Blog Posts Tagged with "Microsoft"
The Fight Against Spam Might Get a Little Easier
May 11, 2012 Added by:Theresa Payton
Facebook recently announced efforts to stop spammers by creating the Antivirus Marketplace. The service will provide a free six month license to antivirus software. McAfee, Symantec, Sophos and others are teaming with Facebook to offer free antivirus software...
Comments (0)
Microsoft Continues Crusade Against Botnet Masters
May 04, 2012 Added by:Headlines
"Google began alerting the registrants of more than three dozen Gmail accounts that were the subject of Microsoft’s subpoenas... The email addresses were already named in Microsoft’s initial complaint posted at zeuslegalnotice.com, which listed nicknames and other information..."
Comments (0)
Microsoft Dismisses Zeus Botnet Takedown Criticism
April 17, 2012 Added by:Headlines
"The chief criticism is that the Microsoft operation exposed sensitive information that a handful of researchers had shared in confidence, and that countless law enforcement investigations may have been delayed or derailed as a result..."
Comments (0)
Microsoft and Law Enforcement Hit Zeus Botnet Servers
March 26, 2012 Added by:Headlines
"With this legal and technical action, a number of the most harmful botnets using the Zeus family of malware worldwide have been disrupted in an unprecedented, proactive cross-industry operation against this cybercriminal organization..."
Comments (0)
ICS-CERT: Windows Remote Desktop Protocol Vulnerability
March 20, 2012 Added by:Infosec Island Admin
ICS-CERT is aware of a public report of a Remote Desktop Protocol (RDP) vulnerability, which with successful exploitation in the control systems environment could lead to system processes freezing and potentially allow remote code execution...
Comments (0)
Waledac Spam Botnet Evolves into Password Sniffer
February 20, 2012 Added by:Headlines
Researchers form Palo Alto Networks have detected a new variation of the briefly defeated Waledac spamming botnet, but this version is able to sniff out login credentials for several email protocols as well as files with the .dat extension related to BitCoin and FTP...
Comments (0)
Microsoft Issues Updates for Multiple Product Vulnerabilities
February 15, 2012 Added by:Headlines
Microsoft released updates to address vulnerabilities in Windows, Internet Explorer, Microsoft .NET Framework, Silverlight, Office, and Microsoft Server Software that could allow attackers to execute arbitrary code, cause a denial of service, or gain unauthorized access...
Comments (0)
Tenth Anniversary of Gates Trustworthy Computing Memo
January 28, 2012 Added by:Fergal Glynn
January 15th was the 10th anniversary of Gates Trustworthy Computing memo. I asked a mixed group of my colleagues at Veracode to answer this question. The group has a wide age range, and come from many different backgrounds. Some of the answers are really funny. I hope you enjoy...
Comments (0)
US CERT: Hash Table Collision Attack Vulnerability
January 04, 2012 Added by:Headlines
US-CERT is aware of reports stating that multiple programming language implementations, including web platforms, are vulnerable to hash table collision attacks. This vulnerability could be used by an attacker to launch a denial-of-service attack against websites using affected products...
Comments (0)
Windows Phone Denial of Service Attack Vulnerability
December 14, 2011 Added by:Dan Dieterle
"The attack is not device specific and appears to be an issue with the way the Windows Phone messaging hub handles messages. The bug is also triggered if a user sends a Facebook chat message or Windows Live Messenger message to a recipient..."
Comments (0)
Duqu Installer Contained Microsoft Word Zero-Day Exploit
November 03, 2011 Added by:Headlines
“The installer file is a Microsoft Word document (.doc) that exploits a previously unknown kernel vulnerability that allows code execution. We contacted Microsoft regarding the vulnerability and they’re working diligently towards issuing a patch and advisory..."
Comments (0)
Building a Backdoor
October 30, 2011 Added by:Joel Harding
A friend in another country wrote and asked me if the reason the United States suspected foreign equipment of containing a means of gaining surreptitious access to telecommunication, information or networked systems, commonly called a backdoor, was because the US routinely does it...
Comments (0)
Happy Birthday MS08-067
October 06, 2011 Added by:Chris Murrey
As a Penetration Tester, this vulnerability is sought out because it is highly reliable and very low risk. As an attacker, the simple fact is the attack still works. The vulnerability was widely used in conjunction with the conficker worm, which affected more than seven million systems...
Comments (3)
Microsoft is Waging Cyberwar
September 30, 2011 Added by:Joel Harding
A federal court judge taps his gavel and the request for taking down a domain and all sub-domains is approved. This indicates to me that a corporation is taking care of me, a private citizen. It also indicates that the government cannot or will not protect me...
Comments (0)
Microsoft Hits Domain Provider in Kelihos Botnet Battle
September 28, 2011 Added by:Headlines
"We wanted to take it out early enough so that number one, it wouldn't grow and propagate... but also to make the point that when a threat is down, it's going to stay down. I think we made that point pretty effectively in this particular operation..."
Comments (0)
Congressmen Call for FTC Investigation on Supercookies
September 28, 2011 Added by:Headlines
“I am very disturbed by news that supercookies are being used to collect vast amounts of information about consumers’ online activities without their knowledge. Companies should not be behaving like supercookie monsters, gobbling up personal, sensitive information without users’ knowledge..."
Comments (1)
- Follow Up to the Out of Band Authentication Post
- Skype Malware Campaign Spreading Poison Ivy Trojan
- I Hope Edo is Worth the Privacy Risk
- Dutch MoD Innovation Competition 2012: CYBER Operations 2.0
- NIST Workshop: The Technical Aspects of Botnets
- Security Automation by Hand - Batch/Bash/FOR
- Who Are You Preaching to Anyway?
- Some Observations on Klout Scores
- Where Will the Buck Stop in Cloud Security?
- How Does Your Bank Protect Your Data?