XP Antivirus 2008 now with sploits, Google Adwords affected

The issue of PatchGuard is a vitally important one, and we’re as concerned as the rest of the security community about what exactly will be available from Microsoft. My post yesterday on Symantec VP Rowan Trolloppe’s comments on...

“Patchou” (aka Cyril Paciullo) has just been given Microsoft MVP status. Worthy of congratulation, except… Patchou got his fame through a program called Messenger Plus!, which has the option of installing LOP (a not-so-pleasant...

Out of cycle… Typical download size: 250 KB , less than 1 minute A security issue has been identified in the way Vector Markup Language (VML) is handled that could allow an attacker to compromise a computer running Microsoft...

Scott Deacon at Microsoft Security response just posted a new blog entry. Microsoft may go out of cycle on the patch, they’re not seein many sties infected and they don’t recommend using the ZERT temporary patch. I’ll quote...

MS security response blog entry:Based on our investigation, this exploit code could allow an attacker to execute arbitrary code on the user's system. We also want you to know that we’re aware that this vulnerability is being...

Just for fun, Sunbelt researcher Adam Thomas (who discovered the VML exploit yesterday) has cataloged what is installed with one installation he observed. Epic quantities of junk:VirtumondeTrojan-PSW.Win32.Sinowal.aqBookedSpace...

Earlier we showed Microsoft’s security solutions being pushed in Vista. Now we see the same thing in Exchange 2007 (beta 2), right from the console, thanks to some pictures forwarded to me by a faithful blog reader. In this...

Doug Barney at Redmonmag preaches:What should you do? Don't blindly buy bigger and bigger Microsoft stacks. Just because it's integrated doesn't mean it's best in the long run. Remember, the chief advantage of any monopoly is...

Big reorg at Microsoft. And this is interesting: Dave Cutler, the father of NT (and arguably one of the greatest operating systems geniuses of all time) is now going off to work with Ray Ozzie on Live. From Paul Thurrott:

Following widespread angst and anger Microsoft have dropped their free of charge folder encryption trinket.After an availability of about 2 weeks Microsoft have pulled their folder encryption tool which was given away to users...

Yesterday we learned that Microsoft will be taking the unusual step of spifing resellers 20% of their license sales — in addition to their normal margins. It seems that it’s going to be more profitable to become a reseller of...

It’s very easy to point the figure at Microsoft whenever one considers application security issues. Lets face it, they are the biggest target in the known universe so all and sundry are going to have a pop at them.OpenOffice, the...

Well, this is rather interesting. The lawsuit alleges that in April 2006, Microsoft did not adequately disclose what the WGA software did once it was installed on computers. For example, Microsoft is alleged to have only...

Our Malware Research team is seeing the (recently patched) Microsoft MDAC RDS.Dataspace ActiveX vulnerability being exploited to install a backdoor Trojan on to user’s machines. While attacks exploiting this vulnerability...

This whole predatory pricing thing has been quite interesting. There are views all over the place. I want to point everyone to Microsoft’s latest quarterly earnings:Here’s where Microsoft makes its money:Client 2,458 Server and...