Windows Vista is dramatically more secure than Windows XP, according Microsoft’s latest Security Intelligence Report. The infection rate of Windows Vista SP1 was 61.9 percent less than Windows XP SP3, the company said.[img_assist|nid=1495|title=|desc=|link=none|align=right|width=115|height=115]The report covers the first half of 2009 and is the seventh such twice-yearly report the company has issued. The study found that for all Microsoft operating systems that the most current service pack is always the least infected, based on infections per 1,000 computers running each OS. Windows 7 was not included in the report. Read the full report [Network World]
Browsing Tag: Microsoft
Microso[img_assist|nid=1433|title=|desc=|link=none|align=left|width=115|height=115]ft Corp. pours more money into software security than any other
major vendor both because it has to and because it can. Yet for all the
investments in security, the number of vulnerabilities discovered in
the company’s products has increased over the years, prompting
questions over whether the company has reached the limits of its
ability to debug software.
Microsoft has released
a free tool for retroactively hardening applications against known
attacks, without recompiling the program[img_assist|nid=1293|title=|desc=|link=none|align=right|width=115|height=115] with a special compiler flag.
The Enhanced Mitigation Evaluation Toolkit
(EMET) allows developers and administrators to activate specific
protection mechanisms in compiled binaries without requiring access to
the source code. The tool is currently able to prevent or impede four
attack techniques. Read the full story [The H Online] See Microsoft blog post on EMET [technet.com]
After releasing its largest-ever group of security[img_assist|nid=1292|title=|desc=|link=none|align=left|width=120|height=115] patches two weeks ago, Microsoft has done a little cleaning up.Over the past few days, the company has re-released two security updates and issued a workaround for a Windows CryptoAPI patch that caused Microsoft’s own instant-messaging server to crash. Read the full story [IDG News Service/Robert McMillan]
Microsoft Windows 7 is on its way to[img_assist|nid=708|title=|desc=|link=none|align=right|width=115|height=115]morrow, and it is bringing with it a set of security features Microsoft hopes will appeal to enterprises.The Windows 7 security story has three main chapters that have received a fair amount of attention – DirectAccess, BitLocker To Go and AppLocker. With these, capabilities like Branchcache and enhancements to features like user account control (UAC), officials at Microsoft feel they are pushing out their most secure operating system yet. Read the full story [eWEEK/Brian Prince]
The growing use of social networking sites is leaving PC inadvertently open to identity thieves warned Hugh Thompson, chief security strategist at People Security.
Speaking at the RSA Europe Conference, Thompson said that people were unaware just how many clues they left for fraudsters. He said such carelessness was fuelling the rise of cybercrime. He told the conference about the way he managed to access one of his wife’s friend’s bank account in a couple of hours using publicly available data – a process that he had previously documented in a Scientific American article. He warned that most people’s private accounts could be accessed in this way. Read the full article [Techworld/Maxswell Cooter]
[img_assist|nid=679|title=|desc=|link=none|align=left|width=115|height=115]One week after the release of its Microsoft Security Essentials utility, Microsoft is sharing some very useful data on malware infections globally.In the first week alone, the tool counted four million detections on 535,752 distinct machines, with ID-theft related Trojans sitting atop the detected category in the US. China has lots of potentially unwanted software threats, and worms (particularly Conficker) are very active in Brazil.
[img_assist|nid=494|title=|desc=|link=none|align=left|width=115|height=115]Microsoft has announced plans to give away free versions of its COFEE (Computer Online Forensic Evidence Extractor) utility to help law enforcement agencies in cyber-crime investigations. COFEE uses digital forensic technologies to help investigators gather evidence of live computer activity at the scene of a crime, regardless of technical expertise.
[img_assist|nid=492|title=|desc=|link=none|align=right|width=100|height=151]Mozilla temporarily added the dangerous Microsoft .NET Framework Assistant add-on to its blacklist over the weekend, a move that effectively disabled the dangerous extension and plug-in for all Firefox users. However, after some clarifications from Redmond, the add-on was unblocked.
[img_assist|nid=490|title=|desc=|link=none|align=left|width=115|height=115]Microsoft is blaming human error for the the critical SMB v2 vulnerability that exposed Windows users to remote code execution attacks and argues that it’s near impossible to catch these types of bugs with existing code review tools and techniques.