-
A Call for Better Coordinated Vulnerability Disclosure
For years our customers have been in the trenches against cyberattacks in an increasingly complex digital landscape. We’ve been there with you, as have others. And we aren’t going anywhere. Forces often seek to undermine and disrupt technology and people, attempting to weaken the very devices...- News
- Thread
- advisory best practices collaboration complexity consumer coordinated cvd cybersecurity google information disclosure microsoft patch phishing protection research security software threats trustworthiness vulnerability
- Replies: 0
- Forum: Security Alerts
-
Microsoft releases Security Advisory 2974294
Today, we released Security Advisory 2974294 to inform global customers about an update for the Microsoft Malware Protection Engine. This update addresses a privately disclosed issue and fixes a vulnerability that could allow a denial of service if the Microsoft Malware Protection Engine scans a...- News
- Thread
- advisory cvd denial of service engine malware microsoft protection security update vulnerability
- Replies: 0
- Forum: Security Alerts
-
Coordinated Vulnerability Disclosure: From Philosophy to Practice
Last summer at the Black Hat security conference, we announced a philosophical shift in how we refer to vulnerability disclosure, called "Coordinated Vulnerability Disclosure" (CVD). Our intent was to focus on how coordination and collaboration are required to resolve security issues in a way...- News
- Thread
- attack collaboration community computing coordination cvd development ecosystem feedback information disclosure management microsoft msvr policies protocol research risk security trustworthy vulnerability
- Replies: 0
- Forum: Security Alerts
-
April 2011 Security Bulletin Release
Hello again everyone, Pete Voss here, and as I previously mentioned in the Advanced Notification blog on Thursday, today we are releasing 17 security bulletins, nine of which are Critical, and eight rated Important. These bulletins will increase protection by addressing 64 unique...- News
- Thread
- bulletin community critical cvd deployment enhancements file validation important internet explorer malware microsoft office remote code execution risk management security smb update vulnerabilities windows
- Replies: 0
- Forum: Security Alerts
-
Announcing Coordinated Vulnerability Disclosure
Today, Microsoft is announcing a shift in philosophy on how we approach the topic of vulnerability disclosure, reframing the practice of "Responsible Disclosure" to "Coordinated Vulnerability Disclosure." In recognition of the endless debate between responsible disclosure and full disclosure...- News
- Thread
- approach collaboration community coordinated customers cvd ecosystem exploit finder guidance information disclosure microsoft mitigation philosophy research responsible risk security update vulnerability
- Replies: 0
- Forum: Security Alerts