TechEd Bloggers Security, Identity and Access

Microsoft Security Bulletin Advance Notification for August 2010

Don Patterson — Fri, 30 Jul 2010 21:43:06 GMT

Don Patterson writes, "...This is an advance notification of one out-of-band security bulletin that Microsoft is intending to release on August 2, 2010. The bulletin addresses a security vulnerability in all supported editions of Windows XP, Windows Server 2003, Windows Vista, Windows Server 2008, Windows 7, and Windows Server 2008 R2, that is currently being exploited in malware attacks...." more

Fri, 30 Jul 2010 21:43:06 GMT

ESET Identifies Two New Malware Attacks

Harry Waldron — Mon, 26 Jul 2010 20:36:00 GMT

Harry Waldron writes, "...ESET has identified two new attacks that exploit the new unpatched Windows Shortcut vulnerability (e.g., malicious LNK files)..." more

Mon, 26 Jul 2010 20:36:00 GMT

Workarounds and Fixes in Security Advisory Update 2286198

Don Patterson — Wed, 21 Jul 2010 18:35:17 GMT

Don Patterson writes, "...This workaround will disable some icons from being displayed so we recommend administrators test this before deploying it widely. We've also updated the advisory with new information regarding possible attack vectors. Finally, we have included a new workaround that customers can implement to help protect their environments: blocking the download of LNK and PIF files..." more

Wed, 21 Jul 2010 18:35:17 GMT

MSE and Forefront Virus Scanning Engines Need Updating This Week

Harry Waldron — Mon, 12 Jul 2010 23:23:58 GMT

Harry Waldron writes, "MSE and Forefront users should update their virus scanning engines as prompted next week. New Antimalware Engine is planned for release on 15 July 2010..." more

Mon, 12 Jul 2010 23:23:58 GMT

July 2010 Security Bulletin Release Advance Notification

Microsoft Security Response Center — Thu, 08 Jul 2010 20:59:42 GMT

Microsoft Security Response Center writes, "...This month's release includes four bulletins addressing five vulnerabilities. Two of the bulletins affect Windows; of those, one carries a Critical severity rating and one is rated Important. Two bulletins, both with a severity rating of Critical, affect Microsoft Office. As always, we recommend..." more

Thu, 08 Jul 2010 20:59:42 GMT

Tango Toolbar - New Malware Difficult to Clean

Harry Waldron — Mon, 21 Jun 2010 22:42:22 GMT

Harry Waldron writes, "...This particular toolbar is a mess of broken uninstallers, disclaimers warding off associations with the product and endless people on support forums wondering how it ended up on their computers in the first place...." more

Mon, 21 Jun 2010 22:42:22 GMT

Example of Virtual Three-Tier Architectures with AWS Security Groups

Steve Riley — Tue, 15 Jun 2010 21:47:30 GMT

Steve Riley writes, "...If you’re an API aficionado, you can use these eight simple calls to create the three required security groups to implement this architecture:...here are some screen shots showing how to define these security groups using the AWS Management Console..." more

Tue, 15 Jun 2010 21:47:30 GMT

12 Tips From Marcus Murray's Authentication and Passwords SIA 338 Session

Hunter French — Wed, 09 Jun 2010 13:10:36 GMT

Hunter French writes, "...In true Tech Ed form I left the session with a lot to consider and even more to implement. The attack demos made the session real but the countermeasures made it valuable. Thanks Marcus" more

Wed, 09 Jun 2010 13:10:36 GMT

Security is Sometimes Directly Related to Common Sense: Session SIA333

Hunter French — Wed, 09 Jun 2010 13:01:05 GMT

Hunter French writes, "...left wondering what silly things I have accidentally or thoughtlessly implemented that might have reduced the security of the organizations for which I have worked. Making the easy changes certainly gives you the most bang for your security buck, therefore question is..." more

Wed, 09 Jun 2010 13:01:05 GMT

Best Security Practice at TechEd: Stick Together!

Joe Oleson — Tue, 08 Jun 2010 23:05:10 GMT

Joe Oleson writes, "...While everyone has been having a great time… when you mix alcohol to the levels where they call the drink hurricanes, car bombs, and hand grenades you’re bound to have issues. While out on the town my good friend Tony Lanni was walking the streets and pounced on by a street thug.." more

Tue, 08 Jun 2010 23:05:10 GMT

Cybercrime Sessions Cloudy with a Chance of Fear

Andy Malone — Tue, 08 Jun 2010 23:02:48 GMT

Andy Malone writes, "I have had great feedback. If you did not manage to attend then have no fear I will be repeating Thursday Afternoon...During my session I showed a first responder batch file to assist with a forensic investigation. As promised here it is..." more

Tue, 08 Jun 2010 23:02:48 GMT

TechEd Sessons on WIF

Vittorio Bertocci — Thu, 03 Jun 2010 21:59:57 GMT

Vittorio Bertocci writes, "...WIF is covered in two sessions, delivered by yours truly...overview [here]...Last time I went to New Orleans it was back in the summer of 2003. I remember the fractal boundaries of the swamps as..." more

Thu, 03 Jun 2010 21:59:57 GMT

Best Practices in Using Bitlocker on Windows 7 Mobile

Harry Waldron — Mon, 24 May 2010 17:55:50 GMT

Harry Waldron writes, "...how to use bitlocker to protect Windows 7 mobile devices..." more

Mon, 24 May 2010 17:55:50 GMT

Best Way to Protect Computer from Malware is to Build a Standard Account

Harry Waldron — Thu, 20 May 2010 17:39:47 GMT

Harry Waldron writes, "Building a second user account with NON-ADMINISTRATIVE access is one of the best ways to protect your home or corporate PC. This is called a limited account in Windows XP. It's also referred to as a standard account in later versions of Windows." more

Thu, 20 May 2010 17:39:47 GMT

Security Advisory in Windows Canonical Display Driver

Microsoft Security Response Center — Wed, 19 May 2010 19:47:50 GMT

Microsoft Security Response Center writes, "...investigating a publicly reported vulnerability in the Windows Canonical Display Driver (cdd.dll) and have released Security Advisory 2028859 to describe our findings. We’re not aware of any current customer impact as a result of the issue. The Canonical Display Driver is..." more

Wed, 19 May 2010 19:47:50 GMT

TechEd 2010 Sign up for Cyber-Security MasterClass

Andy Malone — Mon, 17 May 2010 17:50:56 GMT

Andy Malone writes, "...In preparation for Microsoft TechEd 2010 in New Orleans next month I am preparing a demo of Passware Password Forensic Kit...From password recovery to complete Bitlocker volume recovery and more. If you are a security professional this is a must...." more

Mon, 17 May 2010 17:50:56 GMT

May 2010 Two Critical Security Bulletins Released for Windows and Office

Microsoft Security Response Center — Tue, 11 May 2010 23:05:45 GMT

Microsoft Security Response Center writes, "...two security bulletins, MS10-030 and MS10-031 to address two vulnerabilities in Windows and Microsoft Office, both rated Critical..." more

Tue, 11 May 2010 23:05:45 GMT

Malicious PDF Files are Growing in Sophistication and Volume

Harry Waldron — Thu, 29 Apr 2010 18:23:36 GMT

Harry Waldron writes, "...PDF files are becoming a key method for malicious attacks as documented in these four informative articles. Attacks are increasing in..." more

Thu, 29 Apr 2010 18:23:36 GMT

New ZBOT Variant Embeds Connection Logic Into Infected Files

Harry Waldron — Wed, 28 Apr 2010 17:34:14 GMT

Harry Waldron writes, "...ZBOT variant now uses a file infector approach to embed connection logic into infected executable files. When these infected executable files are run, it will attempt to connect to a malicious server and download even more malware agents..." more

Wed, 28 Apr 2010 17:34:14 GMT

Security Update Pulled - Windows Media Services on Windows 2000 Server

Microsoft Security Response Center — Thu, 22 Apr 2010 21:33:32 GMT

Microsoft Security Response Center writes, "Today we pulled the update because we found it does not address the underlying issue effectively. We are not aware of any active attacks seeking to exploit this issue and..." more

Thu, 22 Apr 2010 21:33:32 GMT