Ehab Abu Al Khair Blog

Symantec hacker to release Norton code Tuesday

2012-01-17T07:59:00.000+03:00

This coming Tuesday behold the full Norton Antivirus 1,7Gb src, the rest will follow," Yama Tough posted via Twitter.

In the past week Yama Tough has released fragments of source code from Symantec products along with a cache of emails. The hacker says all the data was taken from Indian government servers.

for more info

IBM Attacks The Complexity Of Security With Identity Intelligence

2012-01-12T09:12:00.001+03:00

ARMONK, N.Y., Jan. 11, 2012 /PRNewswire/ -- IBM (NYSE: IBM) today announced a new identity intelligence breakthrough designed in IBM labs to provide corporations with a far more sophisticated approach to managing the information employees can access.

Read More

FBI Warns of Coordinated Malware and DDoS Attacks Designed to Drain Bank Accounts

2011-12-04T09:35:00.001+03:00

The FBI is warning the public about a cyber-crime ring that not only steals banking credentials but also launches a distributed denial of service (DDoS) attack on the victim’s financial institution as a diversion.

Read More

MICROSOFT GULF COMMUNITY BLOG

2011-08-15T10:11:00.000+03:00

MICROSOFT GULF COMMUNITY BLOG

Malware hides behind DWORD formatted IP addresses

2011-08-03T22:24:00.000+03:00

Internet users know what a domain name is, and many of them are aware of the fact that it is a "translation" of a dotted decimal IP address. But how many of them know that there are other formats that a domain name can be presented in?

This poorly known fact has occasionally been taken advantage of by cyber scammers and malware pushers, and another instance of this approach has recently been spotted by Zscaler researchers.

Read More

Apple MacBook batteries found vulnerable to malware

2011-07-25T16:36:00.000+03:00

Researcher says Apple laptop microcontroller chips are shipped with default passwords that, once discovered, can be used as a hiding spot for malware

Read More

How Attackers Use Search Engines and How You Can Fight Back!

2011-07-21T09:51:00.000+03:00

We’re seeing a fast-growing trend in the hacking community that, sadly, many aren’t noticing: search engines can be turned into tools for attackers in numerous ways. What can businesses do to fight back?

Read More

ATM Hacking Video - Barnaby Jack Demonstrates ATM Hacking at Black Hat USA 2010

2011-07-19T15:48:00.000+03:00

The presentation "Jackpotting Automated Teller Machines" was originally on the schedule at Black Hat USA 2009 but the talk was pulled at the last minute. This year it was on! Videos of Barnaby Jack demonstrating both local and remote attacks and a multi-platform ATM rootkit

See More

Microsoft posts $250K reward for Rustock botnet herders

2011-07-19T15:34:00.000+03:00

Microsoft upped the ante on Monday in its months-long battle against the Rustock botnet by posting a $250,000 reward for information that leads to the arrest and conviction of the hackers who controlled the malware.

It was the first time Microsoft used its malware bounty program since February 2009, when it offered the same amount for the people responsible for the fast-spreading Conficker worm

Zeus Banking Trojan Hits Android Phones

2011-07-14T11:01:00.000+03:00

The Trojan spyware application known as Zitmo, which is designed to steal people's financial data, has now been altered to target devices running the Android mobile operating system.

Read More

Microsoft and FireEye give inside story of Rustock botnet shutdown

2011-04-10T08:49:00.002+03:00

The team behind the shutdown of the Rustock botnet have been giving details of how they were able to identify and take out the key command servers behind the network, and the legal precedent the case has set.

The Rustock botnet was responsible at one stage for more than half of the world's spam; its demise last week has cut global junk email levels significantly. It is made up of more than one million PCs which were infected over a period of years and remain so, with the possibility it could still be reactivated if any backup systems remain.

Analytical Brief: RSA Breach

2011-03-19T11:36:00.000+03:00

This brief details NSS Labs assessment of the recent RSA breach and provides some important points that need to be taken into consideration by enterprises needing to protect critical information.

On Thursday, March 17, 2011, RSA’s Executive Chairman Art Coviello wrote in an open letter on the company’s website and published in their 8-K SEC filing that hackers had mounted an “extremely sophisticated cyber attack” that has put at risk its SecurID product.

RSA: Cyberattack could put customers at risk

2011-03-19T11:34:00.001+03:00

government and bank employees, was stolen during an "extremely sophisticated cyberattack," putting customers relying on them to secure their networks at risk, the company said today

"Recently, our security systems identified an extremely sophisticated cyberattack in progress being mounted against RSA," Executive Chairman Art Coviello, wrote in an open letter to customers, which was posted on the company's Web site.

The week of Forefront !

2010-12-19T16:08:00.002+03:00

This week of December Microsoft has released 2 of Forefront Products to RTM

1--RTM: Microsoft Forefront Protection Server Management Console (FPSMC) 2010

2-RTM : Forefront Endpoint Protection 2010

Microsoft vs. McAfee: How free antivirus outperformed paid

2010-11-28T08:50:00.002+03:00

Nice Article to Read

How effective is free antivirus software?

Cyber criminals cash in on Korea clashes!!!!!!

2010-11-25T10:15:00.001+03:00

Cyber criminals are already attempting to cash in on yesterday's clashes between North and South Korea, according to Trend Micro.

The security company reports that within several hours of the cross-border incident, search results related to the subject of the clash, had been poisoned by scammers

Microsoft just doesn’t get it…. Security is about diversity

2010-11-23T08:13:00.001+03:00

What do you think here ? are you with this report or you have another ideas ?
let me know what do you think

Microsoft recently started installing its Microsoft Security Essentials (MSE) free antivirus product via the Operating System update mechanism to computers which don’t already have an antivirus installed. Basically Microsoft is saying they are worried about the security of its users and they need to make sure they are protected. Perhaps Microsoft is trying to position itself as a provider of secure Operating Systems given the market perception of Linux, Apple and potentially Google as having more secure alternatives to Windows OS, but that’s a different story.

Read the full Report

Cyber crime: The rats that gain access by the click of a mouse

2010-11-20T20:01:00.000+03:00

When Iran took the unusual step of announcing that its Bushehr nuclear power plant had been infected by a piece of malicious software,

Concern had been growing for months over the potential impact of Stuxnet, a new highly sophisticated computer worm that had been targeting the programs at the heart of core industrial operating systems around the world. What particularly worried the security community was that Stuxnet was the first example of a computer program designed to cause serious damage to the physical world.

Nearly Two-Thirds Of Companies Have Been Breached In The Past Year, Study Says

2010-11-19T15:16:00.000+03:00

IT security becoming a higher priority in many organizations, CompTIA reports

Sixty-three percent of U.S. organizations have experienced at least one security incident or breach during the past year, according to a new study released today.

Almost half of the breached organizations classified the situation as "serious" -- meaning there was a financial threat, potential damage to the organization's reputation, or other business-critical problem, according to the Computing Technology Industry Association's (CompTIA's) 8th Annual Global Security Trends Study.

Microsoft Forefront Endpoint Protection 2010 Release Candidate

2010-11-10T07:59:00.002+03:00

Below the link for Microsoft Endpoint Protection 2010 Release Candidate ,

http://technet.microsoft.com/en-us/evalcenter/ff182914.aspx

Iran confirms Stuxnet worm hit nuclear plant

2010-09-27T20:43:00.000+03:00

Iranian sources appear to have confirmed that the Stuxnet worm has infected PCs at the country's Bushehr nuclear power facility, but maintain that it has not disrupted the plant's operations. First discovered in July, the sophisticated Stuxnet threat has been designed to disrupt the supervisory control and data acquisition systems that control manufacturing processes in factories and plants around the world.

Attacks on power systems: Hackers, malware

2010-09-15T12:12:00.000+03:00

Criminal Hackers and Malware vs Power Systems

Criminal hackers take advantage of both technical vulnerabilities[1] and human failings[2] to penetrate insecure systems.

Dell warns of malware on server motherboards

2010-07-22T09:19:00.000+03:00

Dell is apparently warning customers that "a small number" of its PowerEdge R410 server motherboards may contain malicious software.

"The potential issue involves a small number of PowerEdge server motherboards sent out through service dispatches that may contain malware," according to post on a Dell support forum. "This malware code has been detected on the embedded server management firmware."

Apple Ranks First In Vulnerabilities

2010-07-13T08:49:00.000+03:00

Ten technology vendors account for 38% of all vulnerabilities disclosed over the past five years, a percentage that has remained relatively stable during this period.

Yet, the number of vulnerabilities affecting PC users has been rising rapidly, thanks largely to increasingly vulnerable third-party applications.

Reports of 'App Store Hacked' Greatly Exaggerated

2010-07-05T08:51:00.000+03:00

Earlier today a report on TheNextWeb claimed that the App Store had been hacked and that a rogue developer had gamed the system by artificially driving sales to their eBooks. The rise in ranks were noted by competing developers who thought the rise strange given that the books all represented poorly coded Vietnamese-based books.

Read More

Securing 4G smartphones

2010-06-22T15:16:00.000+03:00

Because smartphones have typically had both limited storage and connection speeds, they traditionally haven't been as vulnerable to some of the security threats that have long plagued PCs.

But with the advent of super-powered smartphones and 4G mobile networks, this might be changing. Today's high-end smartphones have storage capacities in the 32GB range and processing speeds that go 1GHz or higher. And once 4G technologies such as WiMAX and LTE become more widely available, smartphones will have average connection speeds of 3Gbps or higher, giving them speeds that approach the average U.S. wireline broadband speed.

New Microsoft Forefront Software Runs Five Antivirus Vendors' Engines

2010-05-11T08:34:00.000+03:00

Forefront Protection 2010 for SharePoint supports AV from Authentium, Kaspersky Lab, Norman, and VirusBuster as well as Microsoft

Read More

Linux machines linked to spam

2010-04-28T13:31:00.000+03:00

symantec Studay shows Linux machines linked to spam
Although Linux holds only a small market share, Linux computers appear to send a disproportionate amount of spam compared to other operating systems, according to new research from Symantec's MessageLabs messaging security division. Symantec looked at spam from November 2009 through March and broke down what kind of operating system is on the computer that sent the spam.

Read More

Flawed McAfee update paralyzes corporate PCs

2010-04-22T16:33:00.000+03:00

A flawed McAfee antivirus update sent enterprise administrators scrambling today as the new signatures quarantined a crucial Windows system file, crippling an unknown number of Windows XP computers, according to messages on the company's support forum.

The forum has since gone offline.

New AV- Test Resulut

2010-02-02T12:54:00.003+03:00

Microsoft Forefront Still beating the top Av Vendors
February 2009 saw the introduction of RAP testing to VB's VB100 comparative reviews, measuring products' reactive and proactive detection abilities against the most recent malware that has emerged around the world.

Y2K all over again in 2010?

2010-01-07T11:34:00.000+03:00

A decade after the Y2K crisis, date changes still pose technology problems, making some security software upgrades difficult and locking millions of bank ATM users out of their accounts. Chips used in bank cards to identify account numbers could not read the year 2010 properly, making it impossible for ATMs and point of sale machines in Germany to read debit cards of 30 million people since New Year's Day, according to published reports. The workaround is to reprogram the machines so the chips don't have to deal with the number

Read More

Smartphone attacks, rogue antivirus, cloud breaches top 2010 security concerns

2009-12-24T16:46:00.000+03:00

The rise of the Conficker worm and Heartland Payment Systems' enormous data breach were two defining security events in 2009. What's in store for 2010?

"It's going to get worse," says Patrik Runald, senior manager of security and research at Websense, who argues there has not yet been a year when things got better in terms of security and the wider Internet. Criminals have been mastering botnets, phishing scams and fake antivirus software sales, and 2010 will bring new waves of attacks that exploit fresh targets. Specifically, smartphones such as the Apple iPhone and those based on Google's Android operating system will be in attackers' line of sight for 2010, Runald says.

Clientless SSL VPN products break web browser domain-based security models

2009-12-03T08:48:00.002+03:00

Clientless SSL VPN products from multiple vendors like Cisco ,Juniper and others operate in a way that breaks fundamental browser security mechanisms. An attacker could use these devices to bypass authentication or conduct other web-based attacks.

Read More

Microsoft: 'TaterF' Worm Top Malware Threat So Far This Month

2009-11-24T09:31:00.001+03:00

Microsoft's Malicious Software Removal Tool (MSRT) removed malware from more than 1.5 million machines just three days after it was updated on November's Patch Tuesday, and the software giant has detected two new fake antivirus threats on more than 110,000 machines.

Read More

Microsoft delaying the release Forefront Endpoint Protection 2010

2009-11-22T13:20:00.004+03:00

Microsoft are announcing a schedule and strategy update for Forefront Endpoint Protection 2010, a component of the upcoming Forefront Protection Suite (previously codenamed “Stirling.”)

More Info

Monitor the Security Compliance of Your IT Environment for Computers Running Windows

2009-11-13T20:14:00.002+03:00

I think every IT Pro should have this great tool

Read More

Latest Reactive and Proactive AV test results

2009-10-22T11:52:00.003+03:00

Microsoft ForeFront Client security is doing great on the latest Virusbtn Test

February 2009 saw the introduction of RAP testing to VB's VB100 comparative reviews, measuring products' reactive and proactive detection abilities against the most recent malware that has emerged around the world.

http://www.virusbtn.com/vb100/rap-index.xml

One week of MSE: 1.5 million downloads, 4 million detections

2009-10-21T09:35:00.000+03:00

Microsoft Security Essentials data for the first week has been released, and the numbers tell quite a story.

Redmond has released data from the first week (between September 29 to October 6) of Microsoft Security Essentials (MSE) usage, the company's free, real-time consumer antimalware solution for fighting viruses, spyware, rootkits, and Trojans. The product was made generally available to consumers in 19 countries in eight languages, and in the first week Microsoft says it has seen well over 1.5 million downloads. "By the end of week two, we had exceeded 2.6 million downloads," a Microsoft spokesperson told Ars. Number of downloads is never equivalent to the number of installs though: the software giant can't say how many machines have the software installed, but it can weigh in on the number of infected machines

Read More

Forefront Threat Management Gateway 2010 Release Candidate

2009-10-13T11:28:00.001+03:00

The new version Of ISA server is Finally Out TMG 2010

Forefront Threat Management Gateway 2010 allows employees to safely and productively use the Internet without worrying about malware and other threats. Forefront Threat Management Gateway 2010 is available for download in both Standard Edition and Enterprise Edition

http://www.microsoft.com/DOWNLOADS/details.aspx?FamilyID=e05aecbc-d0eb-4e0f-a5db-8f236995bccd&displaylang=en#QuickInfoContainer

Microsoft Security Essentials Is finally Out

2009-09-30T08:35:00.000+03:00

Microsoft Security Essentials provides real-time protection for your home PC that guards against viruses, spyware, and other malicious software.
Microsoft Security Essentials is a free* download from Microsoft that is simple to install, easy to use, and always kept up to date so you can be assured your PC is protected by the latest technology. It’s easy to tell if your PC is secure — when you’re green, you’re good. It’s that simple.
Microsoft Security Essentials runs quietly and efficiently in the background so that you are free to use your Windows-based PC the way you want—without interruptions or long computer wait times.

http://www.microsoft.com/Security_essentials/

New scam adds live chat to phishing attack

2009-09-17T11:58:00.000+03:00

Online scammers have created a phishing site masquerading as a U.S.-based bank that launches a live chat window where victims are tricked into revealing more information, researchers at the RSA FraudAction Research Team said on Wednesday.

Read More

Pentagon Orders Review of Social Networking

2009-08-10T16:22:00.000+03:00

The Pentagon is reviewing its policy toward social networking sites amid security concerns. The order comes a day after the U.S. Marine Corps issued a ban on the use of Facebook, Twitter and MySpace.
The Pentagon is reviewing its policies toward social networking sites amid network security and other concerns.
According to reports, U.S. officials have ordered a review of the threats and benefits of using Web 2.0 sites such as Facebook and others. The review is slated to be completed by the end of September.
ReadMore

Microsoft Security Essentials Review (With Screenshots)

2009-06-23T08:24:00.000+03:00

Microsoft Security Essentials is the name of Microsoft’s latest Anti-Virus/Anti-Spyware software for Windows operating system. It is already being tested internally at Microsoft and is rumored to launch in September of this year. We were lucky to gets hands on the pre-beta build version of Security Essentials. I tested it on Windows Vista and was quite impressed with it. Below is the complete review along with some interesting findings.

Read More

MS Free Morro Antivirus is out Soon

2009-06-17T15:21:00.002+03:00

Finally Microsoft will release their new Antivirus Morro ( Beta version )

Read More

Web attack that poisons Google results gets worse

2009-05-21T08:26:00.000+03:00

A new attack that peppers Google search results with malicious links is spreading quickly, the U.S. Computer Emergency Readiness Team warned on Monday.
The attack, which has intensified in recent days, can be found on several thousand legitimate Web sites, according to security experts. It targets known flaws in Adobe's software and uses them to install a malicious program on victims' machines, CERT said
The program then steals FTP login credentials from victims and uses that information to spread further. It also hijacks the victim's browser, replacing Google search results with links chosen by the attackers

Read More

Information about Worm:Win32/Conficker.D

2009-03-29T09:48:00.000+03:00

full of information about the new virus Conficker.D

http://blogs.technet.com/mmpc/default.aspx

Downanup worm day April 1st attack

2009-03-29T09:35:00.002+03:00

Microsoft Security Response Center (MSRC) is warning about the new variant of Conficker.D that might be set to activate on 1st April

have a clear picture and how to protect your self
http://blogs.technet.com/msrc/archive/2009/03/27/update-on-conficker-d.aspx

IE8 is more secure against malware than rival browsers

2009-03-19T09:46:00.000+03:00

Microsoft plans to make its Internet Explorer 8 browser available on Thursday, along with a company-commissioned report claiming IE8 is more secure against malware than rival browsers from Mozilla and Google.
Users will be able to download IE8 in 25 languages at 12:00 noon Eastern Daylight Time on Thursday from Microsoft's IE Web site and its online download center.

Read More

Microsoft Offers free protection scan

2009-03-09T21:07:00.001+03:00

Use Microsoft free protection scan to check for and remove viruses, spyware, and other potentially unwanted software and to find vulnerabilities in your Internet connection

http://onecare.live.com/site/en-US/center/howsafe.htm?s_cid=mscom_msrt

Conficker, Downadup worm , full Story

2009-02-17T08:08:00.002+03:00

Microsoft has released a blog post explaining everything you need to know about Conficker

for more information about this worm . please check this link

Centralized Information About The Conficker Worm

Independent research firm recognizes Microsoft NAP as a leader in Network Access Control

2009-01-19T14:39:00.001+03:00

Microsoft’s Network Access Protection (NAP) solution was cited as a leader, the top category, in a recent independent report, “The Forrester Wave: Network Access Control, Q3 2008.” Forrester placed a lot of emphasis on different access control scenarios for the evaluation, and the different vendors were evaluated around 12 different scenarios as well as strengths across technology, strategy, and market presence.
“Microsoft has the strongest NAC product for managed endpoints,” the report stated. The report goes on to state that even though its official product has only been shipping since the inception of Windows Server 2008, Microsoft has already established itself as a critical thought leader and contributor to the standardizations of NAC. “Microsoft has the overall highest score among the 12 scenarios we evaluated.

Malware Inspection at the Perimeter

2009-01-12T13:46:00.000+03:00

The new Microsoft Forefront Threat Management Gateway Medium Business Edition (TMG MBE), available as part of Essential Business Server and as a standalone product, provides significant improvements for the Microsoft Firewall service operation. One of the most important features of this new firewall is the capability to inspect HTTP traffic that crosses it for malware. By using this new feature, you will be able to:
Improve your ability to protect your internal network against malware coming from the Internet.
Keep the perimeter updated with the latest malware signatures by using TMG Update Center.
Keep an eye on suspicious traffic via real-time monitoring of log entries and get post-mortem malware statistics using the new set of reports.

Read More

Malware infection rates in the Middle East among highest worldwide

2008-12-17T12:05:00.000+03:00

Based on Microsoft’s latest Security Intelligence Report

The report features a number of countries in the region, including Bahrain, Egypt, Iraq, Saudi, Turkey, Jordan, Lebanon, Yemen, and the UAE in the worst 25 countries for malware infection as covered by the report.

Read More

Microsoft ,EMC partner in Data Loss Prevention

2008-12-05T20:08:00.000+03:00

I think this is a good move from microsoft on the security area
Microsoft Thursday said it plans to integrate RSA data-loss prevention technology into its products to enable security managers to monitor sensitive data and block unauthorized use. RSA is EMC's security division. \
http://www.networkworld.com/news/2008/120408-microsoft-emc-partner.html?nlhtsec=ts_120508&nladname=120508securityal

"Morro," OneCare and Forefront

2008-11-30T14:12:00.000+03:00

I know you have many questions regarding this news , so let’s here from Microsoft

Here is the Story

Gmail exploit may allow attackers to forward e-mail

2008-11-24T09:29:00.000+03:00

Gmail security vulnerability may allow an attacker to set up filters on users' e-mail accounts without their knowledge, according to a proof of concept posted Sunday at GeekCondition.com.
In his post, Brandon writes that the vulnerability has caused some people to lose their domain names registered through GoDaddy.com

Read More

Microsoft announces free Morro antivirus software

2008-11-19T09:00:00.000+03:00

Microsoft is getting serious about global security, offering a free anti-malware package code-named Morro that has been specially designed for low cost PCs in developing nations.
The software will be available in the second half of 2009 and will provide 'comprehensive protection' from 'the majority of online threats', including viruses, spyware, rootkits and trojans.

Read More

Microsoft: Flaws down but malware on the rise

2008-11-06T14:23:00.000+03:00

The number of flaws impacting Microsoft products dropped 33.6 percent in the first half of 2008 compared to the last half of 2007, as hackers ramp up their focus on third-party applications, the latest Microsoft Security Intelligence Report found.This trend was particularly noticeable in the browser, said the report, released Monday. Browser-based exploits occurring on Windows XP machines were attributable to Microsoft bugs 42 percent of the time and third-party software 58 percent of the time.

Read More

Antivirus Defense-in-Depth Guide

2008-10-29T15:48:00.000+03:00

The information presented in the Antivirus Defense-in-Depth guide has been updated to reflect the security improvements provided as part of Windows XP Service Pack 2. A number of the features in Windows XP Service Pack 2 have made it more difficult for malware to attack a Windows XP-based computer. The updates to this guide are designed to ensure that these enhancements are identified and explained.
http://www.microsoft.com/technet/security/guidance/serversecurity/avdind_0.mspx

Malware Removal Starter Kit

2008-10-29T15:44:00.000+03:00

Many small- and medium-sized organizations use antivirus software, and yet new viruses, worms, and other forms of malicious software (malware) continue to infect large numbers of computers in these organizations. Malware proliferates at alarming speed and in many different ways, which makes it particularly widespread today.
This guide is intended for IT Generalists who want information and recommendations that they can use to effectively address and limit malware that infects computers in small- and medium-sized organizations. This guidance provides a set of tasks that licensed Windows® users can perform at no cost to create the Malware Removal Starter Kit. Recommendations for free malware-scanning tools are included. You can use these tools in combination with the kit to conduct scans, detect problems, and remove malware from your computer

http://www.microsoft.com/technet/security/guidance/disasterrecovery/malware/default.mspx#EHD

Fake Microsoft email contains "backdoor" virus

2008-10-12T14:33:00.000+03:00

I personally received this email,

fake phishing email making the rounds seemingly comes from Microsoft, but actually contains a “backdoor” trojan.
The email has a subject line that reads, “Security Update for OS Microsoft Windows” and supposedly came from the "Microsoft Official Update Center" at a domain named securityassurance[at]microsof[dot]com.
The message urges users to run an attached file to install an update that the email said will protect from the recipient from security threats and performance problems.

Read More

How thieves can steal your card info without you knowing it

2008-10-07T15:42:00.000+03:00

Nice article to Read and secure you Credit Card Transactions
Taking just 5 seconds to inspect any credit/debit card readers before you swipe could end up saving you from identity and credit card theft.
Read More

Yahoo, Hotmail, Gmail all vulnerable to password reset hack

2008-09-23T14:56:00.000+03:00

Yahoo Mail isn't the only Web-based mail service that could be duped into giving up someone else's account password, the tactic that some have argued was used to break into Gov. Sarah Palin's e-mail earlier this week.
Google Inc.'s Gmail, Microsoft Corp.'s Windows Live Hotmail and Yahoo Inc.'s Mail all rely on automated password reset mechanisms that can be abused by knowing a username associated with an account and an answer to a single security question, according to quick tests run by Computerworld .

Read More

How to configure NAP for Windows Server 2008

2008-09-17T09:09:00.000+03:00

Really Nice Article in how to configure Microsoft NAP

http://searchsecurity.techtarget.com/tip/0,289483,sid14_gci1327034,00.html?track=NL-422&ad=659042&asrc=EM_NLT_4467618&uid=7917188

Microsoft's NAC comes out on top

2008-09-17T09:07:00.000+03:00

Microsoft comes out on top of the NAC heap in an evaluation of 10 vendors that was published recently by Forrester Research.
The result is interesting because it’s not based on how many units were sold or performance tests but rather on evaluation of how well the products would meet the challenges of a set of real-world deployment situations

Read More

Will Microsoft Take a Sip of 'Midori'?

2008-09-08T13:28:00.000+03:00

After some 23 years of Windows development, Microsoft appears to be more seriously considering the delivery of a non-Windows operating system. "Midori," the code name for a componentized operating system being built from scratch, has been kicking around the Redmond labs for four or five years. Recently, however, sources familiar with the project say Midori is now in "incubation," meaning the product is likely meandering its way closer to commercial availability. Midori is just one of a number of incubations under Craig Mundie, Microsoft's chief research and strategy officer.
However, another indication that the company is beginning to take Midori more seriously is that Eric Rudder, a longtime Microsoft veteran and senior vice president for technical strategy, is now supervising the project.

Read More

Cisco warns of flaws in Cisco ASA 5500, PIX, Cisco Secure ACS

2008-09-07T10:07:00.000+03:00

Cisco is warning of multiple security holes in its security appliances that if exploited, could result in a reload of the devices or disclosure of confidential information. The company has also issued a fix to a vulnerability in its Cisco Secure Access Control Server, that was discovered by external security researchers.

Read More

Early security issues tarnish Google's Chrome

2008-09-04T13:21:00.000+03:00

Security researchers have already uncovered vulnerabilities in Google's Chrome browser, including one that could allow a user to download malicious code

Read More

Intrusions hit Fedora, Red Hat Enterprise Linux servers; some OpenSSH packages compromised

2008-08-27T07:27:00.000+03:00

The maker of Red Hat Enterprise Linux and Fedora said that hackers have gained access to key servers in what appear to be two separate incidents. Red Hat Inc. found last week that someone had compromised several Fedora servers, including one that is used to sign Fedora packages. The company said that although the server was accessed illegally, they don’t believe that the passphrase used to get to the key used to actually sign the packages was compromised.

Read More

Microsoft BlueHat Security Briefings: Fall 2008

2008-08-18T16:39:00.000+03:00

The eighth edition of BlueHat will be held on October 16-17, 2008, at the Microsoft corporate headquarters. The Microsoft BlueHat conference is a twice-a-year event aimed at bringing internal Microsoft security professionals and external security researchers together in a relaxed environment to promote the sharing of ideas and social networking. The event highlights important emergent technologies, techniques, and industry best practices.
Sessions
BlueHat v8 will consist of two full days of great content from both internal and external security experts presented in a lecture theater environment. These presentations will offer speakers the opportunity to showcase ongoing research and collaborate with peers while educating and highlighting advancements in security products and techniques.
Day 1: Sessions will be a hybrid of content from deep-dive technical security issues to innovative techniques and best practices in the information security realm.
Day 2: Microsoft’s Security Development Lifecycle (SDL) team will host sessions emphasizing secure development and testing practices and how to develop with security in mind from the beginning of the software development lifecycle. The BlueHat SDL sessions will focus more on appropriate defense strategies and less on attack techniques. Sessions might include demonstrations of secure coding techniques or correct and incorrect methods of using various security tools.

http://technet.microsoft.com/en-us/security/cc748656.aspx

Hackers spoof MSNBC alerts in new twist on malware ruse

2008-08-14T16:59:00.000+03:00

Hackers trying to plant malware on PCs have switched from touting CNN news in come-on messages to pushing breaking stories said to be from rival network MSNBC, security experts said today.
The fake messages pose with subject headings that include the phrase "Breaking News," along with phony news story headlines, such as " Jerry Yang relinquishes control over Yahoo," "Mary-Kate Olsen responsible for Heath Ledger's death," and "Plane crashes into prep school, hundreds of kids killed," said researchers at F-Secure Corp. and Sophos Plc

Read More

From BLACK HAT 2008: Google gadget flaws

2008-08-07T07:27:00.000+03:00

Google gadgets are small applications, such as a currency converter, calendar or weather forecast, that can be added to the iGoogle homepage or a computer's desktop. The problem lies in the fact that the mini-modules are created by third-party developers, who can embed malicious JavaScript to redirect users to hacker websites, security researcher Robert “RSnake” Hansen told several hundred people in attendance
Read More

Microsoft to give partners heads-up on security vulnerabilities

2008-08-05T16:40:00.000+03:00

Microsoft will be giving companies that sell security software and services to its customers a sneak peek at the technical details of the vulnerabilities in Microsoft software before the company releases its monthly "Patch Tuesday" updates.
The new Microsoft Active Protection Program, set to be announced at the Black Hat security conference on Tuesday, is designed to give software vendors a change to prepare updates to their software before attackers have a chance to reverse engineer Microsoft's security patch and create an exploit.
"It's essentially a race between the attackers and the protectors," said Andrew Cushman, who runs the Microsoft Security Response Center. The program will "give a head start to software providers delivering security features to our mutual customers."

Read More

Switches are Supported by MS NAP 802.1x Enforcement

2008-08-05T16:33:00.000+03:00

very Important article for implementing MS NAP 802.1x Enforcement
http://blogs.technet.com/nap/archive/2007/07/10/nap-802-1x-enforcement-switches-we-ve-tested-w-nap.aspx

MySpace and Facebook targeted by worm

2008-08-03T22:29:00.000+03:00

Facebook users take care of this !!!

The worm variants are spread through the popular social networking sites, turning infected machines into zombies - PCs illicitly controlled by hackers to carry out tasks like denial of service attacks.The Net-Worm.Win32.Koobface.a is activated when a user accesses their MySpace account, and is spread when it automatically comments on linked friend's sites. Facebook is targeted by Net-Worm.Win32.Koobface.b, which sends messages to the infected user's contacts through the Facebook site.

Read More

Details of major Internet flaw posted by accident

2008-07-23T17:43:00.000+03:00

The flaw was discovered several months ago by IOActive researcher Dan Kaminsky, who worked through the early part of this year with Internet software vendors such as Microsoft, Cisco and the Internet Systems Consortium to patch the issue.
The companies released a fix for the bug two weeks ago and encouraged corporate users and ISPs to patch their DNS systems as soon as possible. Although the problem could affect some home users, it is not considered to be a major issue for consumers, according to Kaminsky.

Read More

New risks in 802.11n

2008-07-22T16:52:00.000+03:00

Along with the potential performance and coverage benefits of 802.11n come a few new security risks, says industry security guru Joshua Wright. Wright presented a Webinar last week that outlined several new vulnerabilities that high-speed 802.11n networks introduce

Read More

Facebook best Security practice

2008-07-21T16:03:00.000+03:00

If you are Facebook user , really you need to read this
Sophos recommended privacy settings for Facebook
ID fraudsters target Facebook and other social networking sites to harvest information about you. Sophos experts recommend you set the following Facebook privacy options to protect against online identity theft.

Read More

Anything But Microsoft

2008-07-20T15:28:00.000+03:00

Really nice Article to read

Microsoft is a security nightmare, Macs and Linux are a godsend.
Just because you're a Linux or Mac person sipping coffee in your server room on Patch Tuesdays doesn't mean you're immune from exploits. Nothing is bulletproof these days.

http://www.darkreading.com/document.asp?doc_id=99291&page_number=3

Intel Chips under Attack

2008-07-15T08:19:00.000+03:00

Waaw!!!!!!!!

Security researcher and author Kris Kaspersky plans to demonstrate how an attacker can target flaws in Intel's microprocessors to remotely attack a computer using JavaScript or TCP/IP packets, regardless of what operating system the computer is running.

Read More

IE8.0 new security features

2008-07-03T14:34:00.000+03:00

Microsoft has outlined new security features it will add to Internet Explorer (IE) next month, including anti-malware protection to block most cross-site scripting attacks.
Read More

ISA Server 2006 Service Pack 1 - Released

2008-07-03T09:28:00.000+03:00

Finally Microsoft has released ISA 2006 SP1 ,and you can downlaoded from the following link
http://www.microsoft.com/downloads/details.aspx?FamilyId=D2FECA6D-81D7-430A-9B2D-B070A5F6AE50&displaylang=en

Yahoo Mail flaw found and fixed

2008-06-30T07:53:00.001+03:00

If you have Yahoo desktop messenger , you need to read this one

Researchers at Cenzic discovered a vulnerability in Yahoo Mail they said could allow attackers to steal Yahoo identities and potentially access users’ sensitive information.
The company, a Web application security provider based in Santa Clara, Calif., notified Yahoo of the cross-site scripting flaw in its popular Web mail program on May 23 and Yahoo fixed it June 13.
The vulnerability requires the attacker use Yahoo Messenger desktop application version 8.1.0.209 to chat with someone using the Messenger support in the latest version of Yahoo Mail. An attacker can make their chat status “invisible” and craft a malicious message; when he returns to the chat and the user clicks on the message, the malicious scripting is executed, said Mandeep Khera, Cenzic vice president of marketing.

Read More

ISA Server 2006 Service Pack 1 Features

2008-05-24T09:25:00.001+03:00

Microsoft® Internet Security and Acceleration (ISA) Server 2006 Service Pack (SP) 1 will be available for your installation pleasure this summer!

really enjoy the new features

read More

Microsoft Offers Cash To Use Its Search Engine

2008-05-22T08:19:00.000+03:00

Microsoft plans to entice advertisers and users of its search engine with savings on online purchases on a site called Live Search cashback

Read More

Facebook applications exposed as security risk

2008-05-15T10:04:00.000+03:00

Take care while you are using Facebook , security report shows Facebook applications exposed as security risk

Speculation on the security of social networking has increased amid reports that applications on Facebook are capable of collecting personal information.

Read The Report

The Award for “outstanding Individual contributor FY08”

2008-05-13T15:23:00.000+03:00

I was very delightful when I received a call from Symantec inviting me to attend the “Symantec Partner Awards Dinner 08” held in Dubai.
At the beginning they insisted to have me there without giving me a reason, I did my best to get the Visa and it did not work , So I wasn’t able to attend.
One of my colleges attended on my behalf and the surprise that I have been awarded as the “outstanding Individual contributor FY08”, Best Pre -Sales in the ME.

Flaw turns Gmail into spamming machine

2008-05-12T10:55:00.000+03:00

A "serious security flaw" in Gmail turns Google's e-mail service into a spamming machine, according to a recent security report.
INSERT, the Information Security Research Team, has created a proof of concept that exploits the "trust hierarchy" that exists between mail service providers. By exploiting a flaw in the way Google forwards messages, a spammer can send thousands of bulk e-mails through Google's SMTP service, bypassing Google's 500-address bulk e-mail limit and identity fraud protections.

Read More

Microsoft is winning the NAC war, expert says

2008-05-07T16:03:00.000+03:00

Why Microsoft is doing it right, ACLs are better than VLANs and the dirty dark corner of NAC (management).
By Julie Bort , Network World , 05/06/2008

Security guru Joel Snyder from Opus One recently starred as the guest of a live Network World chat where he discussed the state of network access control. Snyder says that Microsoft is emerging as one of the clear winners of NAC, but that Microsoft's technology is a foundation from which to build, not an end-all. He also says that those who are anti-NAC simply don't understand the technology. He answered a slew of technical questions from attendees including why ACLs are better than VLANs, the dirty dark corner of NAC (management) and the how and why of 802.1X. What follows is a full transcript

Read More

MS gaining fast in AV-Comparatives tests

2008-04-30T20:23:00.000+03:00

Detection rates up 7% in six months, more improvement predicted.
AV-Comparatives have released the results of their latest test of detection rates, pitting 17 scanners already known to perform well against their huge collection of malware. The most improvement over the previous run, which took place in February, was shown by Microsoft, whose score shot up by 7%.

The tests take the form of an on-demand scan over a testset of over 800,000 verified samples, including file and macro viruses, worms, trojans, backdoors and other malware, using 'best possible' settings. Multi-engine product AEC Trustport (which combines detection technologies from Norman, BitDefender and AVG) topped the tables with over 99.64%, with Avira's AntiVir in second place and another multi-engine scanner, GDATA's AVK, in third - both scored over 99%. Symantec and Kaspersky round out the top five, both spotting over 98% of all samples.

Read More

Microsoft Adds Two to Forefront Family

2008-04-30T08:48:00.000+03:00

LAS VEGAS -- Interop 2008 -- Microsoft is adding two edge security products to its Forefront line -- next-generation and rebranded versions of its remote network access product and its network edge protection product, the company revealed here today.
The newly christened Forefront Unified Access Gateway (formerly its Internet Access Gateway) and Forefront Threat Management Gateway (formerly Internet Security & Acceleration Server 2006) will be released in public beta versions later this year. Microsoft also announced that it will roll out an updated version of its SharePoint Optimizer for the existing IAG 2007 SSL VPN product next month.
“We wanted to update our naming and branding, and the vision you will see us [following] better over time is the integration and alignment with multiple access solutions across Microsoft” products, says Margaret Dawson, group product manager for Forefront edge products. “We will do a better job of integrating with SharePoint, OWA, mobile, Windows Server, etc."

Read More

MS Forefront security

2008-04-29T11:59:00.000+03:00

http://www.youtube.com/watch?v=-kRNkm0TEuA

Microsoft hosts its own police academy

2008-04-29T11:25:00.000+03:00

Hundreds of officials from agencies around the world including the FBI, Interpol, state attorneys general, city and county police, and the Air Force are attending a three-day technology training session at Microsoft's Redmond, Wash., campus beginning on Monday.
Microsoft is training the officers how to use technologies that can help them fight cybercrime as well as help them investigate traditional crime with an online component. Nearly 400 people from more than 80 agencies in 35 countries are attending.

Read More

Microsoft encourages researchers to hack

2008-04-23T16:02:00.000+03:00

Microsoft wants to encourage legitimate researchers to investigate its online services for vulnerabilities -- and promises not to sue as long as they submit the bugs they find

Read the Full Story

30 day countdown until Cisco releases Microsoft-NAP friendly NAC gear

2008-04-15T23:15:00.000+03:00

New and Hot subject .....

A story in Network World's Network Access Control newsletter reports that Cisco will have its Microsoft-compatible NAC gear ready in about a month, which should be good news for a lot of potential NAC users who are customers of both vendors. Cisco NAC being compatible with Microsoft network access protection (NAP) means users can deploy NAC without having to also deploy a NAC client. Instead, endpoints using Microsoft Vista and XP with Service Pack 3 can use the built-in NAP
Read More

Microsoft releases public beta of security console

2008-04-10T12:50:00.000+03:00

Microsoft on Tuesday released the first public beta of a centralized management console that will pull together administrative tasks around its collection of Forefront security software for clients, servers and the network edge.
At the RSA Conference, Microsoft released the first test code for Stirling, which it unveiled last summer. Stirling is designed as the knot that ties together Microsoft's Forefront security software – Client Security, Security for Exchange Server, Security for SharePoint, Internet Security and Acceleration Server (ISA), and the Intelligent Application Gateway

Read More

Microsoft Technology Day( Kuwait)

2008-04-06T13:46:00.000+03:00

Really it was a big event, at the Microsoft Technology Day 2008 held on March 30, 2008. There were around 300 attendees, 20 speakers and 42 sessions on various Microsoft technologies.

I have delivered the following sessions.

1- Microsoft Intelligent Application Gateway
2- Microsoft System Center Essential

Speakers were of MVPs, Microsoft employees and trainers from Infocenter Kuwait,

Magic Quadrant for Endpoint Protection

2008-04-06T13:16:00.000+03:00

Gartner has positioned Microsoft Forefront Client Security in the Challengers Quadrant of the analyst group’s Magic Quadrant for Endpoint Protection Platforms, 2007

21 December 2007
Peter Firstbrook, Arabella Hallawell, John Girard, Neil MacDonald
Gartner RAS Core Research Note G00153291
The stand-alone antivirus market has been replaced with a broader suite of defensive technologies supported by an extensible management platform that can subsume horizontal products, such as data protection and device management capabilities

Read More

RSA to kick off next week with Microsoft's 'Stirling'

2008-04-03T17:07:00.000+03:00

The world's largest security conference will kick off next week in San Francisco with the public unveiling of Microsoft's next-generation of security software, code-named Stirling.

Read More

Microsoft wins 2008 Info Security Products Guide Global Product Excellence Awards for ISA Server 2006 and Forefront Security for Exchange Server

2008-03-23T09:53:00.000+03:00

Microsoft wins 2008 Info Security Products Guide Global Product Excellence Awards for ISA Server 2006 and Forefront Security for Exchange Server
Read More