Navigation section

attack prevention

  1. News

    Mitigating speculative execution side-channel attacks in Microsoft Edge and Internet Explorer

    Today, Google Project Zero published details of a class of vulnerabilities which can be exploited by speculative execution side-channel attacks. These techniques can be used via JavaScript code running in the browser, which may allow attackers to gain access to memory in the attacker’s process...
    • News
    • Thread
    • attack prevention browser security cpu cache fall creators internet explorer javascript john hazen kb4056890 memory access microsoft edge mitigations performance project zero security updates sharedarraybuffer side-channel speculative execution updates vulnerabilities windows 10
    • Replies: 0
    • Forum: Live RSS Feeds
  2. News

    Security trends & Windows 10

    Cybersecurity threats both new and known, from Advanced Persistent Threats (APT), to the Internet of Things (IoT), to the shortage of cyberworkers, threaten us each day. To help protect ourselves and our customers, we mobilize threat intelligence and machine learning, a mindset of “assume...
    • News
    • Thread
    • advanced threat protection attack prevention automation cybercrime cybersecurity cybersecurity workforce data protection identity theft iot machine learning malware network security password security ransomware security operations security teams security trends threat intelligence vulnerability windows 10
    • Replies: 0
    • Forum: Live RSS Feeds
  3. News

    Introducing support for Content Security Policy Level 2

    We are happy to introduce support for Content Security Policy Level 2 (CSP2) in Microsoft Edge, another step in our ongoing commitment to make Microsoft Edge the safest and most secure browser for our customers. CSP2, when used correctly, is an effective defense-in-depth mechanism against cross...
    • News
    • Thread
    • attack prevention browser compatibility content injection cross site scripting csp configuration csp implementation csp2 directives insider fast ring microsoft edge nonce script management secure browsing security policy upgrade requests user protection w3c web application security web development windows 10
    • Replies: 0
    • Forum: Live RSS Feeds
  4. News

    System Center Configuration Manager Vulnerability Assessment Configuration Pack

    Configuration Manager Vulnerability Assessment allows to scan managed systems for common missing security updates and misconfigurations which might make client computers more vulnerable to attack. Link Removed
    • News
    • Thread
    • assessment attack prevention client computers configuration manager managed systems misconfigurations security system center updates vulnerability
    • Replies: 0
    • Forum: Live RSS Feeds
  5. News

    MS16-003 - Critical: Cumulative Security Update for JScript and VBScript to Address Remote...

    Severity Rating: Critical Revision Note: V1.0 (January 12, 2016): Bulletin published. Summary: This security update resolves a vulnerability in the VBScript scripting engine in Microsoft Windows. The vulnerability could allow remote code execution if a user visits a specially crafted website. An...
    • News
    • Thread
    • administrative rights attack prevention critical cumulative update data protection internet safety malware defense microsoft ms16-003 patch management remote code execution revision note security update software security system control user rights vbscript vulnerability windows
    • Replies: 0
    • Forum: Security Alerts
  6. News

    3119884 - Inadvertently Disclosed Digital Certificates Could Allow Spoofing - Version: 1.0

    Revision Note: V1.0 (November 30, 2015): Advisory published. Summary: Microsoft is aware of unconstrained digital certificates from Dell Inc. for which the private keys were inadvertently disclosed. One of these unconstrained certificates could be used to issue other certificates, impersonate...
    • News
    • Thread
    • advisory attack prevention content spoofing cybersecurity dell inc digital certificates domain impersonation man-in-the-middle microsoft phishing private keys revision note security software vulnerability spoofing supported releases tech news v1.0 windows
    • Replies: 0
    • Forum: Security Alerts
  7. News

    Vulnerability in TCP Protocol Could Allow Denial of Service - Version: 1.0

    Severity Rating: Important Revision Note: V1.0 (June 10, 2014): Bulletin published. Summary: This security update resolves a privately reported vulnerability in Microsoft Windows. The vulnerability could allow denial of service if an attacker sends a sequence of specially crafted packets to the...
    • News
    • Thread
    • attack prevention bulletin denial of service malware defense microsoft windows network security security update severity rating tcp protocol vulnerability
    • Replies: 0
    • Forum: Security Alerts
  8. News

    Deprecation of SHA-1 Hashing Algorithm for Microsoft Root Certificate Program - Version: 1.0

    Severity Rating: Revision Note: V1.0 (November 12, 2013): Advisory published. Summary: Microsoft is announcing a policy change to the Microsoft Root Certificate Program. The new policy will no longer allow root certificate authorities to issue X.509 certificates using the SHA-1 hashing...
    • News
    • Thread
    • attack prevention code signing microsoft phishing policy change root certificate security sha-1 ssl x.509
    • Replies: 0
    • Forum: Security Alerts
  9. News

    MS12-082 - Important : Vulnerability in DirectPlay Could Allow Remote Code Execution (2770660) - Ver

    Severity Rating: Important Revision Note: V1.0 (December 11, 2012): Bulletin published. Summary: This security update resolves a privately reported vulnerability in Microsoft Windows. The vulnerability could allow remote code execution if an attacker convinces a user to...
    • News
    • Thread
    • attack prevention cybersecurity directplay microsoft windows office document patch management remote code execution security update user rights vulnerability
    • Replies: 0
    • Forum: Security Alerts
  10. News

    MS11-042 - Critical: Vulnerabilities in Distributed File System Could Allow Remote Code Execution (2

    Severity Rating: Critical - Revision Note: V1.0 (June 14, 2011): Bulletin published.Summary: This security update resolves two privately reported vulnerabilities in the Microsoft Distributed File System (DFS). The more severe of these vulnerabilities could allow remote code execution when an...
    • News
    • Thread
    • arbitrary code execution attack prevention critical distributed file system firewall ms11-042 network protection remote code execution security update vulnerability
    • Replies: 0
    • Forum: Security Alerts
  11. reghakr

    Windows 7 Trojan Threat Alert for Windows® 7 and FIFA World Cupâ„¢

    Trojan Threat Alert for Windows® 7 and FIFA World Cup™ PC Tools has identified that cybercriminals are continuing to target major news stories and global events such as the recent release of Windows 7 and the FIFA World Cup. Thousands of Windows 7 builds downloaded on Torrent and P2P...
    • reghakr
    • Thread
    • attack prevention cybercriminals cybersecurity email safety fifa world cup financial loss identity theft internet security malware p2p sharing personal information phishing security software spyware doctor system failure threat torrent sites trojan trusted sources windows 7
    • Replies: 2
    • Forum: Windows News
Back
Top