Powerpoint contained serious flaws but Microsoft has released patches to fix them. The fix is for only office suite windows version. Microsoft reported that there were many vulnerabilities reported and all are fixing one by one. The flaws already gave room to hackers to exploit.
The patch removes the ability to convert PowerPoint 4 files, which have effectively been disused since Office 2003, Microsoft said. The fix is only for microsoft sofar, later the mac fix will be released alng with xml file format converter.
Microsoft advises to use powerpoint carefully and force the files disable which are seem to be affected. It is much better to open files of powerpoint in isolation.
Microsoft security
hackers, powerpoint security, Vulnerabilities
Brazil online banking is being targeted by phishing and malware hackers recently, by Microsoft report. Microsoft said that three groups of malicious code are present whih are targeting the Brazilian onlne bank customers, with almost 80% of the PCs infected by these groups. Mostlythe attacks for infecting the computers were relied on the Portuguese language text along with social engineering.
The first group of malicious software is Trojan ‘Win32/Banker’. This malware can track users’ online activities and retrieve the data of the consumer whih are using online banking.
The second group is Trojan Win32/Bancos. This is a keystroke logging program that seizes bank account details once it plants itself on the infected computer’s registry.
The users should be aware of this new hack and make sure they do not click on suspicious links.
Microsoft security, News
malicious code, Microsoft security, pc infection
Microsoft Corp report shows an increase in rogue security software which are being targetted to third party desltop applications. The main cause is due to loss of stolen hardwares and devices.
Rogue software is actually malware, or malicious software which can hack the personal computer or steal personal data, offering little or no real protection.
“We continue to see an increase in the number of threats and complexity of those threats designed to implement crime at a variety of levels online. Microsoft insisted on better awareness of endusers to combat such security threats.
The above statement company said in announcing the release of the sixth volume of the Microsoft Security Intelligence Report in Malaysia.
Microsoft security
malaysia, Microsoft security, rogue software
Everyone is waiting for Windows 7. Microsoft is sofar reluctant to announce its release but based on previous releases records shows that the windows 7 will be released in August to october 2009, other few months to wait. One question comes to my mind, Will the Windows 7.0 will be able to run Windows xp mode? Its really interesting for xp lovers.
I think its totally depend on hardware of your machine especially the processor. The processor which are being in use now a days does not have support for virtualization which is a must factor to run xp mode. Since the Windows 7 cannot be installed as upgrading xp, the choice left for many users will be buying a new system or upgrading a system with a processor which have virtualization capability.
Microsoft security
virtualization, windows 7, xp mode
Microsoft is continuosly developing security solutions for its customers. The Microsoft Forefront Online Security for Exchange and the Microsoft Forefront codename “Stirling” Beta 2 are already available for evaluation from the Redmond company. Microsoft delivers business security solutions to keep the confidence and trust which customers have for microsoft.
“Security managers are telling us they want to be more responsive to the needs of their business. They want the solutions and guidance to protect their organizations and manage compliance, but also to empower their information workers. Perhaps most important, they want to make the most of their current IT investments and the infrastructure they have today. All of this signals the need for a shift to what we think of as “Business Ready Security”,” revealed Douglas Leland, general manager of Microsoft’s Identity and Security Business Group.
The new public test version of Forefront, code-named “Stirling is going to be release.” “Stirling” is an integrated security suite that coordinates protection and visibility across desktops, servers, applications and the network edge,” Leland added.
Microsoft security
Microsoft security, security applications
Microsoft Corp. released volume of its Microsoft Security Intelligence Report which is sixth in no.. There is a significant increase in roque security software application and threats being targetting third party desktop.
Rogue security software,which is also known as “scareware,” takes advantage of users’ desire to keep their computers protected. The rogue software lures users into paying for protection that, unknown to them, is actually malware offering little or no real protection and is often designed to steal personal information. The Microsoft Security Intelligence Report revealed that such programs are now among the top threats around the world.
The Security Intelligence Report also showed that as software companies have improved the security of their operating systems, attackers have shifted their focus to the application layer where the majority of vulnerabilities were reported. Nearly 90 percent of vulnerabilities disclosed in the second half of 2008 affected applications. Microsoft continues to make significant progress in secure software development, and that newer versions of Microsoft software are more secure than previous versions.
The Security Intelligence lost equipments really challenge the organizations and becomming a bigger threat than hacking. Microsoft is detirmined to eradicate such online evils and developning applications to control them.
Microsoft security
Microsoft-security, roque software, scareware
Microsoft Inc warned that the pirated softwares are a big source for hackers to hide the virus and attack on the systems once the software run on the machine.
Microsoft explained “rogue security software” is a growing threat as hackers take advantage of people’s fears of worms such as the notorious Conficker.
“Rogue security software is the number one threat worldwide,” said George Stathakopoulos, general manager of the Trustworthy Computing Group at Microsoft.
Rogue security software referred to as “scareware” pretends to check computers for viruses, and then claims to find dangerous infections that the program will fix for a fee.
“The rogue software lures them into paying for protection that, unknown to them, is actually malware offering little or no real protection, and is often designed to steal personal information,” Microsoft said.
Microsoft security
computer virus, pirated software, rogue security
Microsoft admit security flaws in internet explorer 8.00 which give room to hackers to exploit the browser. IE was just lauhed last thursday and hackers turn their guns towards it.
The good part of microsoft is that the team responded quikly in 12 hours to resolve the issue. The patches will be issued soon to rectify the loophole.
Terri Forslof, Security Manager at security firm TippingPoint, who was present at the event, “MSRC…let me know that they had reproduced and validated [the Internet Explorer 8] vulnerability discovered by the mysterious Nils.”
Forslof won’t say what the security flaw is, but it’s bad news for Internet Explorer 8, which Microsoft has been touting as super secure. We’ll shout up if and when Microsoft rolls out a patch for Internet Explorer 8. Given its promptness identifying the flaw, fingers crossed it won’t be long.
Microsoft security, News
hackers, ie 8.00 security, Microsoft security
The cause behind the system or program crash is the main step to detect the problem. Micrsoft is planning to release a tool to help the application developers to monitor the cause of crashes. This tool will be open source project.
The tool name exploitable Crash Analyzer will be announce on CodePlex March 20 at the CanSecWest conference in Vancouver, British Columbia.The tool will also help to analyze the potential or strength of the cause of crash problem.
There will be a step by step guidance in running this tool from where the developrs can easily find the causes of crashes.
“As a tool, it can save developers time and effort,” said Roger Kay, president of tech industry analyst group Endpoint Technologies Associates. “A number of apparently different crashes can actually be caused by the same code. The analyzer isolates the offending block and essentially says, ‘Here, all these different crashes are actually the same failure, and it’s an important one that you ought to fix right away because it presents an open attack surface.’”
Microsoft security
analyzing applications, application developers, Microsoft security, Open source security
Freddy tan who is a chief security advisor with Microsoft asia has been appointed as the board of directors of Global Information Security Professional Body.
Global Information Security Professional Body aasists vendor-neutral education products, career services, and Gold Standard credentials to IT certified industry professionals.
Currently Freddy Tan will act as communicating Microsoft’s security strategy and architecture, identifying emerging security trends, and maintaining relationships with governments, law enforcement, financial services, industry associations and academia.
Tan is also a member of the (ISC)2 Asian Advisory Board and was awarded the (ISC)2 President’s Award in 2003 in recognition for his volunteer work with (ISC)2. He replaces Dr. Peter Berlich, who recently stepped down from the board.
Microsoft security
freddy tan, ISC, Microsoft-security
Internet explorer lost its considerable market in the recent past years where Firefox, safari, Google Chrome and few others gave a tough time to IE. Microsoft realised this thing and through comprehensive research manage to inroduce Internet Explorer 8 with new add ons security features. It will be released any time in this month.
According to Micrososft Business Organizations will love IE 8 because of its security features. It will be more faster and immune to hackers. In the past user experience lost of data while surfing due to crash but in IE 8 there will be new feature in which if the website crash the effect will be only on a single tab on which the vulnerability appears. This feature will distinguish IE from other browsers.
There will be a smart screen function which prevent hackers from sending the malicious codes. The effectiveness of this function can only be know after the release but it again seems to be a unique function.
Another feature which recommend the users of not browsing the webpage which posess threat. This function can also seen in google tool bar where the message appears if the site is not trusted or contain potential harm.
Beside above there will be more features which we can only asses after the release. We will update our reader about that.
Browsers security, Microsoft security
ie8, ie8 security, Microsoft security
Footer appended to outgoing e-mails from the enterprise as the information is part of the corporate identity and build its image among customers. Standardizing signatures also governed by the law of Polish and European Union. Commercial Companies Code imposes an obligation on companies to add to outgoing mail such information as the form of company, address of its registered office, VAT tax identification number, the amount of initial capital, etc.
The CodeTwo Exchange Rules is an ideal solution to the problem of standardizing the footers. – Designed by our solution extends the Microsoft Exchange Server and Small Business Server – Michal Bednarz says. – A program on a centralized accompanied footer company or individual signatures of staff to outgoing messages without any interference on their part.
Microsoft security