External News

Browse by Tags

• antivirus
• Backup
• Behaviour
• CIIP
• Competition
• Consumer
• Cybercrime
• Developer
• email
• Enterprise
• Events/Training
• Guidance
• Identity Management
• IE
• Incidents
• Law Enforcement
• Microsoft
• NAP IPSEC
• Network
• Office
• OS
• PKI
• politics
• Processes
• Remote Access
• SQL
• Strategy
• Survey
• Terrorism
• trends
• Virtualization
• WIFI
• Windows

• Apple Recommends Running Multiple AV Engines

  This is an interesting thing: I just read this post on ZDNet . The blamed us for being the key target for viruses and they always told me that they do not have a security problem. I am convinced that there is no software product having no security vulnerabilities... Posted Dec 03 2008, 11:45 AM by TechNet Blogs Filed under: Security, Competition, Policy

• New Security Development Lifecycle (SDL) Programs

  As part of its commitment to make the SDL more accessible to every developer, Microsoft is delivering three new programs and tools: discover the Microsoft SDL Pro Network, the Microsoft SDL Optimization Model, and the Microsoft SDL Threat Modeling Tool... Posted Nov 24 2008, 06:14 AM by TechNet Blogs Filed under: Security, Microsoft, Enterprise, Developer, Policy, Guidance

• Get Safe Online – This Week

  We see this concept all over Europe: There are National Security Awareness Days (or how ever they are called) in a lot of European countries. During these events, the industry (from software to banking to government to …) gets together to raise awareness... Posted Nov 18 2008, 07:00 AM by TechNet Blogs Filed under: Security, politics, Consumer, Policy, Cybercrime, Events/Training, Behaviour

• Security through Collaboration

  If you ever heard me keynote an event you know that one of the key messages I have is, that partnerships are necessary in order to be able to protect against today's threats. At Black Hat USA we just announced a new program called Microsoft Active... Posted Aug 06 2008, 09:35 AM by TechNet Blogs Filed under: Security, Microsoft, Policy, Processes, Incidents

• Microsoft Security Assessment Tool v.3.5 (2008-06)

  The Microsoft Security Assessment Tool (MSAT) is a free tool designed to help organizations like yours assess weaknesses in your current IT security environment, reveal a prioritized list of issues, and help provide specific guidance to minimize those... Posted Jun 23 2008, 02:29 AM by TechNet Blogs Filed under: Security, Windows, Microsoft, OS, Enterprise, Policy, Guidance

• Microsoft is winning the NAC war, expert says

  Security guru Joel Snyder from Opus One recently starred as the guest of a live Network World chat where he discussed the state of network access control. Snyder says that Microsoft is emerging as one of the clear winners of NAC, but that Microsoft's... Posted May 27 2008, 03:32 AM by TechNet Blogs Filed under: Security, Windows, Microsoft, Network, Enterprise, trends, Policy

• Managing the Windows Vista Firewall

  If you're an IT pro who is looking a bit more seriously at Windows Vista for your enterprise environment, you should take a close look at the firewall. Once you realize what the Windows Vista firewall can do, you may want to renegotiate the agreement... Posted May 26 2008, 06:58 AM by TechNet Blogs Filed under: Security, Windows, Microsoft, Network, Consumer, OS, Enterprise, Developer, Policy, Strategy

• Is Security Research Ethical?

  Shoaib's blog actually pointed me to a pretty interesting article called Face-Off: Is vulnerability research ethical? - Security Experts Bruce Schneier & Marcus Ranum Offer Their Opposing Points of View . Not surprisingly Bruce says "yes"... Posted May 22 2008, 08:26 AM by TechNet Blogs Filed under: Security, Policy

• Microsoft calls for talks on Internet trust, safety

  Microsoft today called for broad discussions about the safety of the Internet in an initiative it dubbed "End to End Trust" in a white paper released during the RSA Conference that opened today in San Francisco. In a keynote address at the security conference... Posted Apr 11 2008, 06:16 AM by TechNet Blogs Filed under: Security, IE, Windows, Microsoft, Virtualization, email, Network, Consumer, antivirus, OS, Enterprise, Identity Management, Developer, trends, WIFI, PKI, Policy, Strategy, NAP IPSEC, Remote Access

• Don't blame 'stupid users' for data breaches

  Security breaches that can be traced back to the actions of one individual are not the fault of one "stupid" employee but rather a failure to educate and engage the whole workforce around the importance of good security practice, according to a leading... Posted Apr 08 2008, 06:26 AM by TechNet Blogs Filed under: Security, Enterprise, Policy, Survey

• Sun and Apple Updates – A Sheer Nuisance!!

  As you all know: I rarely blog on competitors and – even rarer – blog about them negatively. But this time I definitely had to: As most of us I have QuickTime on my PC as well as a Java VM. I know that there are alternatives for this software and the... Posted Mar 19 2008, 05:26 PM by TechNet Blogs Filed under: Security, Policy

• Technology to Circumvent Censorship

  Well, I was thinking hard whether I shall blog on that or not. But then a friend of mine brought up a valid point: I am always claiming that a lot of issues on the Internet are missing a public debate yet, what is more important - and this might well... Posted Mar 15 2008, 05:52 AM by TechNet Blogs Filed under: Security, Policy

• ITU study group Q.22/1 - Report on best practices for a national approach to cybersecurity

  A management framework for organizing national cybersecurity efforts: http://www.itu.int/ITU-D/cyb/cybersecurity/docs/itu-draft-cybersecurity-framework.pdf Urs...( read more ) Share this post: Read More... Posted Feb 21 2008, 07:28 AM by TechNet Blogs Filed under: Security, Enterprise, Policy, Strategy, CIIP

• Introducing SAFECode [Michael Howard]

  SAFECode, the Software Assurance Forum for Excellence in Code, introduced its first white paper, "Software Assurance: An Overview of Current Industry Best Practices." The organization was founded by Microsoft, Symantec, EMC, SAP and Juniper to advance... Posted Feb 21 2008, 07:15 AM by TechNet Blogs Filed under: Security, Windows, Microsoft, OS, Enterprise, Developer, Policy, Strategy

• Minimizing User Rights Can Increase Security

  Taking a least-privilege approach to user accounts is a key part of any in-depth defense strategy, many analysts and security pros say. "I think it's very important … not even just as [a component] of security, but in the broader sense [of] risk posed... Posted Feb 07 2008, 02:42 AM by TechNet Blogs Filed under: Security, Office, IE, Windows, Microsoft, email, Consumer, antivirus, OS, Enterprise, Developer, trends, Policy, Strategy

• Remote Workers Still Living Dangerously, Cisco Study Says

  If it seems that -- despite your company's best efforts to educate users about security -- users are actually behaving less responsibly, don't panic. Your organization isn't the only one. In fact, Cisco Systems Inc. today is releasing the results of a... Posted Feb 07 2008, 02:33 AM by TechNet Blogs Filed under: Security, Enterprise, trends, Policy, Survey, Remote Access

• Oracle’s answer with regards to Security Patches

  You probably remember my post regarding Oracle DBAs rarely install patches . It was about a study where Sentrigo claimed (after having asked 305 people) that more than 2/3 of Oracle DBAs do not install the patches provided by Oracle. Now Oracle recently... Posted Feb 04 2008, 09:42 AM by TechNet Blogs Filed under: Security, Policy, Processes, Incidents

• ISC2: HR given guide to info security skills

  ISC2, the non-profit international body that educated and certifies information security professionals, today announced the publication of its "Hiring Guide to the Information Security Profession". The free 30-page guide is designed to provide human resources... Posted Jan 22 2008, 07:34 AM by TechNet Blogs Filed under: Security, Enterprise, trends, Policy

• What is more important: Security or Privacy?

  This is basically a very interesting and pretty fundamental question for the society. After 9/11 the US changed the way they work significantly. Just as an example: Airlines had to give the US government information about passengers flying to the US that... Posted Jan 17 2008, 02:40 AM by TechNet Blogs Filed under: Security, Policy, Terrorism, Cybercrime, Law Enforcement

• Microsoft placed in Visionaries Quadrant in latest Gartner SSL VPN Magic Quadrant

  On December 6, analyst firm Gartner Inc., announced that Microsoft Intelligent Application Gateway (IAG) 2007 is positioned in the Visionaries quadrant of their 2007 SSL VPN Magic Quadrant report. Not only was IAG described as an “excellent new product... Posted Jan 07 2008, 05:04 AM by TechNet Blogs Filed under: Security, Windows, Microsoft, Consumer, OS, Enterprise, trends, Policy, Strategy

• Tech Insight: Microsoft's IPSec and NAP/NAC

  Windows' built-in security capabilities offer endpoint alternative to NAP/NAC Microsoft’s support of the IP Security (IPSec) standard was enhanced with the release of Windows Vista this year, and interest in the technology will likely grow with the introduction... Posted Dec 29 2007, 01:24 PM by TechNet Blogs Filed under: Security, Windows, Microsoft, OS, Enterprise, WIFI, Policy, Strategy, NAP IPSEC

• Microsoft Files Patent for HoneyMonkey Exploit Finder

  Microsoft has filed a patent claim for the Strider HoneyMonkey malware/exploit detection system created by our internal research unit. The claim, currently being reviewed at Peer-to-Patent. The HoneyMonkey system, first discussed in August 2005, is best... Posted Dec 29 2007, 01:19 PM by TechNet Blogs Filed under: Security, Windows, Microsoft, Consumer, antivirus, OS, Enterprise, trends, Policy, Strategy

• New Microsoft Security Vulnerability Research and Defense blog

  The Security Vulnerability Research & Defense blog’s intent is to provide more information about Microsoft vulnerabilities, mitigations and workarounds, and active attacks. http://blogs.technet.com/swi/ Urs...( read more ) Share this post: Read More... Posted Dec 28 2007, 05:21 PM by TechNet Blogs Filed under: Security, Office, IE, Windows, Microsoft, SQL, email, Consumer, Backup, antivirus, OS, Enterprise, Developer, WIFI, PKI, Policy

• How Microsoft does IT - Showcase information and documentation from Microsoft IT

  Microsoft IT is regularly posting articles as best practices information about how Mirosoft's internal IT is operating their systems and services. I have picked out some interesting and security related posts: Enabling Information Security through HBI... Posted Dec 18 2007, 02:47 AM by TechNet Blogs Filed under: Security, Microsoft, Enterprise, Policy, Strategy

• Enterprise@Risk: 2007 Privacy & Data Protection Survey

  Reportable and multiple privacy breaches rising at alarming rate! Personally identifiable information of customers and employees is being exposed – frequently and repeatedly – potentially putting hundreds of thousands of individuals at risk and exposing... Posted Dec 17 2007, 04:37 AM by TechNet Blogs Filed under: Security, Enterprise, trends, Policy, Strategy