research

At Microsoft, we continue to add new properties to our security bug bounty programs to help keep our customer’s secure. Today, I’m pleased to announce the addition of Microsoft OneDrive to the Microsoft Online Services Bug Bounty Program. This addition further incentivizes security researchers...

Watch yourselves boys and girls because Link Removed has created something special (scary?) here! Learn how you can perform your own Lie Detection tests by capturing EEG (brainwave) data and then feeding that info into Azure Machine Learning to determine when people are telling you the truth and...

Welcome back to Ping! We talk about the return of robot combat return to television, we chat about a one-way ticket to Mars on the space desk, and more stories that 'softies are pinging each other about... Link Removed Last show... Link Removed Announcing: Minecraft: Windows 10 Edition Beta...

I just made this account to post this question, not sure if this is the right place for it. I'm looking to get a new laptop that is capable of running games like GTA V and Assassin's Creed Unity smoothly on medium or max settings. Here's what I'm looking at: (since I can't post a link, search...

Have you ever set a breakpoint a few statements too late, or accidentally stepped over the function call that you wanted to step into, and wished that you could just reverse-execute the program in the debugger? This video from Microsoft Research describes an experimental time-traveling debugger...

Today, we released Link Removed to provide guidance to customers in response to the SSL/TLS issue referred to by researchers as “FREAK” (Factoring attack on RSA-EXPORT Keys). Our investigation continues and we’ll take the necessary steps to protect our customers. MSRC Team Continue reading...

The first project demo in the new series with project members Jon & Mehmet joining me in the studio to discuss the Extracting Effective Permissions from TFS project by the Visual Studio ALM Rangers. The release of the Extracting effective permissions from TFS research findings, packaged in a...

Today's project is from Dave Voyles sharing a new possible scripting language for the Kinect coming from Microsoft Research, Prepose... Link Removed Prepose Scripting Language Microsoft Research has taken this one step further though, and introduced a scripting language called “Prepose”...

Hi there, I'm just a person that happened to find and buy this mug on Ebay. I tried doing some research, trying to figure out it's origins, but I didn't get too far. I'm wondering if anyone here can help me out with this, or point me in the right direction. Sorry if the images are flipped...

For years our customers have been in the trenches against cyberattacks in an increasingly complex digital landscape. We’ve been there with you, as have others. And we aren’t going anywhere. Forces often seek to undermine and disrupt technology and people, attempting to weaken the very devices...

Original release date: November 19, 2014 Systems Affected Microsoft Windows Vista, 7, 8, and 8.1 Microsoft Server 2003, Server 2008, Server 2008 R2, Server 2012, and Server 2012 R2 Overview A remote escalation of privilege vulnerability exists in implementations of Kerberos Key Distribution...

Peter Daukintis, Microsoft Technical Evangelist, who we recently highlighted, Kinect for Windows v2 Face Tracking Managed and Native, continues his Kinect for Windows v2 exploration and sharing, this time with two posts about the very cool Visual Gesture Builder. Link Removed When I created a...

As security professionals, we are trained to think in worst-case scenarios. We run through the land of the theoretical, chasing “what if” scenarios as though they are lightning bugs to be gathered and stashed in a glass jar. Most of time, this type of thinking is absolutely the correct thing...

The news on anti-virus death is greatly exaggerated. The right way to look at it is that antivirus is not, and may never have been, a sufficient means by which to protect the user against attack. But, for most users, it's still an important front-line defense. One great advantage of Windows 8.1...

Severity Rating: Revision Note: V18.0 November 13, 2012): Added the following Microsoft Security Bulletin to the Updates relating to Insecure Library Loading section: MS12-074, "Vulnerabilities in .NET Framework Could Allow Remote Code Execution." Summary: Microsoft is aware that research has...

Hi I saw this article, if it's true I'm all in to start beta testing it. http://winsupersite.com/windows-8/threshold-be-called-windows-9-ship-april-2015 I can't imagine that they wouldn't want to have a real beta testing, if they are going to make major changes and call it a new OS. I'm...

Link Removed Two problems, possibly a single issue from Webroot Secure AnyWhere; I don't think my computer is infested, but I could be wrong. First, a number of AutoRun.INF files I have authored keep vanishing. I have a large number of drives on my computer, and I have created AutoRun files to...

The Stanford Prison experiment by Zimbardo matches only the breakthrough of the Milgram obedience test. In Milgram's test, humans were led to giving a fake patient a fatal electric shock. The shock wasn't real, so the people involved in the study thought they were doing it. Only around 10-15%...

Hi, I am researching the autorun functionality in Windows and am coming across conflicting/confusing information. I understand Windows 8 automatically enables autorun by default - do you know which autorun keys, if any, are disabled (i.e. in Windows 7 only the label and icon keys are enabled...

I seem to be getting many of these errors lately and they seem to have started on Aug. 8. When I say many, I mean like 100 an hour showing in Event Viewer. I have been researching and the fix appears to be deleting some files in a specific directory and using ones from the install.wim file to...