Most Popular Usernames and Passwords
No clue what the source is but if they are right, it is scary: DRG SSH Username and Password Authentication Tag Clouds
Roger
Interesting Discussion on Social Media
Recently, we had an interesting discussion on Social Media. It actually all started with somebody sending a link around called http://pleaserobme.com/ to see who actually just said that they are not at home – information which can easily be gained through Twitter search.
DetailsThe Risks of Unofficial Patches
As soon as zero-days appear on the Internet, two things happen: Somebody publishes an exploit and somebody else an unoffical patch. How trustworthy are such updates? How should you handle them? It is all about risk management!
DetailsUsing Facebook to Promote an Event – Lecture in Johannesburg Next Week
I am just preparing my trip to South Africa next week. Our Chief Security Advisor in South Africa, Khomotso Kganyago does an outstanding job keeping my busy. He put together a great agenda – I just hope I can cope with everything he is expecting from me. Part of it is a public lecture at…
DetailsKinect Opening a Whole New Way to Live?
Kinect will launch a our controller-less gaming device soon. However, is it for gaming only? This could be used much broader.
DetailsJust Installed Internet Explorer 9 Beta
I just installed Internet Explorer 9 and am ejoying the new look and feel and the speed…
Look at it yourself!
Data Governance in the Cloud
Our Trustworthy Computing team published a very good paper on Data Governance in the Cloud including areas to consider as well as some real hints how to appraoch it.
DetailsFree Software for NGOs
To prevent non-government organizations from falling victim to nefarious actions taken in the guise of anti-piracy enforcement, Microsoft will create a new unilateral software license for NGOs that will ensure they have free, legal copies of our products.
DetailsThe Future of Crime
An interesting website was just going live which shows the trends in Cybercrime and tries to anticipate the future development
DetailsThe Pentagon's Cybersecurity Strategy
I often talk to governments about their Cybersecurity strategy and agenda. Sometimes I think it is extremely hard for a government official or high-ranking military person to really understand what is going on in the cyber space and what this means. It is not too easy for people like us but for somebody who’s job…
DetailsEmerging Malware Threat on Exchange
If you have not seen it, you should probably have a brief look at it. We are seeing a new worm spreading on Exchange. This worm is not exploiting a vulnerability but uses social engineering to spread. Please read our MMPC blog at Emerging Malware Issue: Visal.B or look it up in our malware encyclopedia…
DetailsFTC Takes Action Against Employee Bloggers
This is an interesting information: FTC Takes Action Against Employee Bloggers. I am often asked about the rules and guidelines we have internally for bloggers. One is to be transparent. Whenever I blog, tweet or comment on a blog, I am always transparent that I am working for Microsoft – at least when I do…
DetailsThe Eleven Rules of Life
I know that they are very old but I did not know them. The oldest post I found was from 2004. People are saying that they are from Bill Gates but it seems that he used them during a speech in front of high-school students. I love them: RULE 1: Life is not fair –…
DetailsThe Community is Growing
In Off to See the World I told you that we are growing the Chief Security Advisor Community and then I updated you on the UK and Sweden. Now it is time to update you again. Just before the summer vacation, we could hire the Chief Security Advisor in South Africa who is Khomotso Kganyago.…
DetailsWhat it takes to shut down a botnet
It hits the press from time to time that somebody was successful taking down a botnet. We had some success as well with the Waledac Botnet Takedown. There is actually a good article on What it takes to shut down a botnet. When I was doing some bing-search on the botnet takedowns, I found good…
DetailsDo We Really Want Privacy?
I really love reading Kim Cameron’s Identity Weblog. Fairly often it is thought provoking… He recently wrote about his experience with the new iPhone privacy policy: Apple giving out your iPhone fingerprints and location. He was one (probably of the very few) reading the privacy policy and found the following statement: Collection and Use of…
DetailsThe Importance of Application Security
I think I told the story thousands of time and everybody knows it but I will do it the 1001st time now . When I joined Microsoft and became what is the Chief Security Advisor for Switzerland today, we had an airlift for Windows Server 2003. The Product Manager in Switzerland asked me to keynote…
DetailsThe Risk of Blogging
Steve Ballmer was once asked by a journalist whether and why he allows blogging by Microsoft employees, without any approval process. His answer was that he lets Microsoft employees talk to customers without approval process as well (at least that’s the story which was told ). You know that I am a big fan of…
DetailsAm I Too Paranoid?
Sometimes I wonder whether I am too paranoid. I just got a call, which went like that: Caller: “Hello, we are doing a health insurance survey and have just three questions for you, would you mind to join in? Just 20 seconds. We do it for Health Insurance statistics.†Me: Was in a very good…
DetailsAre We Losing the Fight Against Cybercrime?
It is an interesting and difficult question. What can we do to really be able to stay on top? Or shall we give up? Well, clearly, I do not think so. I read this article today, which really made me think: Black Hats are Winning, Symantec Says – wow! A fairly clear statement. We lost…
Details