Even if you can't make it to San Francisco, you can still learn Bill Gates' insights on the state of security today during his RSA Conference keynote speech, "Security: Raising the Bar." Join host Mike Nash for this special edition of Security360 and hear Bill Gates live and in real time.
Register now.
Raising the BarAs a top company priority, Microsoft has dedicated a major portion of its focus and investments to security advances. Get a top-level look at this strategy and its progress. Hear firsthand how using technology innovation and adoption allows Microsoft to better protect its customers.
Find out Bill Gates' thoughts on:
- The evolving threats to trustworthy computing
- How the advances in Microsoft platform, products, and technologies are working to improve PC security
- Future innovations and solutions
Security360, The Third Tuesday of Each MonthThese free one-hour Web shows dish up insights on specific security topics in "byte-size" segments. Get the guidance you need in the time you have.
Don't miss Bill Gates speaking on the state of security. Secure a
reservation.
Live Video Webcast
February 15, 2005
9-10 A.M. (PT)
Related link: RSA Conference 2005
February 8, 2005 —— The security updates for February 2005 include several high-priority updates for Microsoft Windows that also affect Microsoft SharePoint, Microsoft Internet Explorer, and Microsoft Media Player technologies.
Included in this advisory are updates for newly discovered vulnerabilities. These vulnerabilities, broken down by severity are:
Critical:
- MS05-005: Vulnerability in Microsoft Office XP could allow Remote Code Execution (873352)
- MS05-009: Vulnerability in PNG Processing Could Allow Remote Code Execution (890261)
- MS05-010: Vulnerability in the License Logging Service Could Allow Code Execution (885834)
- MS05-011: Vulnerability in Server Message Block Could Allow Remote Code Execution (885250)
- MS05-012: Vulnerability in OLE and COM Could Allow Remote Code Execution (873333)
- MS05-013: Vulnerability in the DHTML Editing Component ActiveX Control Could Allow Remote Code Execution (891781)
- MS05-014: Cumulative Security Update for Internet Explorer (867282)
- MS05-015: Vulnerability in Hyperlink Object Library Could Allow Remote Code Execution (888113)
Important:
- MS05-004: ASP.NET Path Validation Vulnerability (887219)
- MS05-007: Vulnerability in Windows Could Allow Information Disclosure (888302)
- MS05-008: Vulnerability in Windows Shell Could Allow Remote Code Execution (890047)
Moderate:
- MS05-006: Vulnerability in Windows SharePoint Services and SharePoint Team Services Could Allow Cross-Site Scripting and Spoofing Attacks (887981)
Source:
TechNetEnd-user version:
Microsoft Security
Technology Will Help Businesses Protect Messaging and Collaboration Servers From Viruses, Worms and Spam
REDMOND, Wash. --
Feb. 8, 2005 -- Microsoft Corp. today announced that it has signed definitive agreements to acquire Sybari Software Inc., a leading provider of security products that help more than 10,000 businesses worldwide protect their messaging and collaboration servers from viruses, worms and spam. Microsoft will use this acquisition to further provide its enterprise customers with new solutions to help protect them from malicious software.
"Enterprise customers face a complex set of attacks through their e-mail and collaboration infrastructure," said Mike Nash, corporate vice president of the Security Business and Technology Unit at Microsoft. "Through this acquisition, we're excited to be able to provide customers with a server-level anti-virus solution that delivers advanced file and content-filtering capabilities and the use of multiple scan engines. In this way, customers get choice, high-quality performance and the most up-to-date protection possible."
Full article:
PressPass
Microsoft's
Tim Rains has released two new tools to detect network sniffers. There are two versions of this tool: command line and a GUI version.
Both of these tools essentially have the same functionality:
- Query the local system’s network interfaces
- Query a single remote system’s interfaces
- Query a range of remote system’s interfaces
System Requirements:
For more information see:
Description of Promqry 1.0 and PromqryUI 1.0 Source:
Tim Rains' WebLog
DAILY DAT FAQ
Frequently Asked Questions on the Release of Daily DATs
Why is AVERT now releasing Daily DAT files?In 2004, we had an unprecedented rise in the number, propagation rate and prevalence of new malware.Through the year, AVERT saw a ten-fold increase in the number of virus submissions (from both virus-generated and from actual customers), a 250% increase in the rate of new malware development, and a 75+% increase in the number of emergency DAT releases.25 or more new Gaobot/Spybot/SDBot variants were received each DAY in 2004.In addition the growing amount of adware and Spyware require more consistent and available detection and removal.
AVERT believes that the current schedule of weekly and emergency DAT releases are becoming less effective in providing adequate protection for our customers.
Source:
McAfee