Wednesday, December 17, 2008

Malware infection rates in the Middle East among highest worldwide

Based on Microsoft’s latest Security Intelligence Report

The report features a number of countries in the region, including Bahrain, Egypt, Iraq, Saudi, Turkey, Jordan, Lebanon, Yemen, and the UAE in the worst 25 countries for malware infection as covered by the report.

Read More

Friday, December 05, 2008

Microsoft ,EMC partner in Data Loss Prevention

I think this is a good move from microsoft on the security area
Microsoft Thursday said it plans to integrate RSA data-loss prevention technology into its products to enable security managers to monitor sensitive data and block unauthorized use. RSA is EMC's security division. \
http://www.networkworld.com/news/2008/120408-microsoft-emc-partner.html?nlhtsec=ts_120508&nladname=120508securityal

Sunday, November 30, 2008

"Morro," OneCare and Forefront

I know you have many questions regarding this news , so let’s here from Microsoft

Here is the Story

Monday, November 24, 2008

Gmail exploit may allow attackers to forward e-mail

Gmail security vulnerability may allow an attacker to set up filters on users' e-mail accounts without their knowledge, according to a proof of concept posted Sunday at GeekCondition.com.
In his post, Brandon writes that the vulnerability has caused some people to lose their domain names registered through GoDaddy.com

Read More

Wednesday, November 19, 2008

Microsoft announces free Morro antivirus software

Microsoft is getting serious about global security, offering a free anti-malware package code-named Morro that has been specially designed for low cost PCs in developing nations.
The software will be available in the second half of 2009 and will provide 'comprehensive protection' from 'the majority of online threats', including viruses, spyware, rootkits and trojans.

Read More

Thursday, November 06, 2008

Microsoft: Flaws down but malware on the rise

The number of flaws impacting Microsoft products dropped 33.6 percent in the first half of 2008 compared to the last half of 2007, as hackers ramp up their focus on third-party applications, the latest Microsoft Security Intelligence Report found.This trend was particularly noticeable in the browser, said the report, released Monday. Browser-based exploits occurring on Windows XP machines were attributable to Microsoft bugs 42 percent of the time and third-party software 58 percent of the time.

Read More

Wednesday, October 29, 2008

Antivirus Defense-in-Depth Guide

The information presented in the Antivirus Defense-in-Depth guide has been updated to reflect the security improvements provided as part of Windows XP Service Pack 2. A number of the features in Windows XP Service Pack 2 have made it more difficult for malware to attack a Windows XP-based computer. The updates to this guide are designed to ensure that these enhancements are identified and explained.
http://www.microsoft.com/technet/security/guidance/serversecurity/avdind_0.mspx

Malware Removal Starter Kit

Many small- and medium-sized organizations use antivirus software, and yet new viruses, worms, and other forms of malicious software (malware) continue to infect large numbers of computers in these organizations. Malware proliferates at alarming speed and in many different ways, which makes it particularly widespread today.
This guide is intended for IT Generalists who want information and recommendations that they can use to effectively address and limit malware that infects computers in small- and medium-sized organizations. This guidance provides a set of tasks that licensed Windows® users can perform at no cost to create the Malware Removal Starter Kit. Recommendations for free malware-scanning tools are included. You can use these tools in combination with the kit to conduct scans, detect problems, and remove malware from your computer

http://www.microsoft.com/technet/security/guidance/disasterrecovery/malware/default.mspx#EHD

Sunday, October 12, 2008

Fake Microsoft email contains "backdoor" virus

I personally received this email,

fake phishing email making the rounds seemingly comes from Microsoft, but actually contains a “backdoor” trojan.
The email has a subject line that reads, “Security Update for OS Microsoft Windows” and supposedly came from the "Microsoft Official Update Center" at a domain named securityassurance[at]microsof[dot]com.
The message urges users to run an attached file to install an update that the email said will protect from the recipient from security threats and performance problems.

Read More

Tuesday, October 07, 2008

How thieves can steal your card info without you knowing it

Nice article to Read and secure you Credit Card Transactions
Taking just 5 seconds to inspect any credit/debit card readers before you swipe could end up saving you from identity and credit card theft.
Read More

Tuesday, September 23, 2008

Yahoo, Hotmail, Gmail all vulnerable to password reset hack

Yahoo Mail isn't the only Web-based mail service that could be duped into giving up someone else's account password, the tactic that some have argued was used to break into Gov. Sarah Palin's e-mail earlier this week.
Google Inc.'s Gmail, Microsoft Corp.'s Windows Live Hotmail and Yahoo Inc.'s Mail all rely on automated password reset mechanisms that can be abused by knowing a username associated with an account and an answer to a single security question, according to quick tests run by Computerworld .

Read More

Wednesday, September 17, 2008

How to configure NAP for Windows Server 2008

Really Nice Article in how to configure Microsoft NAP

http://searchsecurity.techtarget.com/tip/0,289483,sid14_gci1327034,00.html?track=NL-422&ad=659042&asrc=EM_NLT_4467618&uid=7917188

Microsoft's NAC comes out on top

Microsoft comes out on top of the NAC heap in an evaluation of 10 vendors that was published recently by Forrester Research.
The result is interesting because it’s not based on how many units were sold or performance tests but rather on evaluation of how well the products would meet the challenges of a set of real-world deployment situations

Read More

Monday, September 08, 2008

Will Microsoft Take a Sip of 'Midori'?

After some 23 years of Windows development, Microsoft appears to be more seriously considering the delivery of a non-Windows operating system. "Midori," the code name for a componentized operating system being built from scratch, has been kicking around the Redmond labs for four or five years. Recently, however, sources familiar with the project say Midori is now in "incubation," meaning the product is likely meandering its way closer to commercial availability. Midori is just one of a number of incubations under Craig Mundie, Microsoft's chief research and strategy officer.
However, another indication that the company is beginning to take Midori more seriously is that Eric Rudder, a longtime Microsoft veteran and senior vice president for technical strategy, is now supervising the project.

Read More

Sunday, September 07, 2008

Cisco warns of flaws in Cisco ASA 5500, PIX, Cisco Secure ACS

Cisco is warning of multiple security holes in its security appliances that if exploited, could result in a reload of the devices or disclosure of confidential information. The company has also issued a fix to a vulnerability in its Cisco Secure Access Control Server, that was discovered by external security researchers.

Read More

Thursday, September 04, 2008

Early security issues tarnish Google's Chrome

Security researchers have already uncovered vulnerabilities in Google's Chrome browser, including one that could allow a user to download malicious code

Read More

Wednesday, August 27, 2008

Intrusions hit Fedora, Red Hat Enterprise Linux servers; some OpenSSH packages compromised

The maker of Red Hat Enterprise Linux and Fedora said that hackers have gained access to key servers in what appear to be two separate incidents. Red Hat Inc. found last week that someone had compromised several Fedora servers, including one that is used to sign Fedora packages. The company said that although the server was accessed illegally, they don’t believe that the passphrase used to get to the key used to actually sign the packages was compromised.

Read More

Monday, August 18, 2008

Microsoft BlueHat Security Briefings: Fall 2008

The eighth edition of BlueHat will be held on October 16-17, 2008, at the Microsoft corporate headquarters. The Microsoft BlueHat conference is a twice-a-year event aimed at bringing internal Microsoft security professionals and external security researchers together in a relaxed environment to promote the sharing of ideas and social networking. The event highlights important emergent technologies, techniques, and industry best practices.
Sessions
BlueHat v8 will consist of two full days of great content from both internal and external security experts presented in a lecture theater environment. These presentations will offer speakers the opportunity to showcase ongoing research and collaborate with peers while educating and highlighting advancements in security products and techniques.
Day 1: Sessions will be a hybrid of content from deep-dive technical security issues to innovative techniques and best practices in the information security realm.
Day 2: Microsoft’s Security Development Lifecycle (SDL) team will host sessions emphasizing secure development and testing practices and how to develop with security in mind from the beginning of the software development lifecycle. The BlueHat SDL sessions will focus more on appropriate defense strategies and less on attack techniques. Sessions might include demonstrations of secure coding techniques or correct and incorrect methods of using various security tools.

http://technet.microsoft.com/en-us/security/cc748656.aspx

Thursday, August 14, 2008

Hackers spoof MSNBC alerts in new twist on malware ruse

Hackers trying to plant malware on PCs have switched from touting CNN news in come-on messages to pushing breaking stories said to be from rival network MSNBC, security experts said today.
The fake messages pose with subject headings that include the phrase "Breaking News," along with phony news story headlines, such as " Jerry Yang relinquishes control over Yahoo," "Mary-Kate Olsen responsible for Heath Ledger's death," and "Plane crashes into prep school, hundreds of kids killed," said researchers at F-Secure Corp. and Sophos Plc

Read More

Thursday, August 07, 2008

From BLACK HAT 2008: Google gadget flaws

Google gadgets are small applications, such as a currency converter, calendar or weather forecast, that can be added to the iGoogle homepage or a computer's desktop. The problem lies in the fact that the mini-modules are created by third-party developers, who can embed malicious JavaScript to redirect users to hacker websites, security researcher Robert “RSnake” Hansen told several hundred people in attendance
Read More

Tuesday, August 05, 2008

Microsoft to give partners heads-up on security vulnerabilities

Microsoft will be giving companies that sell security software and services to its customers a sneak peek at the technical details of the vulnerabilities in Microsoft software before the company releases its monthly "Patch Tuesday" updates.
The new Microsoft Active Protection Program, set to be announced at the Black Hat security conference on Tuesday, is designed to give software vendors a change to prepare updates to their software before attackers have a chance to reverse engineer Microsoft's security patch and create an exploit.
"It's essentially a race between the attackers and the protectors," said Andrew Cushman, who runs the Microsoft Security Response Center. The program will "give a head start to software providers delivering security features to our mutual customers."

Read More

Switches are Supported by MS NAP 802.1x Enforcement

very Important article for implementing MS NAP 802.1x Enforcement
http://blogs.technet.com/nap/archive/2007/07/10/nap-802-1x-enforcement-switches-we-ve-tested-w-nap.aspx

Sunday, August 03, 2008

MySpace and Facebook targeted by worm

Facebook users take care of this !!!

The worm variants are spread through the popular social networking sites, turning infected machines into zombies - PCs illicitly controlled by hackers to carry out tasks like denial of service attacks.The Net-Worm.Win32.Koobface.a is activated when a user accesses their MySpace account, and is spread when it automatically comments on linked friend's sites. Facebook is targeted by Net-Worm.Win32.Koobface.b, which sends messages to the infected user's contacts through the Facebook site.

Read More

Wednesday, July 23, 2008

Details of major Internet flaw posted by accident

The flaw was discovered several months ago by IOActive researcher Dan Kaminsky, who worked through the early part of this year with Internet software vendors such as Microsoft, Cisco and the Internet Systems Consortium to patch the issue.
The companies released a fix for the bug two weeks ago and encouraged corporate users and ISPs to patch their DNS systems as soon as possible. Although the problem could affect some home users, it is not considered to be a major issue for consumers, according to Kaminsky.

Read More

Tuesday, July 22, 2008

New risks in 802.11n

Along with the potential performance and coverage benefits of 802.11n come a few new security risks, says industry security guru Joshua Wright. Wright presented a Webinar last week that outlined several new vulnerabilities that high-speed 802.11n networks introduce

Read More

Monday, July 21, 2008

Facebook best Security practice

If you are Facebook user , really you need to read this
Sophos recommended privacy settings for Facebook
ID fraudsters target Facebook and other social networking sites to harvest information about you. Sophos experts recommend you set the following Facebook privacy options to protect against online identity theft.

Read More

Sunday, July 20, 2008

Anything But Microsoft

Really nice Article to read

Microsoft is a security nightmare, Macs and Linux are a godsend.
Just because you're a Linux or Mac person sipping coffee in your server room on Patch Tuesdays doesn't mean you're immune from exploits. Nothing is bulletproof these days.

http://www.darkreading.com/document.asp?doc_id=99291&page_number=3

Tuesday, July 15, 2008

Intel Chips under Attack

Waaw!!!!!!!!

Security researcher and author Kris Kaspersky plans to demonstrate how an attacker can target flaws in Intel's microprocessors to remotely attack a computer using JavaScript or TCP/IP packets, regardless of what operating system the computer is running.

Read More

Thursday, July 03, 2008

IE8.0 new security features

Microsoft has outlined new security features it will add to Internet Explorer (IE) next month, including anti-malware protection to block most cross-site scripting attacks.
Read More

ISA Server 2006 Service Pack 1 - Released

Finally Microsoft has released ISA 2006 SP1 ,and you can downlaoded from the following link
http://www.microsoft.com/downloads/details.aspx?FamilyId=D2FECA6D-81D7-430A-9B2D-B070A5F6AE50&displaylang=en

Monday, June 30, 2008

Yahoo Mail flaw found and fixed

If you have Yahoo desktop messenger , you need to read this one

Researchers at Cenzic discovered a vulnerability in Yahoo Mail they said could allow attackers to steal Yahoo identities and potentially access users’ sensitive information.
The company, a Web application security provider based in Santa Clara, Calif., notified Yahoo of the cross-site scripting flaw in its popular Web mail program on May 23 and Yahoo fixed it June 13.
The vulnerability requires the attacker use Yahoo Messenger desktop application version 8.1.0.209 to chat with someone using the Messenger support in the latest version of Yahoo Mail. An attacker can make their chat status “invisible” and craft a malicious message; when he returns to the chat and the user clicks on the message, the malicious scripting is executed, said Mandeep Khera, Cenzic vice president of marketing.

Read More

Saturday, May 24, 2008

ISA Server 2006 Service Pack 1 Features

Microsoft® Internet Security and Acceleration (ISA) Server 2006 Service Pack (SP) 1 will be available for your installation pleasure this summer!

really enjoy the new features

read More

Thursday, May 22, 2008

Microsoft Offers Cash To Use Its Search Engine

Microsoft plans to entice advertisers and users of its search engine with savings on online purchases on a site called Live Search cashback

Read More

Thursday, May 15, 2008

Facebook applications exposed as security risk

Take care while you are using Facebook , security report shows Facebook applications exposed as security risk

Speculation on the security of social networking has increased amid reports that applications on Facebook are capable of collecting personal information.

Read The Report

Tuesday, May 13, 2008

The Award for “outstanding Individual contributor FY08”


I was very delightful when I received a call from Symantec inviting me to attend the “Symantec Partner Awards Dinner 08” held in Dubai.
At the beginning they insisted to have me there without giving me a reason, I did my best to get the Visa and it did not work , So I wasn’t able to attend.
One of my colleges attended on my behalf and the surprise that I have been awarded as the “outstanding Individual contributor FY08”, Best Pre -Sales in the ME.

Monday, May 12, 2008

Flaw turns Gmail into spamming machine

A "serious security flaw" in Gmail turns Google's e-mail service into a spamming machine, according to a recent security report.
INSERT, the Information Security Research Team, has created a proof of concept that exploits the "trust hierarchy" that exists between mail service providers. By exploiting a flaw in the way Google forwards messages, a spammer can send thousands of bulk e-mails through Google's SMTP service, bypassing Google's 500-address bulk e-mail limit and identity fraud protections.

Read More

Wednesday, May 07, 2008

Microsoft is winning the NAC war, expert says

Why Microsoft is doing it right, ACLs are better than VLANs and the dirty dark corner of NAC (management).
By Julie Bort , Network World , 05/06/2008

Security guru Joel Snyder from Opus One recently starred as the guest of a live Network World chat where he discussed the state of network access control. Snyder says that Microsoft is emerging as one of the clear winners of NAC, but that Microsoft's technology is a foundation from which to build, not an end-all. He also says that those who are anti-NAC simply don't understand the technology. He answered a slew of technical questions from attendees including why ACLs are better than VLANs, the dirty dark corner of NAC (management) and the how and why of 802.1X. What follows is a full transcript

Read More

Wednesday, April 30, 2008

MS gaining fast in AV-Comparatives tests

Detection rates up 7% in six months, more improvement predicted.
AV-Comparatives have released the results of their latest test of detection rates, pitting 17 scanners already known to perform well against their huge collection of malware. The most improvement over the previous run, which took place in February, was shown by Microsoft, whose score shot up by 7%.

The tests take the form of an on-demand scan over a testset of over 800,000 verified samples, including file and macro viruses, worms, trojans, backdoors and other malware, using 'best possible' settings. Multi-engine product AEC Trustport (which combines detection technologies from Norman, BitDefender and AVG) topped the tables with over 99.64%, with Avira's AntiVir in second place and another multi-engine scanner, GDATA's AVK, in third - both scored over 99%. Symantec and Kaspersky round out the top five, both spotting over 98% of all samples.

Read More

Microsoft Adds Two to Forefront Family

LAS VEGAS -- Interop 2008 -- Microsoft is adding two edge security products to its Forefront line -- next-generation and rebranded versions of its remote network access product and its network edge protection product, the company revealed here today.
The newly christened Forefront Unified Access Gateway (formerly its Internet Access Gateway) and Forefront Threat Management Gateway (formerly Internet Security & Acceleration Server 2006) will be released in public beta versions later this year. Microsoft also announced that it will roll out an updated version of its SharePoint Optimizer for the existing IAG 2007 SSL VPN product next month.
“We wanted to update our naming and branding, and the vision you will see us [following] better over time is the integration and alignment with multiple access solutions across Microsoft” products, says Margaret Dawson, group product manager for Forefront edge products. “We will do a better job of integrating with SharePoint, OWA, mobile, Windows Server, etc."


Read More

Tuesday, April 29, 2008

MS Forefront security

http://www.youtube.com/watch?v=-kRNkm0TEuA

Microsoft hosts its own police academy

Hundreds of officials from agencies around the world including the FBI, Interpol, state attorneys general, city and county police, and the Air Force are attending a three-day technology training session at Microsoft's Redmond, Wash., campus beginning on Monday.
Microsoft is training the officers how to use technologies that can help them fight cybercrime as well as help them investigate traditional crime with an online component. Nearly 400 people from more than 80 agencies in 35 countries are attending.

Read More

Wednesday, April 23, 2008

Microsoft encourages researchers to hack

Microsoft wants to encourage legitimate researchers to investigate its online services for vulnerabilities -- and promises not to sue as long as they submit the bugs they find

Read the Full Story

Tuesday, April 15, 2008

30 day countdown until Cisco releases Microsoft-NAP friendly NAC gear

New and Hot subject .....

A story in Network World's Network Access Control newsletter reports that Cisco will have its Microsoft-compatible NAC gear ready in about a month, which should be good news for a lot of potential NAC users who are customers of both vendors. Cisco NAC being compatible with Microsoft network access protection (NAP) means users can deploy NAC without having to also deploy a NAC client. Instead, endpoints using Microsoft Vista and XP with Service Pack 3 can use the built-in NAP
Read More

Thursday, April 10, 2008

Microsoft releases public beta of security console

Microsoft on Tuesday released the first public beta of a centralized management console that will pull together administrative tasks around its collection of Forefront security software for clients, servers and the network edge.
At the RSA Conference, Microsoft released the first test code for Stirling, which it unveiled last summer. Stirling is designed as the knot that ties together Microsoft's Forefront security software – Client Security, Security for Exchange Server, Security for SharePoint, Internet Security and Acceleration Server (ISA), and the Intelligent Application Gateway

Read More

Sunday, April 06, 2008

Microsoft Technology Day( Kuwait)





Really it was a big event, at the Microsoft Technology Day 2008 held on March 30, 2008. There were around 300 attendees, 20 speakers and 42 sessions on various Microsoft technologies.

I have delivered the following sessions.

1- Microsoft Intelligent Application Gateway
2- Microsoft System Center Essential

Speakers were of MVPs, Microsoft employees and trainers from Infocenter Kuwait,


Magic Quadrant for Endpoint Protection

Gartner has positioned Microsoft Forefront Client Security in the Challengers Quadrant of the analyst group’s Magic Quadrant for Endpoint Protection Platforms, 2007

21 December 2007
Peter Firstbrook, Arabella Hallawell, John Girard, Neil MacDonald
Gartner RAS Core Research Note G00153291
The stand-alone antivirus market has been replaced with a broader suite of defensive technologies supported by an extensible management platform that can subsume horizontal products, such as data protection and device management capabilities

Read More

Thursday, April 03, 2008

RSA to kick off next week with Microsoft's 'Stirling'

The world's largest security conference will kick off next week in San Francisco with the public unveiling of Microsoft's next-generation of security software, code-named Stirling.

Read More

Sunday, March 23, 2008

Microsoft wins 2008 Info Security Products Guide Global Product Excellence Awards for ISA Server 2006 and Forefront Security for Exchange Server

Microsoft wins 2008 Info Security Products Guide Global Product Excellence Awards for ISA Server 2006 and Forefront Security for Exchange Server
Read More

Microsoft Acquires Security Firm

Komoku technology will be incorporated into Forefront and Windows Live OneCare.

Nancy Gohring, IDG News Service
PC World
Saturday, March 22, 2008; 2:19 PM

Microsoft hopes to beef up its security capabilities with the acquisition of Komoku, a developer of rootkit detection products, announced last week.
Financial terms of the deal were not disclosed.
Microsoft plans to add Komoku's technology into its Forefront and Windows Live OneCare products.Forefrontis Microsoft's suite of enterprise security software that includes malware protection for PCs, security tools for Exchange and SharePoint servers, and gateways that secure remote access to corporate data.

Read The Story

Sunday, March 16, 2008

Trend Micro hit by massive Web hack

Security vendor Trend Micro has fallen victim to a widespread Web attack that splashed malicious software onto hundreds of legitimate Web sites in recent days.
A Trend Micro spokesman confirmed that the company's site had been hacked Thursday, saying that the attack took place earlier in the week. "A portion of our site -- some pages were attacked," said Mike Sweeny, a Trend Micro spokesman. "We took the pages down overnight Tuesday night -- and took corrective action."

Read The Story

Thursday, March 13, 2008

Cisco patches two flaws in its Secure Access Control Server

Submitted by Cisconet on Wed, 03/12/2008 - 7:54pm.
Cisco released free software fixes for two sets of vulnerabilities that affect its Cisco Secure Access Control Server (ACS) for Windows User-Changeable Password (UCP) application. The flaws were reported to Cisco by Felix 'FX' Lindner of Recurity Labs.

Read the Story

Open Day funny Video

Community Open Day –Kuwait





It is our first community event , and really it was amazing one based on the attendees feedback (a round 150 attendees )
Here is some details about the event

http://www.dotnetboom.net/openday/Default.aspx


Tuesday, March 11, 2008

Security vendors rally around NAP

It is a nice article about NAC solution competition

Security vendors are clamoring to announce their products' compatibility with Microsoft's network access protection, a key security feature of Windows Server 2008.
Foundry Networks

Read More

Microsoft Technology Day


























Microsoft Technology Day is being conducted by the Microsoft Experts Community (MSExperts.net) at Kuwait on InfoCenter Dawalia bulding on 30th of march 2008

I will be presenting at the event on the following topics:

1- Microsoft Intelligent application gateway (SSL VPN)


2-Microsoft System Essential 2007