Roger's Security Blog
As Chief Security Advisor of Microsoft EMEA - lets share interesting security information
Both Sides of the Windows 7 UAC Problem
I have to come back to the UAC problem again. I just read a good article from Larry Seltzer on...
Author: rhalbheer Date: 02/05/2009
The Way to a Zero Day
No, sorry but this is not a tutorial I just read this blog post on Websense which is pretty...
Author: rhalbheer Date: 02/05/2009
The Windows 7 UAC “Vulnerability”
It is always interesting how some things spin off. The claimed UAC vulnerability in Windows 7 in one...
Author: rhalbheer Date: 02/03/2009
Data Protection Day 2009
In early December I blogged about the Privacy Video Competition of the Data Protection Day. Today is...
Author: rhalbheer Date: 01/28/2009
Piracy and Security (part 1.5)
Well, it is not really a follow up of my last post but goes into the same direction: A few years ago...
Author: rhalbheer Date: 01/26/2009
Centralized Information About The Conficker Worm
Since I enabled Live chatting on my blog I got several questions about Conficker already, which I am...
Author: rhalbheer Date: 01/23/2009
Comments on US-CERTs Advisory on Auto-Run
You might have seen the advisory of the US-CERT titled Microsoft Windows Does Not Disable AutoRun...
Author: rhalbheer Date: 01/22/2009
Is Mozilla really the most secure Web Browser?
On https://en-us.www.mozilla.com/en-US/firefox/security/ Mozilla claims that Firefox is “The Safest...
Author: rhalbheer Date: 01/19/2009
Conficker and Microsoft Anti-Malware Software
I want to add a few things as it is still not over: More and more enterprises are still hit. My last...
Author: rhalbheer Date: 01/14/2009
Additional Information on Conficker – MSRT removing Conficker
Over the last few days I blogged several times about Conficker and some of the posts caught quite...
Author: rhalbheer Date: 01/13/2009
Russian Roulette with your Network (part 2)
My latest blog post on this matter generated quite some attention. Based on what happened since...
Author: rhalbheer Date: 01/11/2009
Apple releases Keyboardless Laptop
Wow, there are news, which we cannot cope with. Apple just announced the first laptop without...
Author: rhalbheer Date: 01/09/2009
Windows 7 Beta and Windows Live
You might have heard it: Yesterday at CES, Steve Ballmer made two very important announcements: The...
Author: rhalbheer Date: 01/08/2009
Network Access Protection Client for Mac and Linux
This is very exciting news: Unet, one of our NAP partners now delivers a NAP Client for Mac and...
Author: rhalbheer Date: 01/07/2009
Russian Roulette with your Network
First of all, before I really start, I hope that you all had a great start in 2009. Mine was...
Author: rhalbheer Date: 01/04/2009
Spying on Smartphones
I was recently at an event for Law Enforcement where one of the discussion points was how critical...
Author: rhalbheer Date: 12/26/2008
SQL Injection – again?
This week I had – again – a longer mail thread on SQL Injection attacks. Probably it caught me at...
Author: rhalbheer Date: 12/22/2008
Stealing the Empire State Building in 90 Minutes
You do not trust e-Business? Why do you trust “normal” business then? Read this: Newspaper 'Steals'...
Author: rhalbheer Date: 12/18/2008
Internet Explorer Security Update Ready
Go out there and install the update immediately now. Here is the bulletin: MS08-078 - Security...
Author: rhalbheer Date: 12/17/2008
IMPORTANT: IE Vulnerability: Out of Band Release Scheduled for Tomorrow
Just as a short notice: We just started to communicate that we will release a security update for...
Author: rhalbheer Date: 12/16/2008
Why you should clean your devices before selling them
Outch: McCain campaign sells unwiped Blackberry for $20 Roger
Author: rhalbheer Date: 12/16/2008
Videos about the latest Security Development Lifecycle
I know that this is not particularly news but nevertheless it could well be that the non-developers...
Author: rhalbheer Date: 12/15/2008
Vulnerability in Internet Explorer Could Allow Remote Code Execution
You know that I rarely blog on Advisories we publish unless they are heavily critical. I just want...
Author: rhalbheer Date: 12/13/2008
Privacy Video Competition
On January 28th the European Union is holding the Data Protection Day. To prepare for that, they are...
Author: rhalbheer Date: 12/11/2008
Important Privacy Announcement
I wanted to make you aware of a very important announcement we made earlier today. As you...
Author: rhalbheer Date: 12/09/2008
Never Leave your PC Unlocked (or have additional protection)
Author: rhalbheer Date: 12/08/2008
Is there a Botnet building on MS08-067 exploits?
There are a lot of reports on a Botnet building on the back of exploits targeting MS08-067: New...
Author: rhalbheer Date: 12/07/2008
Security and Piracy – a Correlation?
I am working on a blog post on Security and Piracy looking into the data I have available. Probably...
Author: rhalbheer Date: 12/07/2008
98% unpatched – and I am one of them :(
Well, you saw my post earlier this week on the 1.96% of PCs being updated according to Secuina....
Author: rhalbheer Date: 12/05/2008
Only 1.91% of PCs are patched!
Well, honestly, I am not completely clear how statistically relevant this data point is. I just read...
Author: rhalbheer Date: 12/04/2008
EMC/RSA and Microsoft: Partnership Announcement
I am more than pleased to inform you that we announced today a partnership between EMC/RSA and us....
Author: rhalbheer Date: 12/04/2008
Article was Bogus: Do Mac Users not need Anti-Virus Protection?
Today I was having a discussion with a religious Mac fan claiming that the only problem with...
Author: rhalbheer Date: 12/04/2008
Apple Recommends Running Multiple AV Engines
This is an interesting thing: I just read this post on ZDNet. The blamed us for being the key target...
Author: rhalbheer Date: 12/03/2008
Some Thoughts on our Anti-Malware Strategy
You will definitely have heard that we change our Anti-Malware Strategy: We recently announced that...
Author: rhalbheer Date: 12/01/2008
Bitlocker now FIPS 140-2 Certified for Windows Vista SP1 and Windows Server 2008
Just a quick one: We received the FIPS 140-2 certification for Bitlocker in Windows Vista SP1 and...
Author: rhalbheer Date: 12/01/2008
MS08-067 – ACT NOW!
I blogged today about the work outbreak. We are seeing an increasing number of critical support...
Author: rhalbheer Date: 11/26/2008
Attacks on MS08-067
As we were pushing on our Out-of-Band release earlier this month we tried to make you understand...
Author: rhalbheer Date: 11/26/2008
Security Risks in the Supply Chain?
At the moment I am travelling through the Gulf in order to launch the Security Intelligence Report...
Author: rhalbheer Date: 11/24/2008
How Spam Filters work
Just a short one: I think I had to feed that into the requirements list for our Exchange team:...
Author: rhalbheer Date: 11/18/2008
Security – One of the Key Reasons to Migrate to Windows Vista (part 2)
In my last post, I briefly touched on different features of Windows Vista, which I think are...
Author: rhalbheer Date: 11/16/2008
Security – One of The Key Reasons to Migrate to Windows Vista (part 1)
The value of Windows Vista is often questioned. There are a lot of customers who still think that...
Author: rhalbheer Date: 11/11/2008
Safe Social Networking
I am often asked by a lot of people what my view is on the social networks like Facebook and what I...
Author: rhalbheer Date: 11/09/2008
The Next Version of ISA Server (“live” from TechEd EMEA)
If is once again one of these posts with the start like “I am just sitting in a session…”. Actually...
Author: rhalbheer Date: 11/04/2008
Security Intelligence Report v5 Live!
As you are probably used from us, we are issuing our Security Intelligence Report twice an year. It...
Author: rhalbheer Date: 11/03/2008