Skip to content
Microsoft Secure

Rogue security sites sully search results

Rogue security sites are Web sites that claim to offer you security software, but could infect your computer with viruses, spyware, or other malware. These fake sites try to scare you with pop-up windows and warnings that your computer is unprotected and that you need their software to protect yourself. If you follow this blog,...

Read more

Introducing the InfoSec Assessment & Protection Suite

The Information Security Tools (IST) team has released the InfoSec Assessment & Protection (A&P) Suite.  It’s a suite made up of protection and assessment tools which include:   Web Protection Library (WPL) – an umbrella for several libraries and runtime modules including the Microsoft Anti-Cross Site Scripting Library v3.1 (Anti-XSS V3.1) and Security Runtime Engine...

Read more

Expanding SDL for Cloud and Agile Development

With more and more business customers deciding between client, cloud, or both for their computing environments, security guidance must be dynamic and evolve along with the community.  Because security and privacy are key concerns affecting adoption of cloud computing, the industry has an opportunity to assure customers that web applications running on cloud platforms can...

Read more

Announcing SDL for Agile Development Methodologies

Hi everyone, Bryan here. There is a common misconception that because the SDL was originally created for Microsoft’s big showcase box products like Windows and SQL Server, that it only works for those kinds of products. This is of course patently false: virtually every Microsoft product and online service, large or small, follows the SDL....

Read more

Get Microsoft security updates for November

Microsoft releases security updates on the second Tuesday of every month. Today Microsoft released 6 new security updates for Microsoft Office and Microsoft Windows.   Get the updates To download the updates, visit the Microsoft Update Web site. If you have automatic updating turned on, your computer will update and install these security updates. Read more about the...

Read more

SDL at TechEd Europe and Platforma

Hi everyone, Bryan here. I’m going to be presenting two sessions on the SDL next week, one for TechEd Europe and one for the Microsoft Platforma event in Moscow. If you’re attending either of these conferences, stop by and introduce yourself, or better yet stay for the session!   TechEd Europe:   SIA-205: SDL-Agile: Microsoft’s...

Read more

SIR Volume 7 Released

Hi everyone, Bryan here. Earlier this week, Microsoft released the latest volume of the Security Intelligence Report (SIR), which covers the first half of 2009. There are many interesting statistics in this report, but there’s one that I’d like to draw particular attention to: the number of industry-wide reported vulnerabilities as broken down by OS...

Read more

Microsoft releases latest findings on malware

Microsoft released the newest Security Intelligence Report, which focuses on trends in malicious software and other computer threats in the first half of 2009 (January through June). The report uses data collected from several hundred million Windows users and some of the busiest online services on the Internet, including Windows Live Hotmail and Bing.  ...

Read more