft @ Email Authentication Summit in Chicago
Microsoft is joining more than 36 companies in participating in the second annual Email...
Author: Microsoft Swiss Security Team Date: 04/20/2006
Cross-Plattform Virus
You probably saw this already. There is the first proof of concept virus out there that seems to be...
Author: Microsoft Swiss Security Team Date: 04/18/2006
Discovery and Analysis of Systematic Typo-Squatting (domain names typo variations)
MS Research has released a paper on "Strider Typo-Patrol: Discovery and Analysis of Systematic...
Author: Microsoft Swiss Security Team Date: 04/11/2006
Watch out for Laptop Thefts
Laptop Thieves get more and more agressive over time. Therfore think about protecting your...
Author: Microsoft Swiss Security Team Date: 04/11/2006
Did you ever think about patching your printer?
We all think about patching Windows, Office, the Backup Software, etc. Who of you thinks of the...
Author: Microsoft Swiss Security Team Date: 04/10/2006
Forensic Analysis of the Windows Registry
Windows registry contains lots of information that are of potential evidential value or helpful in...
Author: Microsoft Swiss Security Team Date: 04/08/2006
Trend Micro data revealed due to virus
There are days, where a lot of companies will think: Glad it did not happen to us:...
Author: Microsoft Swiss Security Team Date: 04/07/2006
Pescatore (Gartner) on 3rd Party Patch
A pretty cool quote from John Pescatore, Gartner on third-party patches: My neighbor is a smart guy,...
Author: Microsoft Swiss Security Team Date: 03/31/2006
ActiveX Change can be disabled
Mike Nash just published information about the ActiveX fix on the MSRC blog. The most important part...
Author: Microsoft Swiss Security Team Date: 03/29/2006
IE Vulnerability Update
There are at least two third party patches for the IE vulnerability out there. Please be aware of...
Author: Microsoft Swiss Security Team Date: 03/28/2006
ActiveX Behavior Change
Several times already we (Microsoft) infomred about a change we will ahve to make in the way we...
Author: Microsoft Swiss Security Team Date: 03/27/2006
Application Threat Modelling
This February I had to opportunity to meet our internal IT Threat Modelling team together with a...
Author: Microsoft Swiss Security Team Date: 03/25/2006
Public IE Vulnerability
I get questions regarding the recently published vulnerability that might crash IE. The best...
Author: Microsoft Swiss Security Team Date: 03/22/2006
We are at TechDays
I know that we have been pretty slow on blogging over the last weeks but we have been struggling...
Author: Microsoft Swiss Security Team Date: 03/17/2006
Vulnerabilities to Sell
The trend continues: Initially there has been the debate around irresponsible and responsible...
Author: Microsoft Swiss Security Team Date: 03/17/2006
News from Internet Explorer 7
Last Friday and this Monday we ahd the pleasure to host two persons from the IE-team from Redmond....
Author: Microsoft Swiss Security Team Date: 03/06/2006
Problems with Nyxem?
It is pretty interesting: There is often just one AV-vendor making noise around some issues and once...
Author: Microsoft Swiss Security Team Date: 03/04/2006
Hybrid Worm (2)???
It seems that I hit the nail yesterday as we had some customer inquiries yesterday and today....
Author: Microsoft Swiss Security Team Date: 03/02/2006