Microsoft Switzerland Security Blog
Security informations brought to you by the Swiss Security Team.
New Excel Vulnerability
MSRC (the Microsoft Securtiy Response Center) just posted a warning of a new Excel vulnerability. So...
Author: Microsoft Swiss Security Team Date: 06/15/2006
Regulatory Compliance Guide - Life!
Well, there are themes that are more sexy than this one but nevertheless. A lot of customers asked...
Author: Microsoft Swiss Security Team Date: 06/14/2006
Windows Support Lifecycle
I just would like to stress it once again: There are different products going out of support soon:On...
Author: Microsoft Swiss Security Team Date: 06/14/2006
Microsoft Standard User Analyzer (SUA) tool
The Windows Vista UAC team has just released the first beta version of the Microsoft Standard User...
Author: Microsoft Swiss Security Team Date: 06/07/2006
Steve Ballmer fighting viruses and worms... (nss)
"Microsoft's vice-president Jim Allchin told at a recent Windows Vista reviewers conference a story...
Author: Microsoft Swiss Security Team Date: 06/07/2006
Exchange 2007 built-in protection features
Microsoft will add new built-in protection features to the next version of its Exchange messaging...
Author: Microsoft Swiss Security Team Date: 06/07/2006
Will There be Attacks on 6/6/6?
It is pretty interesting to follow the discussion around "big days" and possible attacks following...
Author: Microsoft Swiss Security Team Date: 06/05/2006
Swiss Security Day at SANS
Unbelieveable: The Swiss Security Day was even internationnaly in the "news". SANS reported about it...
Author: Microsoft Swiss Security Team Date: 06/02/2006
Link for Scoreboard
Unbelieveable but I seem mess up with links at the moment. Here is the one:...
Author: Microsoft Swiss Security Team Date: 05/31/2006
A Business Critical Application
I just got a message about an absolutely business critical application - at least starting from 11...
Author: Microsoft Swiss Security Team Date: 05/29/2006
Keyboard with integrated Keystroke Logger
Now it gets scary: I knew that you can buy pretty small keystroke logger to be placed between the...
Author: Microsoft Swiss Security Team Date: 05/29/2006
Microsoft Threat Analysis & Modeling v2.0 RC1 - Link
Do you really want the link :-)?...
Author: Microsoft Swiss Security Team Date: 05/24/2006
Microsoft Threat Analysis & Modeling v2.0 RC1
We just released Version 2 of our Threat Modelling tool - for free :-) Microsoft Threat Analysis...
Author: Microsoft Swiss Security Team Date: 05/22/2006
End of Support for Windows XP SP1
I just want to start to make you aware of the fact the Windows XP SP1 will get out of support on...
Author: Microsoft Swiss Security Team Date: 05/19/2006
0day Attacks on Word
At the moment we are investigating reports about 0day attacks on Microsoft Word. The best source to...
Author: Microsoft Swiss Security Team Date: 05/19/2006
Swiss Security Day - a few hours to go
It has been a busy week - preparing the Swiss Security Day. Back in November we launched...
Author: Microsoft Swiss Security Team Date: 05/18/2006
Ten Prinicples of Microsoft Patch Management
If you are doing patch management, there are a few things you should be aware of in my opinion....
Author: Microsoft Swiss Security Team Date: 05/16/2006
How Microsoft Built a Unified Approach to Windows Security
How Microsoft Built a Unified Approach to Windows Security. An inside look at the internal teams and...
Author: Microsoft Swiss Security Team Date: 05/09/2006
Peripheral Access Management - Security risk management
Guidance to organizations on managing the security risks of peripheral access devices, such as USB...
Author: Microsoft Swiss Security Team Date: 05/09/2006
Technical overview of the different types of penetration testing
Technical overview of the different types of penetration test and how these can be used within wider...
Author: Microsoft Swiss Security Team Date: 05/09/2006
Passwords on the brain - Authentication by "thinking" the password!
“What if we could authenticate by thinking a password?” https://eureka.carleton.ca/2006-03/60.htm But...
Author: Microsoft Swiss Security Team Date: 05/06/2006
ISA Server 2006 - Interesting preview article at isaserver.org
ISA Server 2006 is the next step in Microsoft’s Security Strategy. ISA Server 2006 is the successor...
Author: Microsoft Swiss Security Team Date: 05/05/2006
Security Myths and Passwords
...In the practice of security we have accumulated a number of “rules of thumb” that many people...
Author: Microsoft Swiss Security Team Date: 05/04/2006
Schneier on Bitlocker
You know Bruce Schneier? He is not too big a fan of Microsoft. Now he wrote about the new Windows...
Author: Microsoft Swiss Security Team Date: 05/03/2006
New security risk: Attacks from Lego (ro)bots! ;-)
...no, I'm just kidding, but fun anyway! ...The LEGO Group today announced that for the first time...
Author: Microsoft Swiss Security Team Date: 05/03/2006
Malware analysis reveals families of code
...A project focused on automating the process of classifying malicious software found that many...
Author: Microsoft Swiss Security Team Date: 05/03/2006
The biggest risk is inside the firewall
Well, it is pretty well known that more than 50% of the security incidents come from inside. But now...
Author: Microsoft Swiss Security Team Date: 04/29/2006
e-Learning: Security in the Infomration Age
The Swiss Federal Institute of Technology (ETH) just released a pretty interesting e-Learning Course...
Author: Microsoft Swiss Security Team Date: 04/27/2006
Social engineering reloaded
...The purpose of this article is to go beyond the basics and explore how social engineering,...
Author: Microsoft Swiss Security Team Date: 04/26/2006
Problems solved
I usually do not reference to bulletin releases or re-releases but as I mentioned the problems...
Author: Microsoft Swiss Security Team Date: 04/26/2006
Update on MS06-015
Based on some questions and feedback of our customers, I would like to give you an update on...
Author: Microsoft Swiss Security Team Date: 04/21/2006
Microsoft @ Email Authentication Summit in Chicago
Microsoft is joining more than 36 companies in participating in the second annual Email...
Author: Microsoft Swiss Security Team Date: 04/20/2006
Cross-Plattform Virus
You probably saw this already. There is the first proof of concept virus out there that seems to be...
Author: Microsoft Swiss Security Team Date: 04/18/2006
Discovery and Analysis of Systematic Typo-Squatting (domain names typo variations)
MS Research has released a paper on "Strider Typo-Patrol: Discovery and Analysis of Systematic...
Author: Microsoft Swiss Security Team Date: 04/11/2006
Watch out for Laptop Thefts
Laptop Thieves get more and more agressive over time. Therfore think about protecting your...
Author: Microsoft Swiss Security Team Date: 04/11/2006
Did you ever think about patching your printer?
We all think about patching Windows, Office, the Backup Software, etc. Who of you thinks of the...
Author: Microsoft Swiss Security Team Date: 04/10/2006
Forensic Analysis of the Windows Registry
Windows registry contains lots of information that are of potential evidential value or helpful in...
Author: Microsoft Swiss Security Team Date: 04/08/2006
Trend Micro data revealed due to virus
There are days, where a lot of companies will think: Glad it did not happen to us:...
Author: Microsoft Swiss Security Team Date: 04/07/2006
Pescatore (Gartner) on 3rd Party Patch
A pretty cool quote from John Pescatore, Gartner on third-party patches: My neighbor is a smart guy,...
Author: Microsoft Swiss Security Team Date: 03/31/2006
ActiveX Change can be disabled
Mike Nash just published information about the ActiveX fix on the MSRC blog. The most important part...
Author: Microsoft Swiss Security Team Date: 03/29/2006
IE Vulnerability Update
There are at least two third party patches for the IE vulnerability out there. Please be aware of...
Author: Microsoft Swiss Security Team Date: 03/28/2006
ActiveX Behavior Change
Several times already we (Microsoft) infomred about a change we will ahve to make in the way we...
Author: Microsoft Swiss Security Team Date: 03/27/2006
Application Threat Modelling
This February I had to opportunity to meet our internal IT Threat Modelling team together with a...
Author: Microsoft Swiss Security Team Date: 03/25/2006
Public IE Vulnerability
I get questions regarding the recently published vulnerability that might crash IE. The best...
Author: Microsoft Swiss Security Team Date: 03/22/2006
We are at TechDays
I know that we have been pretty slow on blogging over the last weeks but we have been struggling...
Author: Microsoft Swiss Security Team Date: 03/17/2006
Vulnerabilities to Sell
The trend continues: Initially there has been the debate around irresponsible and responsible...
Author: Microsoft Swiss Security Team Date: 03/17/2006
News from Internet Explorer 7
Last Friday and this Monday we ahd the pleasure to host two persons from the IE-team from Redmond....
Author: Microsoft Swiss Security Team Date: 03/06/2006
Problems with Nyxem?
It is pretty interesting: There is often just one AV-vendor making noise around some issues and once...
Author: Microsoft Swiss Security Team Date: 03/04/2006
Hybrid Worm (2)???
It seems that I hit the nail yesterday as we had some customer inquiries yesterday and today....
Author: Microsoft Swiss Security Team Date: 03/02/2006