web security

With Microsoft Edge, we want to fundamentally improve security over existing browsers and enable users to confidently experience the web from Windows. We have designed Microsoft Edge to defend users from increasingly sophisticated and prevalent attacks. This post covers some of the advanced...

Original release date: April 30, 2015 Systems Affected Networked systems Overview Securing end-to-end communications plays an important role in protecting privacy and preventing some forms of man-in-the-middle (MITM) attacks. Recently, researchers described a MITM attack used to inject...

I am finding older search terms/phrases I have used in the past appearing on other sites. For example I use Google (with Firefox) to search for something and days/weeks later I am on another site and sometimes when I begin typing in that site's search box, it autofills with search terms...

I keep on getting ads from BrowseStudio and other ad sites. They appear in the lower right, left and lower center of my browser (any browser Firefox or IE). The BrowseStudio also adds a "Related Searches" bar to the left of my screen. I think I this came in when I installed Adobe Flash Player...

Severity Rating: Important Revision Note: V1.0 (August 12, 2014): Bulletin published. Summary: This security update resolves two privately reported vulnerabilities in Microsoft SQL Server (one in SQL Server Master Data Services and the other in the SQL Server relational database management...

Severity Rating: Important Revision Note: V1.0 (August 12, 2014): Bulletin published. Summary: This security update resolves two privately reported vulnerabilities in Microsoft SQL Server (one in SQL Server Master Data Services and the other in the SQL Server relational database management...

Severity Rating: Revision Note: V1.1 (June 13, 2012): Advisory revised to notify customers that Windows Mobile 6.x, Windows Phone 7, and Windows Phone 7.5 devices are not affected by the issue. Summary: Microsoft is aware of active attacks using three unauthorized digital certificates derived...

In addition to today being the security update release, February 11 is officially Link Removed for 2014. This year, we’re asking folks to Do 1 Thing to stay safer online. While you may expect my “Do 1 Thing” recommendation would be to apply security updates, I’m guessing that for readers of this...

Severity Rating: Critical Revision Note: V1.0 (February 11, 2014): Bulletin published. Summary: This security update resolves a privately reported vulnerability in Microsoft Windows. The vulnerability could allow remote code execution if a user views a specially crafted webpage using Internet...

Severity Rating: Critical Revision Note: V2.1 (July 9, 2013): Bulletin revised to announce a detection change that excludes Windows 7 language packs from the 2485376 update for Windows XP Professional x64 Edition Service Pack 2. This is a detection change only. Customers who have already...

Hello everyone, Tonight, we implemented CloudFlare, which uses its own content delivery network and content processing. Were the site to go down, content would continue to be available for a number of days, even if our servers that process that data goes down. This is not the first time that we...

This page provides the Group Policy Administrative Template files for Windows Internet Explorer 10. Source: Link Removed

Original release date: January 24, 2013 | Last revised: February 06, 2013 Systems Affected Web-based Content Management Systems, specifically Joomla! installations. Overview This Alert was developed as a collaborative effort between Public Safety Canada and the U.S. Link...

Review - ESET Smart Security 5 The Good : Download option is Smart Download. Overall UI is decent and user friendly. Good web protection. Good Real time protection. Good detection rate (Smart Scan) by default. Very good cleaning process. No slowdowns at all, system very responsive, even...

Severity Rating: Important Revision Note: V2.1 (August 14, 2012): Clarified that users with Internet Explorer 9 installed on their systems do not need to install this update. See the section, Frequently Asked Questions (FAQ) Related to This Security Update, for more information...

Resolves a vulnerability in Windows Media Player that could allow remote code execution if Windows Media Player opened specially crafted media content hosted on a malicious Web site. More...

It took Redmond 1 day to kill a threat that allowed users with a Firefox add-on (Tamper Data) to remotely reset the password of a Hotmail account and allowing them to access the outgoing HTTP request, then modify the data. Microsoft was notified April 20, 2012, applied the fix April 21...

The upcoming new OS will offer users the ability to store and retrieve their Web site and application passwords through Internet Explorer 10. Link Removed

Severity Rating: Important Revision Note: V1.0 (October 11, 2011): Bulletin published. Summary: This security update resolves five privately reported vulnerabilities in Forefront Unified Access Gateway (UAG). The most severe of these vulnerabilities could allow remote code...