Erez Benari's Blog
-
MSRT October 2013 – Shiotob
This month the Malicious Software Removal Tool (MSRT) is giving some special attention to two malware families - Win32/Foidan and Win32/Shiotob.
-
Trust and Transparency Continue to be Important for Cloud Customers
By Adrienne Hall, General Manager, Trustworthy Computing
-
The October 2013 security updates
This month we release eight bulletins – four Critical and four Important - which address 25* unique CVEs in Microsoft Windows, Internet Explorer, SharePoint, .NET Framework, Office, and Silverlight. For those who need to prioritize their deployment planning, we recommend focusing on MS13-080, MS13-081, and MS13-083.
-
An update on the bounty programs
Back in June of this year, we announced three new bounty programs that will pay researchers for techniques that bypass built-in OS mitigations and protections, for defenses that stop those bypasses and for vulnerabilities in Internet Explorer 11 Preview. This past Friday, we provided some additional details about the results of the IE11 Preview bounty program, which covered the first 30 days of the preview period. Today, we are announcing James Forshaw, a security researcher with Context Information Security, has been awarded the first Mitigation Bypass Bounty, which comes with a prize of $100,000.00. As a reminder, this is an ongoing program, so if you are interested in participating, check out all the details here.
-
Lync 2013 Support added to System Center Advisor
Abstract: System Center Advisor is a free service that helps IT Pros avoid known issues in their Lync deployments as well as other workloads. This post is to announce the support for Lync 2013. Authors: Mohamad Saleem, Kaushal Mehta, Nick Rosenfeld...(read more)
-
Advance Notification Service for October 2013 Security Bulletin Release
Today we’re providing advance notification for the release of eight bulletins, four Critical and four Important, for October 2013. The Critical updates address vulnerabilities in Internet Explorer, .NET Framework and Windows. The Critical update for Internet Explorer will be a cumulative update which will address the publicly disclosed issue described in Security Advisory 2887505.
-
Cloud Security: New Challenges, Same Principles
By Adrienne Hall, General Manager, Trustworthy Computing
-
Add desktop sharing to your application by using the Lync 2013 API
Abstract: Have you ever wanted to add a desktop sharing feature to your application so users can share their desktop, monitor, or a process with another user with the click of a button? This blog post introduces you to a new feature of the Lync 2013 API...(read more)
-
Mevade and Sefnit: Stealthy click fraud
Recently Trojan:Win32/Mevade made news for being the first large botnet to use Tor to anonymize and hide its network traffic. Within a few weeks, starting mid-August, the number of directly connecting Tor users increased by almost 600 percent - from about 500,000 users per day to more than 3,000,000.
-
System Center Community/MVP Update
As many of you have probably seen today, I have announced my resignation from Microsoft to go to a System Center partner company. Friday will be my last official day at Microsoft, but I don’t plan on changing my personal level of commitment to the System Center community. I’ll still be blogging, answering questions on forums, presenting at conferences, and working very closely with Microsoft on channeling the feedback I see on the community into building great solutions.