MVP Jubo Security Blog : Windows Security

Microsoft Security Essentials is out!

jubo — Wed, 30 Sep 2009 09:49:00 GMT

Today it's there: Microsoft Security Essentials. The free antivirus program of Microsoft. You can download it from this website: Microsoft Security Essentials.

As always, you have to uninstll any other antivirus program first before installing MSE.

Have a wonderful day!

New Microsoft site with latest online safety information

jubo — Wed, 09 Sep 2009 04:12:00 GMT

Keep up to date with the latest safety information from Microsoft. Watch videos or get information from others through online communities. Protect yourself from fraud, secure the data and, if you think it's helpful, share it with others on Facebook, Twitter or elsewhere. Check out Microsoft Online Safety website.

Microsoft Security Advisory: Video ActiveX control could allow remote code execution

jubo — Thu, 09 Jul 2009 18:15:00 GMT

Microsoft has released a Microsoft security advisory about this issue for IT professionals. The security advisory contains additional security-related information. To view the security advisory, visit the following Microsoft Web site:

http://www.microsoft.com/technet/security/advisory/972890.mspx

A workaround is available in Microsoft Knowledge Base Article 972890.

Affected software are versions of Windows server 2003 and Windows XP, incl. the XP Pro x64 Edition.

Microsoft Security Essentials Beta available for download

jubo — Wed, 24 Jun 2009 01:43:25 GMT

If you’re interested in the Beta of Microsoft Security Essentials and you want to download it, then go to their web site MSE Beta. Better hurry because it seems it’s topped at 75,000 downloads.

If you have any questions then you’ll find the answers at: Microsoft Answers.

Currently available for USA, Israel, People’s Republic of China, and Brazil.

Out-of-band security update: MS08-067 – Critical

jubo — Thu, 23 Oct 2008 17:38:00 GMT

Last night, European time, Microsoft released an out-of-band security update. This update resolves a vulnerability in the Server service. The vulnerability could allow remote code execution if an affected system received a specially crafted RPC request.

For more information check the Microsoft Security Bulletin MS08-067. See also Microsoft Security Response Center (MSRC) post: Additional Microsoft Security Bulletin Webcasts and Information Available for MS08-067. For an in-dept technical version check the Microsoft Security Vulnerability Research & Defense blog: More detail about MS08-067, the out-of-band netapi32.dll security update.

In the meantime, move your mouse to the Microsoft Update web site and start patching your system. Me, myself and I have installed it on Windows XP Pro machines and Server 2003 machines without any problem.

October: National Cyber Security Awareness Month

jubo — Fri, 03 Oct 2008 23:58:00 GMT

Okay, I'm here in Holland. So, we don't really have a "national cyber security awareness month". But still... wherever you are, there should always be cyber security awareness and not only this month. There are always some basic steps to take like keep that firewall running, keep the Windows software updated and run only updated antivirus and spyware software.

For information about this year's events, visit the NCSA (National Cyber Security Alliance) Web site at http://www.staysafeonline.info.

Related link: Microsoft's Security at Home.

Advanced notification August 2008

jubo — Fri, 08 Aug 2008 08:04:54 GMT

On August 12 Microsoft plans to release 12 security updates, which affect Microsoft Windows as well as Microsoft Office software. There will be 7 "critical" and 5 "important" updates.

From the BBC News Desk: Fix found for net security flaw

jubo — Wed, 09 Jul 2008 08:37:09 GMT

This article at the BBC web site,

Computer experts have released software to tackle a security glitch in the internet's addressing system.
The flaw, discovered by accident, would allow criminals to redirect users to fake webpages, even if they typed the correct address into a browser.
Internet giants such as Microsoft are now distributing the security patch.

More at the BBC site here...

is related to the security patch Microsoft posted yesterday: Microsoft Security Bulletin MS08-037:

Summary:

This security update resolves two privately reported vulnerabilities in the Windows Domain Name System (DNS) that could allow spoofing. These vulnerabilities exist in both the DNS client and DNS server and could allow a remote attacker to redirect network traffic intended for systems on the Internet to the attacker’s own systems.
This security update is rated Important for all supported editions of Microsoft Windows 2000, Windows XP, Windows Server 2003, and Windows Server 2008.

Security update for Opera 9.5

jubo — Mon, 07 Jul 2008 09:09:22 GMT

Opera released a security and stability upgrade. For details see the Security section of the Changelog.

Download Opera's newest release Opera 9.51 for Windows.

Update for Windows Update

jubo — Fri, 04 Jul 2008 06:27:54 GMT

Starting at the end of this month, Microsoft Update Product Team will be rolling out an update to the Windows Update agent. You can read all the information in the posting at their team blog: Upcoming Update to Windows Update.

What it means for you... is that unless you have chosen "Turn Automatic Updates Off", you will receive this update. Otherwise you have to check for updates and install it yourself manually.

Adobe Reader 8.1.2 Security Update

jubo — Wed, 25 Jun 2008 09:38:18 GMT

While you're busy updating your software, or maybe you just see this message, then it's a good idea to move your mouse to Adobe dot com too. They just released a security update for Adobe Reader.

For more information check the advisory: Adobe Reader 8.1.2 Security Update 1 - multiple languages and/or the release notes.

Windows XP SP3 Released

jubo — Tue, 13 May 2008 09:50:58 GMT

A few weeks sick, a virus caught me... and see what's happening! Microsoft releases SP3 for Windows XP. If you want to install it then you can get it at the Microsoft Download Center. But before you install it there's always important information to read. Especially if you have other version of IE installed than IE7.

Please first read:

Jane Maliouta's, Deployment PM for IE8, blog at IEBlog.
Then there's this article at Microsoft's Help and Support site: Steps to take before you install Windows XP Service Pack 3.
Spyware Doctor 5.5 or earlier versions of Spyware Doctor may cause Windows XP Service Pack 3 to stop responding when you try to install or to uninstall the service pack

Last but not least: Windows XP Service Pack 3 Overview and that's where you can download it too. Or just check at the Windows Update web site and download a smaller version.

If you have an AMD-based computer then this article, by Jesper Johansson, might be interested for you too: Does your AMD-based computer boot after installing XP SP3?

Windows Live OneCare Beta (v2.5)

jubo — Tue, 15 Apr 2008 12:51:00 GMT

Since a few weeks a new Windows Live OneCare v2.5 BETA has been released. If you're interested then click here and fill out a short survey at Microsoft Connect.

Of course you'll have to uninstall the previous version first, or any other antivirus program you may have installed. For more information check the Windows Live OneCare at Microsoft Connect. Support forums and where you can get a lot of good information is at Windows Live OneCare Support Forums.

More details at: The Windows Experience Blog

Windows Vista One Year Vulnerability Report

jubo — Thu, 24 Jan 2008 08:03:00 GMT

Microsoft's Jeff Jones released the 1 year vulnerability report for Windows Vista.

This paper analyzes the vulnerability disclosures and security updates for the first year of Windows Vista and looks at it in the context of its predecessor, Windows XP, along with other modern workstation operating systems Red Hat, Ubuntu and Apple products.

Full report at: TechNet

Security Enhancements in Windows Vista™

jubo — Sat, 19 May 2007 17:54:00 GMT

Microsoft released a whitepaper in which it shows you how to achieve the right balance for managing security settings, given the varying needs of home, professional, and business users.

You can download it at the Microsoft Download Center.

Microsoft Malware Protection Portal

jubo — Thu, 26 Apr 2007 11:36:00 GMT

Just released: Microsoft Malware Protection Center portal. Will officially launch in July with additional features such as malware sample submission. If you think additional features would be useful then your feedback is welcome!

Source: Roger's Security Blog.

Patch will be released to address the Windows Animated Cursor Handling

jubo — Mon, 02 Apr 2007 18:57:00 GMT

Tomorrow, April 3rd, 2007. Microsoft will release a patch to address the vulnerability in Windows Animated Cursor Handling. The highest Maximum Severity rating for this is Critical. This updates will require a restart.

In the meantime keep your antivirus signature files updated. It can help to protect you against attempts to exploit this vulnerability.

For the latest developments regarding this issue see the MSRC Blog.

When the patch becomes available please install it as soon as it is released.

Mark Russinovich and what's new in the Windows Vista kernel

jubo — Thu, 29 Mar 2007 13:02:00 GMT

Holiday is over and it's back to reality. During the Summit we had a very good session with Mark Russinovich on the security in Windows Vista. I couldn't join the closing dinner where Mark would be present too as I had other arrangements. But there are three good articles at the TechNet web site by Mark Russinovich:

Inside the Windows Vista Kernel: Part 1

Thread priority and scheduling
File-based symbolic links
Canceling I/O operations

Inside the Windows Vista Kernel: Part 2

Memory management
Startup and shutdown
Power management

Inside the Windows Vista Kernel: Part 3

Reliability
Recovery
Security

RAT: Remote Access Trojan

jubo — Thu, 22 Feb 2007 21:44:00 GMT

Remote Access Trojans (RATs) are malicious software programs that criminals can use to control your computer through your Internet connection.

A RAT can let a criminal view and change your computer's files and functions, monitor and record your activities, and use your computer to attack other computers without your knowledge.

Learn how RATs can get to your computer, what a RAT can do and more important how to help keep the RATs away in this Microsoft article: RATs: Remote Access Trojans and how to help avoid them.

"Winfixer" and "Errorsafe" through MSN Messenger banner advertisements

jubo — Sun, 18 Feb 2007 10:27:00 GMT

Excellent article by Sandi Hardmeier (MVP). Please read: WARNING: Winfixer and Errorsafe being distributed via MSN Messenger banner advertisements.