Jonathan Ness of Microsoft’s Security Research and Defense team explains the inner workings of the Data Execution Prevention technology that can help mitigate the targeted attacks exploiting the vulnerability in Internet Explorer right now.
Browsing Tag: Microsoft
According to a posting on the CPAN Testers’ blog, the CPAN Testers’ server has been being aggressively scanned by “20-30 bots every few seconds” in what they call “a dedicated denial of service attack”; these bots “completely ignore the rules specified in robots.txt”. Read the full article. [The H Security]
[img_assist|nid=2716|title=|desc=|link=none|align=left|width=122|height=83]Microsoft officials said on Sunday that they are continuing to investigate the attacks that are exploiting the unpatched flaw in Internet Explorer, but that the attacks right now are limited to specifically targeted activity against enterprise networks.
[img_assist|nid=2632|title=|desc=|link=none|align=left|width=154|height=84]Microsoft has shipped a security advisory with an urgent message for Windows XP users: Update your Flash Player immediately.The Adobe Flash Player 6 that ships by default in Windows XP is vulnerable to multiple code execution vulnerabilities that could lead to PC takeover attacks, according to the advisory.
[img_assist|nid=2464|title=|desc=|link=none|align=left|width=100|height=100]MS accepts there is an “inconsistency” in how IIS 6 handles semicolons in
URLs, but it denies that this lends itself to hacking attacks. Read the full article. [The Register]
[img_assist|nid=2272|title=|desc=|link=none|align=right|width=100|height=100]There are several ongoing investigations attempting to find the authors of the Conficker botnet, one of the fastest spreading worms in history, but those responsible for the worm have proven elusive. Read the full article. [TechTarget]
[img_assist|nid=2121|title=|desc=|link=none|align=left|width=100|height=100]Microsoft dismissed recently-disclosed threats to its BitLocker
disk-encryption technology as “relatively low risk,” noting that
attackers must not only have physical access to a targeted PC, but must
manipulate the machine two separate times. Read the full article. [Computerworld]
[img_assist|nid=2046|title=|desc=|link=none|align=left|width=100|height=100]The mysterious black screen of death problem that some Windows users have been experiencing in the last few days turns out not to be related to the latest round of Microsoft patches after all.
[img_assist|nid=1976|title=|desc=|link=none|align=right|width=100|height=100]The IDG News Service is reporting that Microsoft’s latest round of security patches appears to be causing some PCs to seize up and display a black screen, rendering the computer useless. The problem affects Microsoft products including Windows 7, Vista and XP operating systems.
[img_assist|nid=1979|title=|desc=|link=none|align=right|width=100|height=100]Researchers have released code that can compromise
Microsoft’s Internet Explorer browser, but the software is not as
reliable as first thought. Read the full article. [Computerworld]