-
-
Popular Posts
- Do We Really Want Privacy? 2 comment(s)
- About 0 comment(s)
- The Risk of Blogging 0 comment(s)
- The Future of Cybercrime 0 comment(s)
- The Importance of Application Security 0 comment(s)
Users and Hits
My Trips
Category Archives: Incidents
How to Deal With Vulnerabilities
This is always a fairly emotional theme. What is better to protect the ecosystem? Public or private disclosure? Should somebody paying for vulnerabilities or not? Is a vulnerability auction ethical or not? I know that there are numerous views on … Continue reading
Posted in Incidents, Microsoft, Processes
Tagged Incident Response, Incident Sharing, Processes
1 Comment
Attacks on the Windows Help and Support Center Vulnerability (CVE-2010-1885)
I blogged about the vulnerability which was publically disclosed by a researcher working for Google earlier this month. In the meantime the attacks started to increase. I think that it would be important for you to look at what is … Continue reading
Vulnerability Disclosure to Compete?
As you know (I stress that fairly often ), I am Swiss. The reason why I am stressing this today is that I want to give you an example on security from the Swiss market: The banks here on place … Continue reading
Microsoft Security Intelligence Report – What it means for EMEA
“Unfortunately” I have been on vacation when we released the Security Intelligence Report last week. Nevertheless I would like to take the opportunity and look at it more from a EMEA perspective. One of the interesting data points we always … Continue reading
Posted in Crime, Cybercrime, Government, Incidents, Industry, Law Enforcement, Microsoft, Security, Trends
Tagged Behavior, Botnet, Collaboration, Cybercrime, Ecosystem, Hacking, Incidents, Malware, Statistics
Leave a comment
The Latest Internet Explorer 0Day
As it happens: I have been skiing last week (the weather was gorgeous) and now I am back (unfortunately) and confronted with the next Internet Explorer 0Day vulnerability, which already causes noise – in my opinion too much for the … Continue reading
Posted in Cybercrime, Incidents, Incidents
Leave a comment
IE Vulnerability: Going Out of Band
Just to make sure you have seen that: We just released a blog Security Advisory 979352 – Going out of Band Quoting the blog: Based on our comprehensive monitoring of the threat landscape we continue to see very limited, and … Continue reading
Posted in Incidents
Leave a comment
Update on the Internet Explorer Vulnerability
There was and still is a lot of noise regarding the Internet Explorer vulnerability reported in Microsoft Security Advisory 979352 – including the normal discussion about which browser is most secure. A discussion I do not want to get into … Continue reading
Posted in Incidents
Leave a comment
Security Advisory on the recent Internet Explorer Vulnerability
I guess you might have seen it by now but if not, please make sure you read and understand the material available: This night we released a Security Advisory on a Vulnerability in Internet Explorer Could Allow Remote Code Execution. … Continue reading
Posted in Incidents
Leave a comment
Leveraging Data Execution Prevention (DEP)
The recent IE attacks have show again that the current technology built in Windows Vista and Windows 7 could at least help to mitigate the attacks. One of these technologies which could be used more broadly is Data Execution Prevention … Continue reading
Posted in Incidents, Products
Leave a comment
“Black Screen of Death” Reports
Oh, wow – sometimes the power of social media, the blogs and the Internet can backfire. I guess in the meantime you have seen the claims by Prevx that approx. 80 Mio of PCs are affected by the Black Screen … Continue reading
Posted in Incidents, Products
Leave a comment