Roger Halbheer on Security
We recently revealed the File Classification Infrastructure in Windows Server 2008 R2. This infrastructure can help you to classify files not only based on the location where it is stored but based on content as well. However, there is not too much value for me to blog more about that, let the experts speak: Classifying…
DetailsOur Security Research and Defense team blogged on the PowerPoint security update we published on Tuesday. There are a few things which were not “business as usualâ€: The update for the Windows version of PowerPoint went out before the Mac version. The reason is that we did not want to hold the Windows-version which could…
DetailsThis is a very tough legislation: France just agreed on a new Internet Piracy Bill. If you violate piracy laws three times, you will be banned from the Internet up to an year:
Interesting approach
Roger
This morning I opened one of the Swiss Sunday newspapers and Google Chrome made it to the front-page with a “best practice approach†for deploying security updates. In the article itself it was claimed that Chrome is one of the best browsers with regards to security as the deploy patches silently, without letting the user…
DetailsRepublished with the fixed link (thank you for the one who told me via messenger) In my last blog post Direct Access – A Step by Step Guide I just linked to a paper showing how you can set it up. However, based on that I got questions on both of my blogs how it…
DetailsDirect Access is one of the coolest features I used since a quite while. I am part of our internal pilot since months and it is absolutely great: You connect to the Internet and you are immediately connected to the corporate network. No VPN, nothing. If you want to know how to set this up,…
DetailsMichael Howard, one of our gurus, when it comes to secure code development, wrote a dialogue on SDL and Threat Modeling called A Conversation About Threat Modeling – this is definitely a must read, even if you are not a developer
Roger
This is impressive to me: I was looking at the website of the Centers for Disease Control and Prevention and the way they use the Internet and social media to communicate about the Swine Flu. They use all the latest media like Widgets, websites for mobile browsers, buttons to add to your website, online videos,…
DetailsThis is not about piracy and not about leaks and not about… I am waiting for the new RC build as you are. I am running an intermediate build between Beta and RC and would love to upgrade all my machines (including my MediaCenter) to RC. However, I refrain from downloading it from any of…
DetailsJust a quick one. We released SP2 for Office 2007. You can download it here.
Roger
Scott held a keynote during RSA this week. Here you find the webcast (it is about 30 minutes) – definitely worth looking at:
Roger
I guess you have read it in the meantime: There are a lot of reports out there, that Finjan found a Botnet affecting 1.9 Million computers. This is really bad – obviously. The press now started to cover this and I think we are already losing a little bit of focus in the discussion. I…
DetailsJust a brief one: I wrote an article for Infosecurity which was just published in the latest version covering the economic downturn as well. It is called Time to Step Up and can be found on page 45 of the latest edition.
Roger
This is a question I often get asked: What is the impact of the economic downturn on security? I am convinced that three things will happen: Cybercrime will grow Security budgets will shrink – it is just open whether the budgets will shrink at the same pace as IT budgets or faster but I am…
DetailsYou know that I am a big fan of what we are going to deliver with our Forefront Suite in the next version code-named Stirling. You probably heard me talking about compliance (where, from a technical perspective Forefront can play an integral part) and what I call the best of need integrated platform – where…
DetailsOver the last few day we have seen a lot of coverage about new Conficker variants. Let me give you a very brief update. But before I start, let me make sure that we are clear on one thing. In the area of security, we often see coverage about somebody who heard something from the…
DetailsYou know that we release our Security Intelligence Report twice an year: Today Version 6 is due. Let me try to give you an overview of the “highlights†of the report from my point of view: As I wrote in the title and as I blogged about this summer („Scareware“ on the Raise) one if…
DetailsI basically like the blogosphere. It is a way to express an opinion without having to worry (too much) about censorship. The disadvantage is that there are people who present things as “factsâ€, which are simply wrong. This happened Thursday on ZDNet. I stumbled across an article called It’s time for Microsoft to supply ALL…
DetailsI just found this pretty clever website which bases its statement with regards to your possible Conficker infection on the information whether you are able to access certain websites:
http://www.joestewart.org/cfeyechart.html
Pretty clever
Roger
