threat landscape

  1. Microsoft Releases Security Advisory 2847140

    Today, we released Security Advisory 2847140 regarding an issue that impacts Internet Explorer 8. Internet Explorer 6, 7, 9 and 10 are not affected by the vulnerability. This issue allows remote code execution if users browse to a malicious website with an affected browser. This would typically...
    • News
    • Thread
    • activex controls advisory anti-virus customer protection firewall guidance internet explorer microsoft mitigations remote code execution scripting security threat landscape upgrade vulnerability
    • Replies: 0
    • Forum: Security Alerts

  2. Microsoft Releases Security Advisory 2794220

    Today, we released Security Advisory 2794220 regarding an issue that impacts Internet Explorer 6, 7, and 8. We are only aware of a very small number of targeted attacks at this time. This issue allows remote code execution if users browse to a malicious website with an affected browser. This...
    • News
    • Thread
    • activex advisory anti-virus blog emet exploit firewalls internet explorer malware microsoft mitigations remote code execution scripting security security zone threat landscape trusted sites updates usability vulnerabilities
    • Replies: 0
    • Forum: Security Alerts

  3. Security Advisory 2755801 addresses Adobe Flash Player issues

    Today we released Security Advisory 2755801 that addresses vulnerabilities in Adobe Flash Player in Internet Explorer 10 on Windows 8. The majority of customers have automatic updates enabled and will not need to take any action because protections will be downloaded and installed automatically...
    • News
    • Thread
    • adobe advisory automatic coordination customers disclosure flash player internet explorer management microsoft protection quality release timing security software threat landscape update update process vulnerabilities windows 8
    • Replies: 0
    • Forum: Security Alerts

  4. Microsoft Releases Security Advisory 2757760

    Today we released Security Advisory 2757760 to address an issue that affects Internet Explorer 9 and earlier versions if a user views a website hosting malicious code. Internet Explorer 10 is not affected. We have received reports of only a small number of targeted attacks and are working to...
    • News
    • Thread
    • activex advisory anti-spyware antivirus emet exploit prevention firewall internet explorer malicious code mitigations scripting security security settings threat landscape trusted sites updates usability user guidance web browsing
    • Replies: 0
    • Forum: Security Alerts

  5. Proof-of-Concept Code available for MS12-020

    On March 15, we became aware of public proof-of-concept code that results in denial of service for the issue addressed by MS12-020, which we released Tuesday. We continue to watch the threat landscape and we are not aware of public proof-of-concept code that results in remote code execution...
    • News
    • Thread
    • active protections program confidential information customer protection cve-2012-0002 denial of service deployment mapp program microsoft mitigation ms12-020 optimal decisions proof-of-concept remote code execution security security update software partners threat landscape trustworthy computing update vulnerabilities
    • Replies: 0
    • Forum: Security Alerts

  6. Announcing the BlueHat Prize for Advancement of Exploit Mitigations

    Protecting the general computing ecosystem is a really tough job, and given some of the media headlines, it’s easy to get discouraged and wallow in the problems. It seems like we’re constantly bombarded with statistics measuring the number of bugs, vulnerabilities, or attacks in an...
    • News
    • Thread
    • active protections program bluehat prize cash prizes collaboration computing ecosystem customer solutions cybersecurity defensive technology exploit mitigation global security incentives industry collaboration innovation microsoft research community security challenges security providers security research threat landscape vulnerabilities
    • Replies: 0
    • Forum: Security Alerts

  7. March 2011 Security Bulletin Release

    Hello all -- Today, as part of our monthly security bulletin release, we have three bulletins addressing four vulnerabilities in Microsoft Windows and Microsoft Office. One bulletin is rated Critical, and this is the bulletin we recommend for priority deployment: Link Removed due to 404...
    • News
    • Thread
    • bulletin critical deployment dll exploitability important march 2011 mhtml microsoft monitoring office remote desktop security service pack technet threat landscape updates vulnerabilities webcast windows
    • Replies: 0
    • Forum: Security Alerts

  8. Microsoft Releases Security Advisory 2488013

    Hello, Today we released Security Advisory 2488013 to address a public vulnerability that could affect customers using Internet Explorer 6, 7 and 8 if they visit a website hosting malicious code. Currently the impact of this vulnerability is limited and we are not aware of any affected...
    • News
    • Thread
    • advisory anti-virus customer protection data protection firewall internet explorer malicious code malicious sites malware microsoft protected mode risk management security security update software security technical guidance threat landscape updates vulnerability windows vista
    • Replies: 0
    • Forum: Security Alerts

  9. November 2010 Security Bulletin Release

    Hello all. As part of our usual cycle of monthly updates, todayMicrosoft is releasing three security bulletins, addressing 11 vulnerabilities.One of the bulletins has a Critical severity rating, while the other two arerated Important. Recapping the trio: Link Removed due to 404 Error This...
    • News
    • Thread
    • critical rating cybersecurity deployment priority exploitability index malicious file microsoft office november 2010 outlook patch management powerpoint remote code execution response communications risk assessment security bulletin security updates technical webcast threat landscape unified access gateway user interaction vulnerabilities
    • Replies: 1
    • Forum: Security Alerts

  10. Black Hat 2010

    BH Landscape Next week, many of us here will be heading down to Las Vegas for Black Hat. The MSRC, and other teams in Microsoft, have been attending Black Hat for years. In fact, we've been sponsoring the show for the last eight years-the last five as a platinum sponsor. Some might ask why...
    • News
    • Thread
    • attacks black hat bluehat collaboration community coordinated disclosure crisis management disclosure fixit microsoft msrc network protection research security telemetric threat landscape training trustworthy computing update vulnerabilities
    • Replies: 0
    • Forum: Security Alerts

  11. Out of Band Release to Address Microsoft Security Advisory 2416728

    Hello - Today we provided Link Removed due to 404 Error to customers that we will release an out-of-band security update to address the vulnerability discussed in Security Advisory Link Removed due to 404 Error. The update is scheduled for release tomorrow, Tuesday, September 28, 2010 at...
    • News
    • Thread
    • .net framework advisory asp.net automatic update bulletin customer support distribution download center enterprise microsoft out-of-band security testing threat landscape trustworthy computing update vulnerability web server webcast windows server
    • Replies: 0
    • Forum: Security Alerts