http://www.secuobs.com Observatoire de la securite Internet fr webmaster@secuobs.com 2010-03-20 17:51:55 - Bill Mullins' Weblog Tech Thoughts : If I was a malware writer, the most important function of the malware would be to phone home , with the information I had targeted to steal There s nothing unusual about this, since much of the malware currently infecting the Internet does just that So, keeping that in mind, when I have an issue on one of http://www.secuobs.com/revue/news/203692.shtmlhttp://www.secuobs.com/revue/news/203692.shtml 2010-03-20 16:12:19 - Rootsecure.net : Wired iPad Developers Code Their Apps in the Dark developers who have worked with the iPad had promised to keep the device isolated in a room with blacked-out windows http://www.secuobs.com/revue/news/203667.shtmlhttp://www.secuobs.com/revue/news/203667.shtml 2010-03-20 03:06:55 - Channel 9 : IMAGE Major League Soccer s application for Windows Phone 7 Series lets fans track their favorite teams in real time, with notifications of game events, game stats and the ability to watch highlight clips via Silverlight and Internet Information Services Smooth Streaming Check out this demo given by Charlie Kindel from MIX 10 http://www.secuobs.com/revue/news/203568.shtmlhttp://www.secuobs.com/revue/news/203568.shtml 2010-03-19 23:45:05 - 4sysops : IEBlog The New JavaScript Engine in Internet Explorer 9 I just wish they would have linked to those typical sites Windows Virtual PC no hardware virtualization update now available for download Copyright 2006-2010, 4sysops, Digital fingerprint 3db371642e7c3f4fe3ee9d5cf7666eb0 http://www.secuobs.com/revue/news/203548.shtmlhttp://www.secuobs.com/revue/news/203548.shtml 2010-03-19 22:35:53 - 4sysops : Most news sites reported yesterday that Microsoft announced Windows 7 SP1 and Windows Server 2008 R2 SP1 I didn t see such an announcement All I found was a post in Microsoft s blog titled Talking About Service Pack 1 for Windows 7 and Windows Server 2008 R2 Well talking can hardly count as an announcement Microsoft http://www.secuobs.com/revue/news/203523.shtmlhttp://www.secuobs.com/revue/news/203523.shtml 2010-03-19 20:33:32 - News : Ncomputing on Friday announced a chip that could turn devices like TVs or set-top boxes into virtual desktops through which users can run Windows applications or access the Internet IMAGE http://www.secuobs.com/revue/news/203492.shtmlhttp://www.secuobs.com/revue/news/203492.shtml 2010-03-19 11:09:29 - Vigilance vulnérabilités publiques : Un attaquant peut inviter la victime à ouvrir un fichier texte avec Notepad et à presser la touche F1, afin de faire exécuter du code sur sa machine http://www.secuobs.com/revue/news/203345.shtmlhttp://www.secuobs.com/revue/news/203345.shtml 2010-03-19 02:30:58 - News : Windows architect Dave Probert sees doing away of the OS kernel altogether, in favor of the hypervisor IMAGE http://www.secuobs.com/revue/news/203229.shtmlhttp://www.secuobs.com/revue/news/203229.shtml 2010-03-19 01:55:46 - Hack In The Box : Sometime in the next few weeks, Microsoft will reveal features, services and shortcomings for Windows Phone 7 in the enterprise It will be one of those good news bad news moments for corporate IT departments So far, Microsoft's mobile platform executives have hammered at the consumer focus for the radically redesigned Windows Phone operating system At this week's MIX10 Web developer conference, where details of the Windows Phone platform and development tools were unveiled, executives sidestepped, minimized or deflected nearly every question about how and how well the operating system will play in business mobility Not all the enterprise elements are being disclosed here, says Todd Brix, senior director, product management, for Microsoft's mobile communications business More will be coming up later in the spring http://www.secuobs.com/revue/news/203207.shtmlhttp://www.secuobs.com/revue/news/203207.shtml 2010-03-19 01:03:02 - PenTestIT : Microsoft Windows EOT Font and Adobe Flash Player 6 Vulnerabilities IMAGE IMAGE IMAGE IMAGE IMAGE IMAGE http://www.secuobs.com/revue/news/203172.shtmlhttp://www.secuobs.com/revue/news/203172.shtml 2010-03-18 23:52:49 - 4sysops : Total Network Monitor 113 with some improvements is released Now the program is absolutely free Microsoft removes hardware virtualization barrier to running XP Mode Windows XP No IE9 for You Now you understand what supported until 2014 means Microsoft Windows blog Talking About Service Pack 1 for Windows 7 and Windows http://www.secuobs.com/revue/news/203152.shtmlhttp://www.secuobs.com/revue/news/203152.shtml 2010-03-18 22:37:58 - Channel 9 : IMAGE In February, while up on campus for the MVP summit, I snuck over to the Expression side of building 41 and met with Pete Blois Pete Blois is a Senior Program Manager Lead on the Expression Blend team He's responsible for tooling for Silverlight, WPF, and now Silverlight for Windows Phone 7 Series Blend 4 supports not only Silverlight, WPF, and Windows Phone, it now includes multi-targeting support for the NET framework 35sp1 and 4, Silverlight 3 and 4, and Silverlight for Windows Phone, just like Visual Studio 2010 In this video, Pete goes into some detail about how they have accomplished multi targeting in Blend 4 Pete also talks about Rooler, the screen measurement and sampling tool he created for designers and developers Written in WPF, this has become one of my go-to tools whenever I'm working with an existing design Finally, we get into the new Blend tooling for Windows Phone Series 7 development As expected, the Expression team delivers with an awesome design and development experience for a new platform Pete Blois's site and blog Pete Blois on twitter peteblois Pete Brown's site and blog 10remnet Pete Brown on twitter pete_brown http://www.secuobs.com/revue/news/203119.shtmlhttp://www.secuobs.com/revue/news/203119.shtml 2010-03-18 21:59:54 - eSecurity Planet Features : Core Security Technologies said it's found a nasty bug in Windows Virtual PC that could let an attacker bypass important security protections But what does Microsoft think http://www.secuobs.com/revue/news/203105.shtmlhttp://www.secuobs.com/revue/news/203105.shtml 2010-03-18 20:52:27 - News : Businesses are finally prying their hands from Windows XP as they warm to Windows 7, a research company said today http://www.secuobs.com/revue/news/203091.shtmlhttp://www.secuobs.com/revue/news/203091.shtml 2010-03-18 20:52:27 - News : Developers can implement their own clipboards within apps, but Microsoft is favoring contextual tapping instead http://www.secuobs.com/revue/news/203090.shtmlhttp://www.secuobs.com/revue/news/203090.shtml 2010-03-18 20:52:27 - News : Microsoft today announced service packs for both Windows 7 and Windows Server 2008 R2, but declined to set a release date or a schedule for getting a beta in users' hands http://www.secuobs.com/revue/news/203086.shtmlhttp://www.secuobs.com/revue/news/203086.shtml 2010-03-18 19:26:26 - News : Microsoft is lowering the price of licensing the Windows operating system in a virtual desktop deployment, and announcing new bundles with partner Citrix in an announcement Thursday IMAGE http://www.secuobs.com/revue/news/203052.shtmlhttp://www.secuobs.com/revue/news/203052.shtml 2010-03-18 17:02:08 - News : Microsoft's new browser, Internet Explorer 9, will not run on Windows XP, now or when the software eventually ships, the company confirmed IMAGE http://www.secuobs.com/revue/news/202992.shtmlhttp://www.secuobs.com/revue/news/202992.shtml 2010-03-18 10:02:07 - Raymond.CC Blog : IMAGE IMAGE About 10 years ago when most people are still using dial-up and broadband is only available in Klang valley, I was one of the lucky user that is staying in an area which is within the broadband coverage area I remembered I was paying a lot monthly for using dial-up connection and was really happy IMAGE http://www.secuobs.com/revue/news/202900.shtmlhttp://www.secuobs.com/revue/news/202900.shtml 2010-03-18 03:20:47 - Security Bloggers Network : Hey Microsoft, Don t F ck Up Windows Phone 7 Windows phone 7 Gizmodo A funny post over on Gizmodo detailing how, apparently, Microsoft has put out a couple changes to Windows Phone Mobile 7 What is it with Microsoft and the number 7 all of the sudden Unified messaging Apparently Microsoft is going to do two http://www.secuobs.com/revue/news/202857.shtmlhttp://www.secuobs.com/revue/news/202857.shtml 2010-03-18 00:01:54 - SecTechno : Core Security Technologies CST has discovered a critical vulnerability in windows virtual PC allows an attacker to bypass security measures and run a malicious code on the guest machine the concerned platform for this vulnerability is Virtual PC 2007, Virtual PC 2007 SP1, Windows Virtual PC, Virtual Server 2005 and Virtual Server 2005 R2 http://www.secuobs.com/revue/news/202769.shtmlhttp://www.secuobs.com/revue/news/202769.shtml 2010-03-17 23:54:10 - Channel 9 : IMAGE Mike Harsh comes back to Silverlight TV to show John how easy it is to develop a real world application for Windows Phone 7 Series WP7 using Silverlight Within a matter of minutes, Mike has developed and started running a functional WP7 twitter application that makes cross domain calls He demonstrates how to design the interface using the designer and tools in Visual Studio 2010 Express for Windows Phone, and writes the event handlers to hook into a Twitter API The key point of this demo is how easy it is to develop for WP7 with Silverlight You can find the source code and other useful resources from these links Source code for the sample app Mike wrote Source code for sample Twitter client for Silverlight Follow us on Twitter SilverlightTV or learn more about Silverlight with the Silverlight Training Course on Channel 9 http://www.secuobs.com/revue/news/202763.shtmlhttp://www.secuobs.com/revue/news/202763.shtml 2010-03-17 22:31:06 - 4sysops : Microsoft Assessment and Planning Toolkit 50 Beta 1 Microsoft drops cut and paste from Windows Phone 7 BIG MISTAKE Why does MS also copy Apple s failures IBM Launches Public Cloud Service No support for Windows Only Red Hat RightScale Launches 1 Millionth Cloud Server Copyright 2006-2010, 4sysops, Digital fingerprint 3db371642e7c3f4fe3ee9d5cf7666eb0 http://www.secuobs.com/revue/news/202736.shtmlhttp://www.secuobs.com/revue/news/202736.shtml 2010-03-17 19:01:40 - News : At the MIX Web developer conference, Windows Phone 7 executives had relatively little to say about the now-unnamed browser on the new mobile operating system At the same time, the company announced preview version of much advanced technology and features in what will eventually be Internet Explorer 9 IMAGE http://www.secuobs.com/revue/news/202664.shtmlhttp://www.secuobs.com/revue/news/202664.shtml 2010-03-17 19:01:40 - News : Windows Phone 7 Series will not come with cut-and-paste functionality, according to a wide number of reports citing information Microsoft reportedly revealed during a Q A session at its MIX10 conference late Tuesday Microsoft believes that people don't need copy-and-paste on their phones, according to Engadget IMAGE http://www.secuobs.com/revue/news/202663.shtmlhttp://www.secuobs.com/revue/news/202663.shtml 2010-03-17 17:53:31 - Packet Storm Security Headlines : http://www.secuobs.com/revue/news/202637.shtmlhttp://www.secuobs.com/revue/news/202637.shtml 2010-03-17 17:39:58 - News : Devices running Windows Phone 7 Series software won't hit store shelves until later this year, but Microsoft recently offered a peek into the upcoming OS at its MIX10 conference for developers and Web designers The latest version of Microsoft's mobile platform promises to deliver a radical shift, with a new focus on features like social networking, the Web, and gaming IMAGE http://www.secuobs.com/revue/news/202630.shtmlhttp://www.secuobs.com/revue/news/202630.shtml 2010-03-17 16:23:34 - News : VMware has upgraded its ThinApp application virtualization software to enable migration of applications from older versions of Windows to Windows 7 IMAGE http://www.secuobs.com/revue/news/202598.shtmlhttp://www.secuobs.com/revue/news/202598.shtml 2010-03-17 15:19:14 - SecurityTube.Net : Import Address Table Hooking in Windows Video Tutorial IMAGE http://www.secuobs.com/revue/news/202581.shtmlhttp://www.secuobs.com/revue/news/202581.shtml 2010-03-17 05:08:12 - News : Phone maker HTC and wireless carrier T-Mobile announced the highly anticipated HD2 smartphone in the US on Tuesday, but also said that no plans were in place to put Microsoft's upcoming Windows Phone 7 OS on the device yet IMAGE http://www.secuobs.com/revue/news/202480.shtmlhttp://www.secuobs.com/revue/news/202480.shtml 2010-03-17 01:15:00 - SearchSecurity.com.au Analysis Commentary : Windows Server's Group Policy features can help to improve your organisation's security - if you are tweaking the right policies We've got five that can make a difference in this story IMAGE IMAGE IMAGE IMAGE http://www.secuobs.com/revue/news/202394.shtmlhttp://www.secuobs.com/revue/news/202394.shtml 2010-03-16 22:03:06 - threatpost The First Stop for Security News : An exploit writer at Core Security Technologies has discovered a serious vulnerability that exposes users of Microsoft s Virtual PC virtualization software to malicious hacker attacks The vulnerability, which is unpatched, essentially allows an attacker to bypass several major security mitigations -- Data Execution Prevention DEP , Safe Exception Handlers SafeSEH and Address Space Layout Randomization ASLR -- to exploit the Windows operating system Shorten URL http threatpostcom en_us 3hj Click to copy to clipboard or post to Twitter http://www.secuobs.com/revue/news/202345.shtmlhttp://www.secuobs.com/revue/news/202345.shtml 2010-03-16 06:43:09 - Vibro.NET : IDTK_march2010 Are you ready to roll I have just flipped the publish bit on the March 2010 update of the Identity Developer Training Kit The new release contains various fixes and improvements, but above all it contains two brand-new labs about two scenarios you asked for loud and clear Web Services and Identity in Windows Azure and Developing Identity-Driven Silverlight Applications Web Services and Identity in Windows Azure Web Services and Identity in Windows Azure describes how to use WIF with WCF roles in Windows Azure It was developed in collaboration with the amazing Todd West from the IDA team thank you Todd Among the things the lab demonstrates Use Windows Identity Foundation with WCF services hosted in Windows Azure Trusting an on-premise STS from a WCF service hosted in Windows Azure Using WIF WCF tracing for a WCF service hosted in Windows Azure, taking advantage of blob storage for the traces Configure a WCF service to use load balancing binding and session management Deploy a WCF service secured via WIF to the Windows Azure cloud Switch between alternative WIF config settings without having to redeploy the entire app in the cloud You will recognize many of the points above as frequently asked questions on the forum the idea is that the lab will be useful also for non-Azure specific scenarios, for example if you have your own web farm Developing Identity-Driven Silverlight Applications Developing Identity-Driven Silverlight Applications is one of the results of Caleb Baker s great work on the use of WIF in Silverlight applications You really asked in a landslide for this one, to the point that today Caleb did a session at MIX exactly about this If you were in the room, this is the training it release he was talking about The lab has been written to be as understandable as possible by developers who know little or nothing about identity Among the things the lab demonstrates Take advantage of an existing identity provider exposed via passive STS for externalizing authentication for a in-browser Silverlight application Access claims values from the code of a Silverlight application and use them for user experience customization Handle authorization for WCF services hosted in a Silverlight website using the WIF programming model Take advantage of an existing identity provider exposed via active STS for externalizing authentication for an out-of-browser Silverlight application Invoke services on other domains using SAML tokens from a Silverlight application Isn t that really exciting You know for how long I ve waited to be able to use claims in Silverlight What are you doing still here, get the March 2010 update of the Identity Developer Training Kit while it s hot - IMAGE http://www.secuobs.com/revue/news/202049.shtmlhttp://www.secuobs.com/revue/news/202049.shtml 2010-03-16 04:35:07 - News : If you don't have time to sit through all 2 hours of the recording of Microsoft's MIX 10 keynote, wherein they showed off what Silverlight 4 XNA can do on Windows Phone 7 devices, we've got a handy time-stamped list of highlights Jump to what interests you and skip the boring stuff IMAGE http://www.secuobs.com/revue/news/202030.shtmlhttp://www.secuobs.com/revue/news/202030.shtml 2010-03-16 04:30:28 - Channel 9 : IMAGE This week we welcomed special guest host, Nic Fillingham, who not only runs Channel 9 LIVE at MIX 2010 but also brings us these stories Flash On Windows Phone 7 GeoSense for Windows- go get it XNA Games for Windows Phone 7 Microsoft sends flowers to IE6 funeral and Just For Fun New Dork Music Video http://www.secuobs.com/revue/news/202029.shtmlhttp://www.secuobs.com/revue/news/202029.shtml 2010-03-16 03:31:37 - News : Microsoft officials Monday confirmed at the company's MIX 10 developers event in Las Vegas that native applications will not be allowed on Windows Phone 7 devices Only applications running in the Silverlight runtime environment or games in the XNA Game Studio runtime will be allowed IMAGE http://www.secuobs.com/revue/news/201980.shtmlhttp://www.secuobs.com/revue/news/201980.shtml 2010-03-16 03:31:37 - News : At the start of its annual MIX 10 Web developer conference, Microsoft announced the immediate free release of mobile-enabled versions of its latest core development tools for Windows Phone 7 IMAGE http://www.secuobs.com/revue/news/201978.shtmlhttp://www.secuobs.com/revue/news/201978.shtml 2010-03-16 00:48:55 - Hack In The Box : Today during its MIX developer conference, Microsoft shared more details about Windows Phone 7 and the tools developers can use to write applications for it In a shocking revelation, Microsoft admitted to a decidedly Apple-like approach to how it will distribute Windows Phone 7 apps All apps must be approved by Microsoft, and can only be distributed via the Windows Marketplace for Mobile Well, this is interesting The MIX conference keynote offered up all sorts of details on how developers can use SIlverlight and XNA to write applications for Windows Phone 7 The SDKs went live earlier this afternoon, and are free for anyone to download and test out Microsoft also introduced a new version of the Marketplace for Windows Mobile http://www.secuobs.com/revue/news/201933.shtmlhttp://www.secuobs.com/revue/news/201933.shtml 2010-03-15 23:57:12 - M unition : Peter and I have been busy planning for CanSecWest in a week The course, Advanced Memory Forensics in Incident Response, is constantly evolving It has been about a year and a half since Memoryze was released, and just over a year for Audit Viewer Honestly, it seems a lot longer, but that is not a http://www.secuobs.com/revue/news/201908.shtmlhttp://www.secuobs.com/revue/news/201908.shtml 2010-03-15 22:50:43 - News : The newest version of Zeus, a do-it-yourself crimeware kit responsible for millions of dollars in losses by consumers and businesses, comes with anti-piracy provisions similar to those used by Microsoft's Windows, a researcher said today IMAGE http://www.secuobs.com/revue/news/201874.shtmlhttp://www.secuobs.com/revue/news/201874.shtml 2010-03-15 22:48:16 - 4sysops : Spiceworks 46 is out Microsoft Select Licensing Discontinued Silverlight on 60 per cent of internet devices My view Silverlight will be Microsoft s main gateway to the cloud Microsoft announces more Windows Phone 7 details Windows Phone 7 New Samsung device and hardware specs revealed Windows Phone 7 Apps Must Be Microsoft Approved Gartner http://www.secuobs.com/revue/news/201866.shtmlhttp://www.secuobs.com/revue/news/201866.shtml 2010-03-15 21:08:31 - Channel 9 : IMAGE MIX 2010 is finally here and all of the info about developing on Windows Phone 7 Series is available to you Here, Charlie Kindel gives us a recap of all the announcements made in todays keynote Take a listen and then make sure to head HERE to get the bits and start building apps The Windows Phone Developer Tools package contains a toolset that will be familiar to Visual Studio developers for Windows Phone 7 development, including a Windows Phone 7 Series emulator integrated into Visual Studio so you can see your app in action and debug it as you would with any other VS project Also included are Silverlight and the XNA Game Studio Expression Blend for Windows Phone, which brings Blend s immersive Silverlight designer-focused environment to building immersive mobile experiences, is also available for download today from the link above http://www.secuobs.com/revue/news/201828.shtmlhttp://www.secuobs.com/revue/news/201828.shtml 2010-03-15 19:47:28 - News : Microsoft will unpack the technical details of Windows Phone 7 at next week's annual MIX development conference Here are the company's priorities for the its retooled mobile platform IMAGE http://www.secuobs.com/revue/news/201810.shtmlhttp://www.secuobs.com/revue/news/201810.shtml 2010-03-15 19:39:34 - Channel 9 : Windows Phone 7 Series offers an innovative user interface and amazing functionality It is also a great development platform upon which you can quickly and easily build games and applications This training kit is geared for beginners who want to get started with developing applications for the latest Windows Phone Even if you don t know Silverlight or XNA Framework, you ll find this Training Kit useful More seasoned Silverlight developers should also find this kit useful, as it explains some of the differences between Silverlight and Silverlight for the phone You will find three units in this course Getting Started with Windows Phone Silverlight for Windows Phone XNA Framework for Windows Phone To enable developers to build mobile applications for Windows Phone 7 devices, a CTP of Windows Phone Developer Tools, the developer toolset for Windows Phone 7 Series, also became available today http://www.secuobs.com/revue/news/201797.shtmlhttp://www.secuobs.com/revue/news/201797.shtml 2010-03-15 19:39:34 - Channel 9 : IMAGE We're here at MIX10 where Windows Phone 7 WP7 and Silverlight just became the best match since peanut butter and chocolate Mike Harsh, Program Manager for the Silverlight team working on WP7, joins John Papa to demonstrate the WP7 device and the tooling used to create applications for it Mike covers the phone, how to write a Silverlight app for it, how to run that app in the emulator, and how to deploy it to the phone The simplicity of this demo is how easy it truly is to take your Silverlight skills and apply them to WP7 devices Follow us on Twitter SilverlightTV or learn more about Silverlight with the Silverlight Training Course on Channel 9 http://www.secuobs.com/revue/news/201796.shtmlhttp://www.secuobs.com/revue/news/201796.shtml 2010-03-15 19:25:31 - www.notsosecure.com : I finally managed to get Oracle and Metasploit working only in windows though Here are the steps that i followed thanks to bugtrace 1 Install subversion client http wwwopencollabnet files documents 60 3006 CollabNetSubversion-client-169-1win32exe 2 install ruby http rubyforgeorg frs downloadphp 47082 ruby186-27_rc2exe 3 install ruby-oci8 wget http rubyforgeorg frs downloadphp 65901 ruby-oci8-107-mswin32rb ruby ruby-oci8-107-mswin32rb 4 svn co http metasploitcom svn framework3 trunk metasploit cd metasploit ruby msfconsole - As i was very pleased to see the oracle exploits in action in Metasploit, i have also added 2 new exploits from http://www.secuobs.com/revue/news/201791.shtmlhttp://www.secuobs.com/revue/news/201791.shtml 2010-03-14 21:26:35 - Les Tips du Laboratoire Microsoft : Lors de la première ouverture de la session de l Administrateur, Windows vous demande de lui attribuer un mot de passe Pour changer le mot de passe de l Administrateur ou d http://www.secuobs.com/revue/news/201513.shtmlhttp://www.secuobs.com/revue/news/201513.shtml 2010-03-14 18:28:04 - SANS Internet Storm Center InfoCON green : One of our readers reported that his copy of Windows 7 Ultimate failed to update itself overnight wi more http://www.secuobs.com/revue/news/201501.shtmlhttp://www.secuobs.com/revue/news/201501.shtml 2010-03-13 17:54:22 - SecurityTube.Net : Hacking Windows 7 Ultimate with Backtrack Video Tutorial IMAGE http://www.secuobs.com/revue/news/201375.shtmlhttp://www.secuobs.com/revue/news/201375.shtml 2010-03-13 06:50:11 - Chester Wisniewski's Blog : Podcast Michael Argast, Sophos Head of Global Sales Engineering, and I have finished our two-part podcast on Windows 7 In this segment we discuss AppLocker, BitLocker, BitLocker To Go and UAC Download and listen to the Sophos podcast Windows 7 - Security updates and features, part 2 If you enjoy this podcast you can download many more http://www.secuobs.com/revue/news/201311.shtmlhttp://www.secuobs.com/revue/news/201311.shtml 2010-03-13 02:48:26 - 4sysops : Review Microsoft System Center Virtual Machine Manager 2008 R2 Windows 8 Technical Documentation in the Works Qualcomm s Multi-Fold Device tablet and smart phone in one device Isn t this cool Review Microsoft System Center Virtual Machine Manager 2008 R2 Windows 8 Technical Documentation in the Works a http://www.secuobs.com/revue/news/201299.shtmlhttp://www.secuobs.com/revue/news/201299.shtml 2010-03-12 21:35:57 - eSecurity Planet Features : Security authentication and single-sign on are among the benefits to enterprises using Vista and smart cards http://www.secuobs.com/revue/news/201208.shtmlhttp://www.secuobs.com/revue/news/201208.shtml 2010-03-12 06:53:10 - Graham Cluley's blog : Apple has released version 405 of its Safari browser, fixing a number of issues with its browser for Windows and Mac OS X including - most importantly - a grand total of 16 security vulnerabilities If you dilly-dally over updating your computer, it's possible that hackers could exploit the security bugs - including some that could http://www.secuobs.com/revue/news/201005.shtmlhttp://www.secuobs.com/revue/news/201005.shtml 2010-03-12 04:29:36 - Channel 9 : IMAGE Windows Phone 7, XNA and the game hub are all the talk here at GDC 2010 I had a chance to sit down with Michael Klucher and find out more about the gaming experience it will provide and what's in store for developers Beyond playing Xbox Live games you will also be able to see your gamer avatar, achievements and gamer profile If you would like to learn more about GDC and want a first look at Power Gig Rise of the Six String's gaming controller Thank check out our first GDC video http://www.secuobs.com/revue/news/200985.shtmlhttp://www.secuobs.com/revue/news/200985.shtml 2010-03-12 01:49:48 - Exploit DB updates : http://www.secuobs.com/revue/news/200947.shtmlhttp://www.secuobs.com/revue/news/200947.shtml 2010-03-12 01:22:23 - SANS Internet Storm Center InfoCON green : more http://www.secuobs.com/revue/news/200929.shtmlhttp://www.secuobs.com/revue/news/200929.shtml 2010-03-12 00:12:08 - News : As more people switch from Windows PCs to Macs, they want to make sure they can move their digital lives from their old computers to their new ones IMAGE http://www.secuobs.com/revue/news/200887.shtmlhttp://www.secuobs.com/revue/news/200887.shtml 2010-03-11 23:05:41 - MX Logic Security News : As more people update from Windows Vista or Windows XP, cyber criminals have developed malware that takes advantage of people's desire to make the move, according to Computer Weekly The infected link, once clicked, brings up a dialog box offering a license to the free product Once the program installs, advertisements for fake antivirus software popup regularly Even though the offer is fake, its designers made it a near mirror image of actual Microsoft update dialog boxes The easiest way for people to decipher this from a real Microsoft update is in the file name and location Looking at the Task Manager reveals the name and location have nothing to do with Windows 7 and no new folder is created Unlike a real Windows Update session, these fake updates appear as a DLL running from the temp folder with the words 'start worker' in the command line, Webroot researcher Andrew Brandt told the news provider The scareware adds to what McAfee called the largest threat for 2010 earlier this week Scareware is an especially attractive method of malware transmission because most computers users are not astute enough to see their fake ads at potential for infectionADNFCR-1765-ID-19664976-ADNFCR http://www.secuobs.com/revue/news/200864.shtmlhttp://www.secuobs.com/revue/news/200864.shtml 2010-03-11 23:02:28 - 4sysops : In my last article, I listed all important features of Microsoft s free Sysprep tool Today, I will explain why I think that unique SIDs are still necessary, even though, Mark Russinovich debunked the machine SID duplication myth I have no doubts that Mark s analysis that Windows networks don t require unique SIDs is correct Actually, this corresponds http://www.secuobs.com/revue/news/200851.shtmlhttp://www.secuobs.com/revue/news/200851.shtml 2010-03-11 23:02:28 - 4sysops : Windows 7 SP1 Coming Q4 2010 Hackers exploit latest IE6 7 zero-day with drive-by attacks Move to IE8 and Windows 7 NOW Microsoft develops 3D cloud mouse Hackers love to exploit PDF bugs, says researcher 12pourcents knowingly violate company IT policies Windows 7 Compatibility Testing Part 2 Copyright 2006-2010, 4sysops, Digital fingerprint 3db371642e7c3f4fe3ee9d5cf7666eb0 http://www.secuobs.com/revue/news/200850.shtmlhttp://www.secuobs.com/revue/news/200850.shtml 2010-03-11 21:35:47 - MSRC Ecosystem Strategy Team : IMAGE Handle Mando Picker IRL Dustin Childs Rank Security Program Manager Likes Protecting customers, working with security researchers, second Tuesdays, bourbon, mandolins Dislikes Using It's hard as an excuse, quitting when it gets tough, banjos One of the things I get to do in the Microsoft Security Response Center MSRC is talk to our customers and tell them about the process by which Microsoft identifies potential security vulnerabilities in its products, eliminates those vulnerabilities, and provides remediation and information to customers In other words, I get to explain what I do for a living to anyone who will listen I really enjoy doing this, because I find out first-hand what is most important to our customers as well as what questions they have about the Microsoft response process One of the questions I am often asked is regarding security updates for Windows systems that fail the Windows Genuine Advantage WGA check In other words, who gets security updates It s an understandable question, and it has a very clear answer Security updates are available to all systems It is just that simple If Microsoft has provided a security update, you can install it on your system This is still true even if your system fails the WGA validation check There are also no WGA checks for service packs, update rollups, and important reliability and application compatibility updates Paul Cooke, a Director in the Windows Client group, also stated this last year in his Windows Security Blog On Windows Vista and Windows 7, available security updates can be accessed through Windows Update in Control Panel On Windows XP, systems that fail a WGA check can still access security updates through Automatic Updates Keeping all Windows systems current on their security updates is a big part of keeping a healthy Windows ecosystem After all, Conficker and Blaster don t check for WGA If you don t have the right security updates, they just compromise your system and then spread to other systems While a large part of my job is responding to vulnerability reports, it is always better to have proactively helped users stay secure So if you have ever wondered, now you know You can always get security updates regardless of WGA validation We at the MSRC are completely committed to ensuring our security updates go out to as many of our users as possible So install those security updates without fear, and if you happen to run into me at a conference and want to hear everything else I do, just let me know It is a story I love to tell Just make sure you have an hour or two to spare - - Dustin Postings are provided AS IS with no warranties, and confers no rights IMAGE http://www.secuobs.com/revue/news/200809.shtmlhttp://www.secuobs.com/revue/news/200809.shtml 2010-03-11 19:55:39 - Security Bloggers Network : Microsoft Windows isn't restricted to just laptops and tower PCs It is also common for Windows to serve as the dominant operating system inside of ATMs, cars, kiosks, taxi meters, medical imaging devices, advertising display boards and so many of the computerized screens that we gaze upon and take for granted every day That is, until they stop working http://www.secuobs.com/revue/news/200781.shtmlhttp://www.secuobs.com/revue/news/200781.shtml 2010-03-11 16:58:53 - Bill Mullins' Weblog Tech Thoughts : Popular guest writer Mark Schneider, walks you through a computer recovery operation using the Trinity Rescue Kit, which, as he puts it, saved my bacon Today, I was doing a little maintenance on my daughters Gateway laptop, uninstalling one anti-spyware program, and upgrading another to real-time protection It seemed to go fine I ran http://www.secuobs.com/revue/news/200702.shtmlhttp://www.secuobs.com/revue/news/200702.shtml 2010-03-10 22:06:50 - 4sysops : In response to my article about Microsoft s free OS image preparation tools, a reader claimed that as a result of Mark Russinovich s famous SID duplication myth article, sysprep would no longer be required Mark argued in detail why SID duplications are, contrary to a widespread opinion, no problem in Windows networks Since Mark is http://www.secuobs.com/revue/news/200403.shtmlhttp://www.secuobs.com/revue/news/200403.shtml 2010-03-10 17:36:39 - Global Security Mag Online : KB98015 Bulletin de sécurité Microsoft MS10-015 Date 10 Mars 2010 Plateforme Windows Programme Microsoft Excel Gravité Elevée Exploitation Avec un fichier malicieux Dommage Accès au système Description Microsoft vient de corriger sept vulnérabilités affectant Microsoft Excel de la suite Office Celles-ci permettaient à un attaquant distant de compromettre un système Ces failles de sécurité proviennent de la façon dont Excel traite les fichiers XLS La première - Vulnérabilités http://www.secuobs.com/revue/news/200272.shtmlhttp://www.secuobs.com/revue/news/200272.shtml 2010-03-10 17:36:39 - Global Security Mag Online : KB975561 Bulletin de sécurité Microsoft MS10-016 Date 10 Mars 2010 Plateforme Windows Programme Windows Movie Maker Gravité Elevée Exploitation Avec un fichier malicieux Dommage Accès au système Description Microsoft vient d'annoncer la publication d'un correctif supprimant une vulnérabilité de Windows Movie Maker Celle-ci permettait à un attaquant distant de compromettre un système La faille de sécurité est liée au traitement des fichiers de projet Movie Maker ou - Vulnérabilités http://www.secuobs.com/revue/news/200271.shtmlhttp://www.secuobs.com/revue/news/200271.shtml 2010-03-10 15:14:06 - Les derniers documents du CERTA. : Une vulnérabilité dans Windows Movie Maker et dans Microsoft Producer 2003 permet d'exécuter du code arbitraire à distance http://www.secuobs.com/revue/news/200210.shtmlhttp://www.secuobs.com/revue/news/200210.shtml 2010-03-10 09:04:36 - Rootsecure.net : Computer World Microsoft skips patch for PowerPoint add-on Fixes eight flaws in Windows and Office, but passes on patching Producer 2003 http://www.secuobs.com/revue/news/200142.shtmlhttp://www.secuobs.com/revue/news/200142.shtml 2010-03-09 23:29:22 - News : Jim Thomas said no to Windows Vista -- but Windows 7 is an entirely different matter IMAGE http://www.secuobs.com/revue/news/199962.shtmlhttp://www.secuobs.com/revue/news/199962.shtml 2010-03-09 22:47:26 - threatpost The First Stop for Security News : After a busy February with 13 security bulletins, Microsoft is easing off the patching throttle a bit this month Microsoft released two new security bulletins addressing 8 vulnerabilities, all not publically known at this time Shorten URL http threatpostcom en_us 3ty Click to copy to clipboard or post to Twitter http://www.secuobs.com/revue/news/199934.shtmlhttp://www.secuobs.com/revue/news/199934.shtml 2010-03-09 21:21:20 - Microsoft Security Bulletins : Bulletin Severity Rating Important - This security update addresses a privately reported vulnerability in Windows Movie Maker and Microsoft Producer 2003 Windows Live Movie Maker, which is available for Windows Vista and Windows 7, is not affected by this vulnerability The vulnerability could allow remote code execution if an attacker sent a specially crafted Movie Maker or Microsoft Producer project file and persuaded the user to open the specially crafted file Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights http://www.secuobs.com/revue/news/199889.shtmlhttp://www.secuobs.com/revue/news/199889.shtml 2010-03-09 21:20:35 - LinuxSecurity.com Latest News : LinuxSecuritycom Recently I came into a client who had a Windows XP machine that contained a nasty little virus that rendered the machine nearly unusable When the machine would boot the CPU was pegging out at 100pourcents, causing the GUI to be nearly unresponsive http://www.secuobs.com/revue/news/199887.shtmlhttp://www.secuobs.com/revue/news/199887.shtml 2010-03-09 16:34:27 - Stratagem 13 : Windows 7 SP1 will be brought forward - Windows 7 sp1 will be brought forward - The Inquirer http://www.secuobs.com/revue/news/199765.shtmlhttp://www.secuobs.com/revue/news/199765.shtml 2010-03-09 11:46:55 - CNET France Spécial : Classés comme importants, les correctifs de ce patch Tuesday du mois de mars 2010 concernent toutes les versions grand public de Windows et les versions PC et Mac de la suite Office Lire l'article http://www.secuobs.com/revue/news/199694.shtmlhttp://www.secuobs.com/revue/news/199694.shtml 2010-03-09 10:04:15 - Raymond.CC Blog : IMAGE IMAGE try var AdBrite_Iframe windowtop windowself 2 1 var AdBrite_Referrer documentreferrer '' documentlocation documentreferrer AdBrite_Referrer encodeURIComponent AdBrite_Referrer catch e var AdBrite_Iframe '' var AdBrite_Referrer '' documentwrite StringfromCharCode 60,83,67,82,73,80,84 documentwrite ' src http adsadbritecom mb text_groupphp sid 1547046 br 1 ifr ' AdBrite_Iframe ' ref ' AdBrite_Referrer ' type text javascript ' documentwrite StringfromCharCode 60,47,83,67,82,73,80,84,62 Sniffing packets of a software is one of the reverse engineering method to find out what data is being sent and received Packet sniffing is mostly done by more advanced users and most of the time, hackers themselves Many years ago when I was in the 8th-wonder team, our IMAGE http://www.secuobs.com/revue/news/199672.shtmlhttp://www.secuobs.com/revue/news/199672.shtml 2010-03-09 00:20:17 - News : Although Microsoft has dropped a plan to wait nearly two years after Windows 7's launch to issue a first service pack, it won't deliver the update before late this year, a site that has accurately predicted past Windows timetables said IMAGE http://www.secuobs.com/revue/news/199529.shtmlhttp://www.secuobs.com/revue/news/199529.shtml 2010-03-09 00:17:58 - 4sysops : Report Microsoft moves up Windows 7 SP1 release date Comprehensive review of Microsoft Forefront Unified Access Gateway 2010 software-based remote access tool Microsoft to Rally Partners to the Cloud Microsoft changes algorithm in Europe browser ballot The Argument against Disabling IPv6 Copyright 2006-2010, 4sysops, Digital fingerprint 3db371642e7c3f4fe3ee9d5cf7666eb0 http://www.secuobs.com/revue/news/199525.shtmlhttp://www.secuobs.com/revue/news/199525.shtml 2010-03-08 12:00:51 - SecurityPark.net : Windows 7 is the latest version of Microsoft Windows, which is the most widely-used Operating System OS in the world Windows 7 OS reached general public in October 2009 less than 3 years after Windows Vista release Vista is the predecessor of Windows 7 Recognizing the possible need for BKF recovery for Windows 7 users, SysTools Group made most of its products compatible with Windows 7 more http://www.secuobs.com/revue/news/199301.shtmlhttp://www.secuobs.com/revue/news/199301.shtml 2010-03-08 11:26:54 - Skypher : Quoting http msdnmicrosoftcom en-us library aa930622aspx typedef struct tagBITMAPINFOHEADER DWORD biSize LONG biWidth LONG biHeight WORD biPlanes WORD biBitCount DWORD biCompression DWORD biSizeImage LONG biXPelsPerMeter LONG biYPelsPerMeter DWORD biClrUsed DWORD biClrImportant BITMAPINFOHEADER If the bitmap is a packed bitmap a bitmap in which the bitmap array immediately follows the BITMAPINFO header and is referenced by a single pointer , the biClrUsed member must be either zero or the actual size of the color table ANI files stores each frame of the animated cursor as a packed bitmap inside the ANI file http://www.secuobs.com/revue/news/199290.shtmlhttp://www.secuobs.com/revue/news/199290.shtml 2010-03-08 09:11:44 - SANS Internet Storm Center InfoCON green : more http://www.secuobs.com/revue/news/199271.shtmlhttp://www.secuobs.com/revue/news/199271.shtml 2010-03-08 07:30:50 - Vibro.NET : image Quite a lot of you guys are trying to use the Windows Identity Foundation and Windows Azure passive federation lab available in the Identity Developer Training Kit, Windows Azure Platform Training Kit and standalone with the latest version of the Windows Azure Tools for Visual Studio The dependency checker in the versions of the lab currently available, however, checks for the November release of the Windows Azure tool and gets quite upset if it doesn t find it Eventually we are going to release new versions of the above with updated system requirements, but if you want to go through the lab TODAY with the latest Windows Azure bits all you need to do is changing one of the cmdlets in the setup Current CheckAzureToolsForVSps1 file res1 SearchUninstall -SearchFor 'Windows Azure Tools for Microsoft Visual Studio 2008 10 ' -SearchVersion '10210163' -UninstallKey 'HKLM SOFTWARE Wow6432Node Microsoft Windows CurrentVersion Uninstall ' Fix to apply on CheckAzureToolsForVSps1 file res1 SearchUninstall -SearchFor 'Windows Azure Tools for Microsoft Visual Studio 2008 1 ' -SearchVersion '10210163' -UninstallKey 'HKLM SOFTWARE Wow6432Node Microsoft Windows CurrentVersion Uninstall ' Note, the requirement for VS2008 still stands Happy HOL-ing IMAGE http://www.secuobs.com/revue/news/199254.shtmlhttp://www.secuobs.com/revue/news/199254.shtml 2010-03-07 19:43:04 - Bill Mullins' Weblog Tech Thoughts : You just have to love Windows as an operating system it makes it so easy to DO so many things Often however, Windows does not make it easy to UNDO, or fix things It s not uncommon that attempting to undo things, does nothing more than create additional problems If you are familiar with working http://www.secuobs.com/revue/news/199161.shtmlhttp://www.secuobs.com/revue/news/199161.shtml 2010-03-07 16:41:38 - MX Logic Security News : In its most recent report, Sophos, a Massachusetts-based web and network security firm, cited serious potential security risks with both Windows 7 and Mac OS The report lauds Windows 7's firewall as a major advancement over its predecessor The company does worry about the effectiveness of the tool for personal users, but it believes that commercial users of Windows 7 will greatly enjoy the new, safer firewall and use it to its full capability Apple, however, has a serious problem on its hands The security it once offered seems to have disappeared as its users have become increasingly irresponsible due to its reputation of complete security With the release of Snow Leopard, the need for patching software and keeping up to date with the latest vulnerabilities emerged The Snow Leopard build included a version of Adobe's Flash Player software that contained a known vulnerability, and one that had been previously patched by Adobe, the Sophos report said The potential security threats may hurt new data that shows an increasingly number of Macs in the workplace A survey released by Enterprise Desktop Alliance on Tuesday indicates that 66 percent of people expect to see more Macs in the officeADNFCR-1765-ID-19635787-ADNFCR http://www.secuobs.com/revue/news/199131.shtmlhttp://www.secuobs.com/revue/news/199131.shtml 2010-03-07 10:25:24 - securitystream.info : Third-party patch treadmill running too fast, warns security firm Windows users need to patch their systems an average of every five days to stay ahead of security vulnerabilities, according to a study this week Related posts 1 Think software patching is a hassle You re not alone 2 Software Patch Needed on Windows Every 5 Days 3 Microsoft IIS vuln leaves users open to remote attack http://www.secuobs.com/revue/news/199092.shtmlhttp://www.secuobs.com/revue/news/199092.shtml 2010-03-07 04:59:56 - News : Microsoft has sold 90 million copies of Windows 7 to date, making it the fastest-selling operating system in history, according to Peter Klein, Microsoft's chief financial officer Klein made the comments earlier this week while speaking at the Morgan Stanley Technology, Media, and Telecom Conference While most of what Klein had to say dealt with the Microsoft's financial expectations, the company's top number cruncher did discuss a few interesting things about Microsoft's product outlook for the coming year IMAGE http://www.secuobs.com/revue/news/199063.shtmlhttp://www.secuobs.com/revue/news/199063.shtml 2010-03-07 00:32:06 - grand stream dreams : OK Back from running me errands Lavie s looking particularly fetching today as well, causing additional blogging distractions Oh my Just saw this tip from Lifehacker Get Gigabytes of Free, Legitimate Music from SXSW 2010 For those who don t know, South by Southwest SXSW is a celebration of film and music hosted in Austin, Texas Goes to figure that Texas would be one of the few states large enough to try to hold all that material official SXSW web site While I ve not yet attended SXSW, I ve been in Austin last year on business when it was in full swing What a party town Anyway, Lifehacker links back to the Home of the Unofficial SXSW torrents which contains music files apparently freely provided by the artists from this year back to 2005 The current torrent file has 646 legit tracks while there is a 2nd torrent coming soon with hopes of 200 more Sweet Get your jam on Now, here are the promised Windows tips for your perusal and studyfication Make Adobe Reader shine like it should under 64-bit Windows 7 Vista istartedsomething Leo Davidson got tired waiting for Adobe to port their Adobe Reader over to x64 bit Windows So he checked their code and fixed it himself Leo is the man How To Use Dual Monitors in Remote Desktop Session on Windows 7 Windows 7 hacker -- why do you need to enable dual monitor support in RDC Because you can How To Manually Troubleshoot and Repair Windows 7 Bootloader Windows 7 hacker There you go Update for Windows 7 for x64-based Systems KB974674 -- Utility for restoring backups made on Windows XP and Windows Server 2003 to computers that are running Windows 7 and Microsoft Windows Server 2008 R2 The accompanying Knowledge Base Article has additional information Using Windows Server 2008 Core on Windows Virtual PC Virtual PC Guy s WebLog Because maybe you want to test trial run it before deploying Easy to do hack to get it going Accessing Shared Drives from the Command Prompt under Windows Virtual PC Virtual PC Guy s WebLog Very simple CLI command to get drive shares reported in VPC Connecting a Smart Card to a Windows 7 virtual machine Virtual PC Guy s WebLog Two ways to connect up to a Smart Card Jumplist-Launcher Ali s Dünnpfiff - freeware cool little utility to add up to 60 programs files in groups of your choosing, to a Jump List Clever little tool and since it supports applications as well as files folders, it might be a clean alternative to dock-style app launchers How to replace default Windows 7 Server 2008 R2 Recovery Environment in Diagnostic and Recovery Toolset - Binknu filed for refrence since it is kinda a WIM PE thing Reprofiler - A tool for repairing broken userprofile-associations granted, almost all the times I ve had a user profile that got corrupted or went south, I ve just manually recovered the files, nuked the profile, then ended up building a new one It s a lot of work but got the job done This alpha-level tool might be good for actually fixing profile association issues However, I see the value in how it is able to simply show which Windows user profile is associate with which user profile folder It might not be as straightforward as one always expects Kinda related NirSoft UserProfilesView Although it does not allow you to make any changes while Reprofiler does Two Minute Drill Shutdownexe, Tsshutdnexe and Psshutdownexe Ask the Performance Team blog great easy tips on how to shutdown a system from the command line via a couple of neat low-level utilities Bonus Stupid Batch File of the Day Running PGP Whole Disk Encryption can be a drag sometimes It works great and protects my system but one of the timewasters is when I run into a Windows Update or some other system activity that requires a system reboot That means that when the system bounces, I have to then re-log into my BootGuard check with my super long and complex passphrase Since my assigned system isn t a powerhouse by any stretch of the imagination, this just adds to the reboot time by at least an unbearably long five to ten extra seconds on reboot So I wrote this stupid batch file that allows me to fire it off, pre-type my crazy-complex passphrase in, then hand it off to the PGP one-time boot bypass switch, and then set the system shutdown reboot timer to as many seconds as I want After the system shuts down, it reboots normally and the passphrase is handed off in milliseconds and the OS boot continues and I ve shaved at least five or ten seconds off the reboot time brilliant I suppose in theory it creates a gaping security hole in that, were I to use this very specific circumstance operating too, then someone were to come and bonk me over the head and make off with my laptop, PGP would be bypasses so they could get at my system Or maybe some rouge keylogger could strip my input then the laptop could be physically stolen and the info used against me, but hey, if I ve got spooks lurking just outside my door to do so, or in my system, then I ve got bigger issues Anyway, it was more an exercise in batch file fiddling then anything else Tested on XP Your results may vary and I ve not adjusted it for high altitude cooking Cheers --Claus V echo off echo echo echo This will initiate a fast reboot of the system and allow echo a ONE-TIME system reboot without PGP-WDE BootGuard prompt echo echo echo To initialize type 1 echo echo To cancel type 2 echo set P selection Type the number and then press Enter If pourcentsselectionpourcents 1 goto PGP If pourcentsselectionpourcents 2 goto end PGP set P PGPWDEPP What is the phassphrase cd cd Program Files PGP Corporation PGP Desktop pgpwdeexe -add-bypass -disk 0 -passphrase pourcentsPGPWDEPPpourcents echo echo PGP passphrase set, bypass enabled echo set P Reboot How many seconds should system wait for reboot shutdown r f t pourcentsRebootpourcents echo echo Reboot initialized echo end http://www.secuobs.com/revue/news/199035.shtmlhttp://www.secuobs.com/revue/news/199035.shtml 2010-03-06 13:47:08 - How to remove : Windows Hosts Controller is misleading or fake and malicious services as seen in this report They are created by a worm that spreads across networks In order to stop these services from running, open the system configuration utility Press Start Please visit the site for rest of this article IMAGE IMAGE IMAGE IMAGE IMAGE IMAGE IMAGE IMAGE IMAGE IMAGE IMAGE http://www.secuobs.com/revue/news/198955.shtmlhttp://www.secuobs.com/revue/news/198955.shtml 2010-03-06 06:27:22 - Chester Wisniewski's Blog : Sophos security experts Michael Argast and Chester Wisniewski discuss Internet Explorer security enhancements in Windows 7 in this podcast http://www.secuobs.com/revue/news/198923.shtmlhttp://www.secuobs.com/revue/news/198923.shtml 2010-03-05 23:51:34 - 4sysops : Office 2010 release date RTM April, available for business May 12, consumers June Released Update Rollup 2 for Exchange Server 2010 Ballmer Says Microsoft Is Betting Its Business on the Cloud All-staff email sent out by Steve Ballmer We Must Move At Cloud Speed Did you understand what the cloud is Analysis Microsoft s Ballmer http://www.secuobs.com/revue/news/198824.shtmlhttp://www.secuobs.com/revue/news/198824.shtml 2010-03-05 21:38:08 - News : While Microsoft still isn't commenting on whether current Windows Mobile phones will be upgradeable to its new Windows Phone 7 software, it has finally officially revealed that existing applications won't work on the new platform IMAGE http://www.secuobs.com/revue/news/198774.shtmlhttp://www.secuobs.com/revue/news/198774.shtml 2010-03-05 15:30:25 - securitystream.info : The average Microsoft Windows user has software from 22 vendors on her PC, and needs to install a new security update roughly every five days in order to use these programs safely, according to an insightful new study released this week Read the full article KrebsonSecurity Shorten URL http threatpostcom en_us 3M4 Click to copy to clipboard or post to Twitter ZeroClipboardsetMoviePath 'http threatpostcom sites all modules threatpost_tweaks ZeroClipboardswf' var clip new ZeroClipboardClient clipsetHandCursor true clipsetText 'http threatpostcom en_us 3M4' clipglue 'short_url_link' , 'short_url_cont' Related posts 1 Microsoft to Patch 8 Vulnerabilities in Windows, Office 2 Microsoft to Patch 26 Windows, Office Vulnerabilities 3 Microsoft Confirms Unpatched Windows Kernel Flaw http://www.secuobs.com/revue/news/198670.shtmlhttp://www.secuobs.com/revue/news/198670.shtml 2010-03-05 12:02:46 - Roger Halbheer on Security : Body No, no For sure I am not going to give you advise how to hack but look at this video http wwwoffensive-securitycom movies vistahack vistahackhtml I am always amazed about these kind of videos, which still surprise people If look years back, we published the 10 Immutable Laws of Security, which contains Law 3 If a bad guy has unrestricted physical access to your computer, it's not your computer anymore The hack shown above needs physical access But if you want to protect Windows Vista from these kind of physical attacks, why do you not just switch on Bitlocker and here on Technet If you switch it on, these problems are gone and this attack would fail and it is part of the OS, no additional fees, nothing Roger Category Cybercrime Incidents Microsoft Products Security TechnologyPublished 27052008 06 45 http://www.secuobs.com/revue/news/198575.shtmlhttp://www.secuobs.com/revue/news/198575.shtml 2010-03-05 12:02:46 - Roger Halbheer on Security : Body If you are planning to implement Windows Server 2008, there are two paper recently published that could help you with it Active Directory Certificate Services Upgrade and Migration Guide Configuring and Troubleshooting Certification Authority Clustering in Windows Server 2008 Roger Category Microsoft Products TechnologyPublished 26052008 15 54 http://www.secuobs.com/revue/news/198574.shtmlhttp://www.secuobs.com/revue/news/198574.shtml 2010-03-05 12:02:46 - Roger Halbheer on Security : Body Fresh out of press ok, it is out since beginning of April but I just saw it now Brian Komar, the well-known author of several PKI books on Windows Server just released a new book called Windows Server 2008 PKI and Certificate Security If you are planning a Windows Server 2008 PKI, this is a must-read at least knowing Brian's books J Here is the abstract Get in-depth guidance for designing and implementing certificate-based security solutions straight from PKI expert Brian Komar No need to buy or outsource costly PKI services when you can use the robust PKI and certificate-based security services already built into Windows Server 2008 This in-depth reference teaches you how to design and implement even the most demanding certificate-based security solutions for wireless networking, smart card authentication, VPNs, secure email, Web SSL, EFS, and code-signing applications using Windows Server PKI and certificate services A principal PKI consultant to Microsoft, Brian shows you how to incorporate best practices, avoid common design and implementation mistakes, help minimize risk, and optimize security administration Roger Category Microsoft Products TechnologyPublished 03062008 20 00 http://www.secuobs.com/revue/news/198566.shtmlhttp://www.secuobs.com/revue/news/198566.shtml 2010-03-05 12:02:46 - Roger Halbheer on Security : Body Are you interested to learn how Windows 7 next version of Windows is engineered Are you willing to get in touch with the engineering team Then read their blog Engineering Windows 7 Roger Category Microsoft Products Processes Policies TechnologyPublished 18082008 23 15 http://www.secuobs.com/revue/news/198541.shtmlhttp://www.secuobs.com/revue/news/198541.shtml 2010-03-05 12:02:46 - Roger Halbheer on Security : This is completely new but end of September we published the version 3 of the documentation on the Common Criteria certification for Windows XP SP2 and Windows Server 2003 R2 SP2 Read this in Tim Myer's Blog Version 30 of Windows XP and Windows Server 2003 Guidance Documentation Released Roger http://www.secuobs.com/revue/news/198523.shtmlhttp://www.secuobs.com/revue/news/198523.shtml 2010-03-05 12:02:46 - Roger Halbheer on Security : Cool title, isn't it And you really read this post Well then We announced yesterday at PDC that we now will name the next version of Windows as we code named it Windows 7 So, you can read Mike Nash's blog post about that http windowsvistablogcom blogs windowsvista archive 2008 10 13 introducing-windows-7aspx Roger http://www.secuobs.com/revue/news/198516.shtmlhttp://www.secuobs.com/revue/news/198516.shtml 2010-03-05 12:02:46 - Roger Halbheer on Security : As you know at least I hope that you do we introduced Network Access Protection with Windows Server 2008 Thomas Shinder now published an article on WindowsSecuritycom about how to implement NAP and IPSec and Domain Isolation via Group Policies It is a first part of a very good step-by-step guide Deploying IPsec Server and Domain Isolation using Windows Server 2008 Group Policy Roger http://www.secuobs.com/revue/news/198515.shtmlhttp://www.secuobs.com/revue/news/198515.shtml 2010-03-05 12:02:46 - Roger Halbheer on Security : The value of Windows Vista is often questioned There are a lot of customers who still think that there might be nor reason to migrate to Windows Vista I will publish two blog posts giving you some views on the security of our latest operating system Most of the facts in here are widely known but this might give you some additional guidance Let s start with the Operating System itself We published the Windows Vista Security Guide, which is split into different sections as shown below IMAGE Let s look at some of the key challenges to face Defend Against Malware There is different technology in Vista to help you to defend against malware and I would like to touch on a few some of them not in the guide ASLR Address Space Layout Randomization This is a piece of technology which just helps to defend against attacks against buffer overflows and similar Basically it just makes sure that a potential exploit does not know where a vulnerable piece of software is located There is actually a pretty good blog post on Beta 2 of Vista but the technology is the same by Michael Howard Address Space Layout Randomization in Windows Vista DEP Dynamic Execution Prevention Well, this was in Windows XP SP2 already Basically it leverages a processor feature which is able to distinguish between executable and non-executable memory to NX flag Unfortunately a lot of hardware vendors disable this on processor level User Account Control UAC The most hated loved feature in Vista There were so many debates about this but I am still a big supporter of UAC Might well be that we have to adapt the User Interface well, we have to adapt the user interface Nevertheless it showed the value several times already The last time with the out of band release where we could rate the update only Important for Vista but Critical for XP Additionally, there is technology in the platform which was either available for download or built in to Windows XP Windows Defender, Windows Firewall, Windows Security Center, Malicious Software Removal Tool, Software Restriction Policies This technology and these tools help you to run the platform in a secure and safe way Last but definitely not least, there are a lot of improvements around Internet Explorer 7 With one exception Protected Mode , the features are available on XP as well However, having the ability to run IE in protected mode by itself allows for a safer browsing experience You see, even without active protection, there is already a lot being done around the defense against malware So, looking at the next area Protect Sensitive Data The nightmare scenario You lost your notebook with sensitive data on So, there is different technology you can use to protect information on your Notebook Bitlocker Drive Encryption This is well known and often discussed I know that there is third-party software being able to deliver drive encryption but Bitlocker is built in to the platform, is part of your license, and can be managed through Active Directory the recovery key can be mandated to be stored in AD What a lot of people do not know is that Bitlocker has actually two components see technical information It encrypts your disk It verifies the integrity of some key boot components This helps to boot into a more or less trusted state In order to protect your sensitive information, there is even more you can do To me the most important piece of technology is Rights Management Services RMS in this space as it keeps the protection of the information persistent which allows you not to care anymore where the data resides And there is a lot, lot more but I do not want to write too long blogs which then nobody reads I would like you to look into this and I would like you to look into the above mentioned guide and the really go for Windows Vista deployment Roger http://www.secuobs.com/revue/news/198498.shtmlhttp://www.secuobs.com/revue/news/198498.shtml 2010-03-05 12:02:46 - Roger Halbheer on Security : In my last post, I briefly touched on different features of Windows Vista, which I think are important with regards to the view on Windows XP vs Windows Vista Let s take a different approach now I recently was on a panel in Eastern Europe where I was asked, which model generates more secure software The shared source like ours or the Open Source I asked back, whether they could define more secure for me It turned out, that we were talking about vulnerabilities Let s look at some statistics now and let s start with vulnerabilities In Jeff Jones Desktop OS Vulnerability Report we published figures on vulnerabilities between Desktop OS Vendors and it turns out that this view already gives you a reason to migrate to Windows Vista IMAGE But this is the view on an industry problem giving us confidence that our Security Development Lifecycle works But how is the comparison between Widows XP and Windows Vista He has a really interesting chart in there IMAGE If we compare Windows XP and Windows Vista, we see different things There are vulnerabilities we had to address in Windows XP which were not in Windows Vista anymore There are vulnerabilities which had less impact on Windows Vista compared to Windows XP A good example for this was the latest Out of Band Security Update we had to release, called MS08-067, which was Critical for all the OSs except Windows Vista and Windows Server 2008, where we rated it Important The reason for that is UAC even if you would have switched off the UI Finally, there was one vulnerability which was introduced in new code in Windows Vista So, this picture shows very well that defense in depth in Windows Vista with technologies like ASLR, DEP, UAC etc actually pays off An other view on this is the attack malware side In our Security Intelligence Report v5 we talk about browser-based exploits and where the criminals attack the victims on Windows XP and Windows Vista If you look at the XP picture you see the following IMAGE With regards to browser-based exploits, 58pourcents of the time, Microsoft software was attacked and 42pourcents 3rd party This changes drastically in Windows Vista IMAGE Here our software drops to 6pourcents In the Security Intelligence Report we have some other figures as well like the malware infection rate on the different OS but I want to leave it with that We once discussed in our community an interesting question If we could give our customers just one advice, what would that be I think it would be to stay on the latest versions of all your software The reason is not license fees or anything like that The reason is that this is the only way to cope with the changing threat landscape Roger http://www.secuobs.com/revue/news/198497.shtmlhttp://www.secuobs.com/revue/news/198497.shtml 2010-03-05 12:02:46 - Roger Halbheer on Security : Just a quick one We received the FIPS 140-2 certification for Bitlocker in Windows Vista SP1 and Windows Server 2008 The certificates were posted on the CMVP website on November 25th The Security Policy Document along with the certificates can be viewed at, http csrcnistgov groups STM cmvp documents 140-1 1401val2008htm 1054, and http csrcnistgov groups STM cmvp documents 140-1 1401val2008htm 1053 Roger http://www.secuobs.com/revue/news/198491.shtmlhttp://www.secuobs.com/revue/news/198491.shtml 2010-03-05 12:02:46 - Roger Halbheer on Security : You might have heard it Yesterday at CES, Steve Ballmer made two very important announcements The availability of Windows 7 Beta And the availability of the latest version of Windows Live So, start having a look at these two new products It is worth it Roger http://www.secuobs.com/revue/news/198467.shtmlhttp://www.secuobs.com/revue/news/198467.shtml 2010-03-05 12:02:46 - Roger Halbheer on Security : It is always interesting how some things spin off The claimed UAC vulnerability in Windows 7 in one of those events There are numerous blogs which claim that they found a huge vulnerability in Windows 7 The reason for that is that you can change the settings for UAC without getting a UAC prompt Let s have a look at it A lot of people complained about UAC in Windows Vista I guess you remember I heard all these statements I do not want to get all the UAC elevation prompt just because I change my Windows settings We heard you loud an clear So, we decided to do what you asked us Not show you an elevation prompt when you change settings in Windows So the default configuration in Windows 7 looks as shown below 2009,02,03pourcents20-pourcents20UACpourcents201 1 And guess what We do not notify you when you make changes to Windows settings UAC being one of those However, if you want to go further and put the slider up one level to Always notify , the same screen looks slightly different 2009,02,03pourcents20-pourcents20UACpourcents202 1 And again, guess what We notify you when you make changes to the Windows settings UAC being one of those So, basically to give you my view We did, what you asked us to do Reduce the number of UAC prompts especially when you change your Windows settings We do what the prompt tells you we are doing In my opinion, this is not a vulnerability We can debate now, when we should generally show a UAC prompt but this is a completely different debate than to claim this being a vulnerability And if you come to me now and say that we should show more UAC prompts, please carefully reconsider your statement before you comment and think about all the Windows Vista discussions BTW I am a big fan and supporter of UAC and think that the team did an outstanding job already in Windows Vista Roger http://www.secuobs.com/revue/news/198455.shtmlhttp://www.secuobs.com/revue/news/198455.shtml 2010-03-05 12:02:46 - Roger Halbheer on Security : I have to come back to the UAC problem again I just read a good article from Larry Seltzer on eWeekcom Both Sides of the Win7 UAC Problem I think it is one of the first one I read, which takes the emotions out of the discussion and tries to understand the real problem He made actually an interesting comment The whole issue is around running malware to change the UAC settings and he says The technique could be used for far worse things Control panel has many important system-wide settings in it You can set user passwords, uninstall software, disable the firewall, and so on All of this is possible because of the default UAC setting, and you don't have to change that setting to exploit it So, let s think about it A lot of people wanted us to reduce the number of UAC prompts We published a fairly good article October last year about User Account control and what we learned Now, let me get it straight after all the pretty emotional comments I got on my last post I definitely understand your view and your argumentation What we need however is a balanced discussion about what makes sense and what does not All the discussions are assuming that the user is administrator on the machine let s keep that in mind Is UAC really the only thing you are concerned about I think it should be consistent throughout the Windows settings including UAC protecting UAC alone probably does not cover the attack vectors you are mentioning As an example I can open the Device Manager without prompt I can change all Windows Settings without a prompt including all the security settings This is what the UAC setting is for From a Risk Management perspective What would it really change if we would ask for a prompt if you change the UAC setting So, the malware we are looking at could now not change the UAC settings but all the other Windows settings if you are an Admin How much would this really lower the risks or would it reduce the risk at all So, should we change the default to High which would mean that we are on the similar level as in Windows Vista, where we got a lot of complains In my opinion we all should do two things 1 Take the emotions out of the discussion 2 Look at the broad picture from a risk management perspective And one final thing Yes, we are listening to you otherwise I would not have allowed comments, have answered some of the comments and am now writing the second post and the reason for publishing Beta versions is to have these discussions now, where changes are still possible rather than after the release So, let s have this discussion taking the points above in consideration Roger PS Read Jon DeVaan's post on this issue http://www.secuobs.com/revue/news/198453.shtmlhttp://www.secuobs.com/revue/news/198453.shtml 2010-03-05 12:02:46 - Roger Halbheer on Security : Jon and Steven released another blog post on UAC and explained their decision how to change things They start with the risk of blogging When we started the E7 blog we were both excited and also a bit uneasy The excitement is obvious The unease is because at some point we knew we would mess up We weren t sure if we would mess up because we were blogging about a poorly designed feature or mess up because we were blogging poorly about a well-designed feature To some it appears as though with the topic of UAC we ve managed to do both And then they showed the change they decided to make With this feedback and a lot more we are going to deliver two changes to the Release Candidate that we ll all see First, the UAC control panel will run in a high integrity process, which requires elevation That was already in the works before this discussion and doing this prevents all the mechanics around SendKeys and the like from working Second, changing the level of the UAC will also prompt for confirmation Now, this is what you were asking for and as I told you we are definitely listening to your feedback However, let s be clear here If you have the UAC settings like the screen below 2009,02,03pourcents20-pourcents20UACpourcents201 1 you will not be notified whenever something changes at the Windows settings So, you will be prompted in the future when changes happens on UAC but there are still a lot of other areas where malware could change settings So, if you are very security conscious, move the slide to Always notify , otherwise make sure that your Anti-Malware solution does, what it is supposed to do Roger http://www.secuobs.com/revue/news/198452.shtmlhttp://www.secuobs.com/revue/news/198452.shtml 2010-03-05 12:02:46 - Roger Halbheer on Security : During Conficker we realized that a lot of customers are on unsupported OSs I would like to draw your attention to a few things There is a webpage called Microsoft Support Lifecycle where you find all the information on the lifecycle of our products Let me just quote two things Through the policy, Microsoft will offer a minimum of 10 years of support 5 years Mainstream Support and 5 years Extended Support at the supported service pack level for Business and Developer products When a new service pack is released, Microsoft will provide either 12 or 24 months of support for the previous service pack Remark It is 24 months for Windows You can subscribe to a quarterly newsletter with regards to this issue Subscribe to Microsoft Support Lifecycle Quarterly Update Newsletter There is a side, where you can search for products including the products that leave Extended Support eg in the next 6 months http supportmicrosoftcom lifecycle search There is one page dedicated to Service Packs http supportmicrosoftcom gp lifesupsps If you look at that, you will see that Windows Server 2003 Service Pack 1 will be retired on 14 April 2009 This means that this is the last time you will get Security Updates for SP1 If you did not already, please start to roll-out SP2 immediately Hope this helps Roger http://www.secuobs.com/revue/news/198443.shtmlhttp://www.secuobs.com/revue/news/198443.shtml 2010-03-05 12:02:46 - Roger Halbheer on Security : I recently had a chat with Tonny Bjorn after my recent blog post and he pointed me to a solution he is using to have users running as non-admin on Windows XP and still having the ability to elevate He uses a freeware called Sudo for Windows and seems to be fairly happy with it I have to possibility to look into it I am running Windows 7 or Windows Vista but you might want to consider something like that The real disadvantage is that it installs a service I think as Local System So, if this service has a vuln, you are toast as well So, I cannot recommend this as I do not know it well enough but it might be worth a look Roger http://www.secuobs.com/revue/news/198441.shtmlhttp://www.secuobs.com/revue/news/198441.shtml 2010-03-05 12:02:46 - Roger Halbheer on Security : This is not about piracy and not about leaks and not about I am waiting for the new RC build as you are I am running an intermediate build between Beta and RC and would love to upgrade all my machines including my MediaCenter to RC However, I refrain from downloading it from any of the untrusted sources The reason for this is pretty simple You never know and it is illegal Years back and I have told this story over and over again we ran an event where we fixed PCs of consumers for free for a whole week Pretty often, when we found an infected machine, we found P2P software on it When we talked to the person owning the PC he she usually told us the my son daughter installed that and uses it We know that P2P is one of the most dangerous source of malware Read now, what happens with Windows 7 Leaked Windows 7 RC torrents infected with trojan So, rather wait until you get access to the RC of Windows 7 and so do I Roger http://www.secuobs.com/revue/news/198420.shtmlhttp://www.secuobs.com/revue/news/198420.shtml 2010-03-05 12:02:46 - Roger Halbheer on Security : We recently revealed the File Classification Infrastructure in Windows Server 2008 R2 This infrastructure can help you to classify files not only based on the location where it is stored but based on content as well However, there is not too much value for me to blog more about that, let the experts speak Classifying files based on location and content using the File Classification Infrastructure FCI in Windows Server 2008 R2 Roger http://www.secuobs.com/revue/news/198411.shtmlhttp://www.secuobs.com/revue/news/198411.shtml 2010-03-05 12:02:46 - Roger Halbheer on Security : The day before yesterday we opened the Windows 7 and Internet Explorer 8 Security Baselines Beta and would look forward to getting your feedback and comment So, sign up for it if you are interested Sign-Up Now for the New Windows 7 and Internet Explorer 8 Security Baselines Beta Opening July 13th Roger http://www.secuobs.com/revue/news/198388.shtmlhttp://www.secuobs.com/revue/news/198388.shtml 2010-03-05 12:02:46 - Roger Halbheer on Security : I saw a lot of chatter on blogs and Twitter about Windows 7 E the European edition without Internet Explorer On July 24th, we published a new proposal on that Read our statement yourself Microsoft Proposal to European Commission Roger http://www.secuobs.com/revue/news/198384.shtmlhttp://www.secuobs.com/revue/news/198384.shtml 2010-03-05 12:02:46 - Roger Halbheer on Security : That s new We have Windows Server 2008 Hyper-V Common Criteria EAL 4 certified The new thing is that we certified it in Germany by the BSI Bundesamt für Sicherheit in der Informationstechnik You can find the report here https wwwbsibundde cae servlet contentblob 612768 publicationFile 35487 0570a_pdfpdf Roger http://www.secuobs.com/revue/news/198378.shtmlhttp://www.secuobs.com/revue/news/198378.shtml 2010-03-05 12:02:46 - Roger Halbheer on Security : I have to admit When I first learned about Windows 7 XP Mode I was quite surprised How can we actually ship an XP Virtual Machine with Windows 7 Well, then I started to think no, it did not hurt too much smile_wink But before I share my findings with you, let me tell you a story A few months back, a friend of mine called me He was desperate He is the owner of a car dealer close to where I live a pretty big one for Swiss terms and had decided to renew the business s IT system So, they moved to Windows Server 2008 Terminal Server and Windows Vista as a client They hired an IT shop to do it for them and the migration went pretty smoothly up until they wanted to start the web application of the car manufacturer It is one of the German car makes you definitely know and which is well known for the quality of its cars Unfortunately the web application did not run with Internet Explorer 7 So, they went back to the car manufacturer to learn that they knew about this but had no plans to make it compatible with neither IE 7 not IE 8 An alternative browser was not an option either as the latest versions broke this application as well He needed a solution, which I could not provide unfortunately Finally they decided to let one PC run on XP with IE 6, just to get around the problem for this one task So, basically they did Windows 7 XP Mode just physical Now, let s consider such scenarios I know of companies that have decided to stay with XP and not move to Windows Vista because of concerns over compatibility issues with other applications they run Their systems no doubt run, but they are depriving themselves of security and privacy enhancements designed to cope with modern threats bear in mind that XP was designed in 2001 to cope with the threats back then threats which changed significantly over the last eight years The impact of Windows Vista as a secure platform is significant, and Windows 7 will built on that foundation Additionally we know that the browser is one of the most targeted attack vectors in the ecosystem We shouldn t be surprised by this as the browser is the window to the outside world and has to defend the computer against everything coming from the Internet The security of the browser increased tremendously from Windows XP to Windows Vista, and will again with Windows 7 I deliberately did not say from IE 6 to 7 to 8 even though this is true at least as much as with the OS But the OS provides additional protection like IE 7 Protected Mode on Windows Vista which we simply cannot deliver on Windows XP or Address Space Layout Randomization or That these design changes pay off can be seen if you look at our Microsoft Security Intelligence Report SIR 2009,08pourcents20-pourcents20BBpourcents20Attackspourcents20XP 1 In Windows XP, 42pourcents of the successful attacks came through our software, in Windows Vista, this changed tremendously 2009,08pourcents20-pourcents20BBpourcents20Attackspourcents20Vista 1 This data is in the Security Intelligence Report v5 If we look at the malware infections per operating system in the most recent SIR version 6, there is another reason to migrate to Windows Vista Windows 7 2009,08pourcents20-pourcents20BBpourcents20Infectionspourcents20perpourcents20OS 1 Looking at all of this, our task basically boils down to How can we help our customers benefit from the much better protection on today s Operating Systems and in parallel ensure compatibility It is the classical security vs compatibility problem Of course we make a huge investment to ensure the operating system is as compatible with old applications as possible but we all know that there will be a point where we simply have to draw a line and put security needs above compatibility From this viewpoint Windows 7 XP Mode all of a sudden makes sense It allows our customers to migrate to Windows 7 and significantly lowers the risk, for example, of web browsing or running 98pourcents of their application software The last 2pourcents, which would have been issues that could have prevented migration, have so far been covered by the XP Mode Now to be completely clear here XP Mode has to be a temporary solution The only effective long-term answer is to migrate applications to a version that is compatible with today s Operating Systems It also has to be managed and protected like any other machine it is a full blown Windows XP with Internet Explorer 6 connected to the network So it has to be used wisely and very, very limited but it allows you to migrate to the more secure environment for the every day s tasks And finally, XP Mode from a user perspective can be set up in a way that the user only sees the legacy application running seamlessly in the Windows 7 environment So, there is not necessarily a Windows XP, where the user can do everything they want You just give them the legacy applications you want Here is a picture how this looks like image_4 1 If you look at it like that it is simply a risk management decision Which risk is higher Leaving our customers on an 8-10 year old operating system for another few years, or helping them to migrate to a modern one, accepting the drawback with XP Mode With XP Mode, we could have helped my friend above without actually having to force him to run a PC just for the sake of this single application For more information on VirtualPC on Windows 7, please look at http blogstechnetcom windows_vpc I borrowed the last picture from there smile_embaressed Roger http://www.secuobs.com/revue/news/198377.shtmlhttp://www.secuobs.com/revue/news/198377.shtml 2010-03-05 12:02:46 - Roger Halbheer on Security : Well, the title is not completely from me I just quoted another blog post I wrote recently on Why Windows 7 XP Mode makes sense from a security perspective and was even quoted on the register The funny thing was the history of that blog I was readying some Tweets and blogs where XP Mode was just questioned I actually never read Richard Jacobs blog post on this I just wanted to share the process I went through However, my post again caused a reply by Jacobs so he seems to read my blog Unfortunately he got some facts quite wrong but at least he got some attention If you are interested in the facts, read the James O Neill s post called Sophos error facts not found where I have the title from As I wrote in the first post XP Mode is here to help our customers to benefit from the undisputable higher security in Windows 7 for 95pourcents of their tasks and removing the migration blocker called compatibility by using XP Mode Let me give you another example I helped a SME last weekend to migrate from an XP environment even their server was on XP to a state-of-the-art Windows Server 2008 SBS and Windows Vista environment We failed Because of one application, which is a 16bit-DOS accounting application which we have been unable to stabilize on Windows Vista and being able to print Even though we switched on all the compatibility settings, it crashed about every 15 minutes Migration is not an option as a customer of them is still using this application So, what are the options 1 Fall back to XP 2 Live with the crashes 3 Find a solution What we did at the end after several hours of trial and error was to keep one old XP box and to Remote Desktop to run this DOS application basically we did XP Mode on a physical level instead of virtually and by far not as transparent as with XP Mode for the user however, managing the XP box now is definitely harder or at least as hard than XP Mode see James post So, as I said in my first post on this It is all about Risk Management Roger http://www.secuobs.com/revue/news/198371.shtmlhttp://www.secuobs.com/revue/news/198371.shtml 2010-03-05 12:02:46 - Roger Halbheer on Security : Well, it was one of these days In order to make photos available to our family we used SharePoint since quite a while It did a fairly decent job but I wanted more fancy stuff So I started to look for something in Silverlight as Silverlight is our web platform I really found something on Codeplex which did about 80pourcents of what I wanted But you know how engineers work it was only 80pourcents So, I took VisualStudio and started to trace and understand the code in order to adapt it and feed back to Codeplex Well, it was an interesting experience but I had to decide that it was not worth the effort Back to square 1 I therefore opened the scope and was just looking for a gallery, which I could use I found one, called Gallery2 Looking into it, I realized that it was written in PHP, which was actually a great thing for me as I read a lot of articles about Windows Server 2008 and PHP and that it shall work excellent worth a try So, let s start As my website on wwwhalbheerinfo is running on SharePoint I did not want to install PHP on it as I had no clue what kind of side-effects I would be generating So I installed a fresh server with Windows Server 2008, packed IIS on top and installed SQL Server as obviously Gallery2 needs a database And now How do I get PHP running on Windows Server 2008 There is a very good description of it on wwwiisnet Using FastCGI to Host PHP Applications on IIS 70 Petty straightforward and it works However, if you use the setup as described, Gallery2 will not work It took my a while and several roll-backs to Snapshots long live Hyper-V until I found out that one of the proposed phpini changes breaks Gallery2 So, if you want to install it, simply renamed the recommended phpini file, restart IIS and go with it So, after having PHP up and running, I simply installed Gallery2 Well, it was not too complicated as I could follow another site on iisnet Gallery2 on IIS And this time you may follow all the proposed changes in phpini - From there on, it is a question of installing the modules and themes, doing some CSS editing and you are done I did it twice I installed all the modules, played with them some of them did not work, some of them were not satisfying at all , then rolled back did I already say that I love the Snapshot functionality in Hyper-V and re-installed Gallery2 with the modules I needed Then did some cosmetics took mainphp as default, did some HTTP-redirection and went live So, this is definitely something I can recommend and PHP on IIS with SQL Server is really easy to get going Oh, by the way Here is the gallery on http galleryhalbheerch or http galleryhalbheerinfo 500x234 1 Have a lot of fun and comments are more than welcome Roger http://www.secuobs.com/revue/news/198367.shtmlhttp://www.secuobs.com/revue/news/198367.shtml 2010-03-05 10:12:09 - Rootsecure.net : Computer World Typical Windows user patches every 5 days pdf 75 Microsoft, third-party patch events each year are a burden most users can't bear, says Secunia http://www.secuobs.com/revue/news/198316.shtmlhttp://www.secuobs.com/revue/news/198316.shtml 2010-03-05 09:16:39 - SecurityTube.Net : Windows File Pseudonyms Shmoocon 2010 Video Tutorial IMAGE http://www.secuobs.com/revue/news/198305.shtmlhttp://www.secuobs.com/revue/news/198305.shtml 2010-03-05 07:50:15 - Vibro.NET : image 3 29-3 30 - Brussels, Belgium 4 7-4 8 Chertsey, UK 5 -5 - Munich, Germany 5 18-5 19 Singapore 5 -5 - Sydney, Australia 6 1-6 2 Redmond, USA Want to gain deep, hands-on knowledge on Windows Identity Foundation Well, we may just have what you need here By the end of this month I ll hop on a plane and start going around the world, delivering 2-day workshops about WIF The Workshops Format 2 days of full immersion in Claims-Based Identity and Windows Identity Foundation, where traditional lectures are alternated to instructor-led labs Everything will be as interactive as it can be, so that you can squeeze as much value as possible from your participation which is why I am personally flying to every location for delivering the training Here there s a high level agenda Day 1 Registration and Breakfast Introduction to WIF and Claims Based Identity Break Labs Basic Web Sites Lunch WIF ASPNET Pipeline and Extensibility Points Break Labs More Web Sites Break ASPNET Scenarios Day 2 Breakfast WIF and WCF Break Labs Web Services and Identity Lunch WIF and Other Technologies Break Labs WIF and Windows Azure Break Challenge Build a Solution According to Specs Wrap-up Next Steps Apart from the first 30 40 mins on day 1, the workshop content is quite deep and designed for a developer audience Architects are welcome as well, provided that they are hands-on and know their way in Visual Studio We will touch on all the standard stuff, then we ll dig deeper on some key topics extensibility, custom STSes on-premises and in Windows Azure, WIF and Silverlight, WIF WCF Windows Azure, etc The idea is not only to give you a list of recipes of how to handle a list of given scenarios, but to make you understand what makes WIF tick so that you know where to put you hands and what to change in every occasion Perhaps even more important, during the 2 days spent together I will challenge you to learn to think in term of claims about your scenarios if you get that, all the rest is quite literally syntactic sugar But oh so sweet - BTW, I am following the same approach and nearly the same TOC with my WIF book Which, given all the travelling, is sliding I want 48 hours days Please Pretty please The Goods The workshop is designed to be redelivered the presentations and the new labs will end up in the identity training kit, with demos and scripts, so that you can redeliver them on your own I won t commit on the timing, but soon I ll just have to convert some of the slides from the free-drawing style a bit like these to a form that makes sense when read on its own Furthermore the current POR is to record one of the workshops and put the videos up on the IdElement Finally I am trying to secure a physical copy of Eugenio s claims guide for all workshops participants, but i can t guarantee because of the timing We ll do our best How to Participate Aaaand we finally get to the interesting part How to participate The event is free of charge, apart of course for your T E if you need to travel to the venue Unfortunately the highly interactive nature of the workshop format and the requirement to provide PCs for the labs imposes hard limits on the number of participants, less than 20 people per event If you want to attend, don t hesitate The current schedule is below 3 29-3 30 - Brussels, Belgium 4 7-4 8 Chertsey, UK 5 -5 - Munich, Germany 5 18-5 19 Singapore 5 -5 - Sydney, Australia 6 1-6 2 Redmond, USA If you live in Belgium, UK, Singapore or US and you want to participate to the workshop please get in touch with your local DPE contact If you live in Germany or Australia the two workshops there are still not confirmed, but we are working on it If you would be interested in participating, please let your local evangelist know Well, what can I say I am REALLY looking forward to work closely with you guys IMAGE http://www.secuobs.com/revue/news/198292.shtmlhttp://www.secuobs.com/revue/news/198292.shtml 2010-03-05 05:33:28 - How to remove : The file names windowsliveexe have appeared in an virus analysis report You can see it on this linkThe installer is about 60 kb It installs a component of backdoor Trojan Bifrose or BiFrost It connects to remote hosts It can download harmful Please visit the site for rest of this article IMAGE IMAGE IMAGE IMAGE IMAGE IMAGE IMAGE IMAGE IMAGE IMAGE IMAGE http://www.secuobs.com/revue/news/198259.shtmlhttp://www.secuobs.com/revue/news/198259.shtml 2010-03-05 03:25:41 - SearchSecurity Security Wire Daily News : Next week, Microsoft will issue two bulletins that address eight vulnerabilities in Windows and Microsoft Office IMAGE IMAGE IMAGE http://www.secuobs.com/revue/news/198243.shtmlhttp://www.secuobs.com/revue/news/198243.shtml 2010-03-05 02:33:33 - InSecurity Complex : Microsoft will have a relatively light Patch Tuesday next week, fixing eight holes with two bulletins, but a fix for a zero-day VBScript vulnerability is still pending http://www.secuobs.com/revue/news/198219.shtmlhttp://www.secuobs.com/revue/news/198219.shtml 2010-03-05 00:13:53 - News : Microsoft today announced it will ship two security updates on Tuesday to patch eight vulnerabilities in Windows and Office IMAGE http://www.secuobs.com/revue/news/198180.shtmlhttp://www.secuobs.com/revue/news/198180.shtml 2010-03-04 22:22:46 - securitystream.info : Microsoft has announced plans to ship two security bulletins next week to fix a total of eight vulnerabilities affecting Windows and Office products Both bulletins are rated important because of the risk compromising the confidentiality, integrity or availability of user data Shorten URL http threatpostcom en_us 3L9 Click to copy to clipboard or post to Twitter ZeroClipboardsetMoviePath 'http threatpostcom sites all modules threatpost_tweaks ZeroClipboardswf' var clip new ZeroClipboardClient clipsetHandCursor true clipsetText 'http threatpostcom en_us 3L9' clipglue 'short_url_link' , 'short_url_cont' Related posts 1 Microsoft to Patch 26 Windows, Office Vulnerabilities 2 MS Patch Tuesday 13 Bulletins, 26 Vulnerabilities 3 Microsoft Patches Critical IE, Windows Vulnerabilities http://www.secuobs.com/revue/news/198158.shtmlhttp://www.secuobs.com/revue/news/198158.shtml 2010-03-04 22:08:55 - SophosLabs blog : It s been over a year since we first started seeing the familiar Windows XP My Computer page where it appears your drives are being scanned and it reports a bunch of non-existent malware on your computer Yesterday I was investigating the latest hot news item where there was a FAMU Florida Agricultural and Mechanical University http://www.secuobs.com/revue/news/198156.shtmlhttp://www.secuobs.com/revue/news/198156.shtml 2010-03-04 19:12:53 - Channel 9 : IMAGE Today I'm happy to announce that Windows Server AppFabric Beta 2 is now available In this episode, Byron Tardiff the setup program manager from the AppFabric team, will walk us through two ways you can install Windows Server AppFabric Beta 2 which works with Visual Studio 2010 RC and NET Framework 4 RC For more on how you can install and test out Windows Server AppFabric Beta 2 check out my blog http://www.secuobs.com/revue/news/198080.shtmlhttp://www.secuobs.com/revue/news/198080.shtml 2010-03-04 18:52:52 - eSecurity Planet Features : Open source antivirus comes to the Windows desktop with a little help from a new cloud backend to accelerate security http://www.secuobs.com/revue/news/198075.shtmlhttp://www.secuobs.com/revue/news/198075.shtml 2010-03-04 17:07:34 - News : The North Korean government appears to have developed its own graphical Linux-based operating system, though its people still prefer that symbol of Yankee high-tech imperialism, Microsoft Windows IMAGE http://www.secuobs.com/revue/news/198043.shtmlhttp://www.secuobs.com/revue/news/198043.shtml 2010-03-04 17:07:34 - News : The typical home user running Windows faces the unreasonable task of patching software an average of every five days, a security and vulnerability research company said IMAGE http://www.secuobs.com/revue/news/198042.shtmlhttp://www.secuobs.com/revue/news/198042.shtml 2010-03-04 12:56:13 - CNIS mag : Guide forensique à l attention des forces de l ordre titre Public Intelligence Ce sont là cinq documents prétendument à diffusion restreinte, qui expliquent dans les grandes lignes les particularités techniques de Windows 7 et de Vista susceptibles de poser quelques problèmes aux enquêteurs TIC et NTech de tous pays Les habitués du Ressource Kit http://www.secuobs.com/revue/news/197990.shtmlhttp://www.secuobs.com/revue/news/197990.shtml 2010-03-04 12:18:43 - Help Net Security News : Sourcefire and Immunet announced a partnership to deliver a free, Windows-based version of the ClamAV antivirus solution Through Immunet s cloud-based Collective Immunity, ClamAV for Windows us http://www.secuobs.com/revue/news/197984.shtmlhttp://www.secuobs.com/revue/news/197984.shtml 2010-03-04 11:02:55 - Raymond.CC Blog : IMAGE IMAGE var AdBrite_Title_Color '00A2E7 ' var AdBrite_Text_Color '000000 ' var AdBrite_Background_Color 'FFFFFF ' var AdBrite_Border_Color 'FFFFFF ' var AdBrite_URL_Color '000000 ' try var AdBrite_Iframe windowtop windowself 2 1 var AdBrite_Referrer documentreferrer ' ' documentlocation documentreferrer AdBrite_Referrer encodeURIComponent AdBrite_Referrer catch e var AdBrite_Iframe ' ' var AdBrite_Referrer ' ' documentwrite StringfromCharCode 60,83,67,82,73,80,84 documentwrite ' src http adsadbritecom mb text_groupphp sid 1544959 zs 3330305f323530 ifr ' AdBrite_Iframe ' ref ' AdBrite_Referrer ' type text javascript ' documentwrite StringfromCharCode 60,47,83,67,82,73,80,84,62 adHeadline font bold 10pt Arial text-decoration underline color 0000FF adText font normal 10pt Arial text-decoration none color 000000 try var AdBrite_Iframe windowtop windowself 2 1 var AdBrite_Referrer documentreferrer '' documentlocation documentreferrer AdBrite_Referrer encodeURIComponent AdBrite_Referrer catch e var AdBrite_Iframe '' var AdBrite_Referrer '' documentwrite StringfromCharCode 60,83,67,82,73,80,84 documentwrite ' src http adsadbritecom mb text_groupphp sid 1547046 br 1 ifr ' AdBrite_Iframe ' ref ' AdBrite_Referrer ' type text javascript ' documentwrite StringfromCharCode 60,47,83,67,82,73,80,84,62 The 20 winners of WinBootInfo IMAGE http://www.secuobs.com/revue/news/197971.shtmlhttp://www.secuobs.com/revue/news/197971.shtml 2010-03-04 03:59:51 - News : One of the key figures in redefining the Windows experience on smartphones is Albert Shum, who s been with Microsoft for barely two-and-a-half two years His previous employer for 12 years sneaker manufacturer Nike, where he worked in design IMAGE http://www.secuobs.com/revue/news/197877.shtmlhttp://www.secuobs.com/revue/news/197877.shtml 2010-03-04 01:56:37 - Hack In The Box : Microsoft Windows Mobile operating systems have always been compatible with various handsets or personal digital assistants, even with those that did not feature enough performance for them, which essentially ruined user experience Nevertheless, with Windows Phone 7-series Microsoft Corp has very strict hardware requirements that will not allow it to run onto older cell phones Because we have very specific requirements for Windows Phone 7 Series the current phones we have right now will not be upgradable,â said Natasha Kwan, general manager for Microsoftâ s mobile communications business in the Asia-Pacific region, reports InformationWeek web-site In fact, there are three types of form-factors for Windows Phone 7-series operating system-based mobile phones that will feature different hardware http://www.secuobs.com/revue/news/197845.shtmlhttp://www.secuobs.com/revue/news/197845.shtml 2010-03-04 01:02:39 - Hack In The Box : Iâ ve been hanging out with a bad crowd lately In the interest of research, Iâ ve been digging into message boards and forums run by unabashed Windows enthusiasts who are intent on breaking Microsoftâ s activation technology Iâ ve had these forums bookmarked for years and stop in every once in a while just to see whatâ s new This time I decided to drop by and actually try some of tools and utilities to see if I could become a pirate, too Unfortunately, I succeeded In this post, Iâ ll share my experiences, including close encounters with some very nasty malware and some analysis on how the latest showdown between Microsoft and the pirates is likely to play out http://www.secuobs.com/revue/news/197817.shtmlhttp://www.secuobs.com/revue/news/197817.shtml 2010-03-04 00:33:32 - Mark's Blog : So far in the Pushing the Limits of Windows series, I ve focused on resources managed by the Windows operating system kernel, including physical and virtual memory, paged and nonpaged pool, processes, threads and handles In this and the next post, however, read more IMAGE http://www.secuobs.com/revue/news/197806.shtmlhttp://www.secuobs.com/revue/news/197806.shtml 2010-03-03 22:44:29 - News : The disclosure of a new exploit technique that bypasses an important Windows security feature may lead to more successful attacks against Microsoft's newer operating systems, researchers said today IMAGE http://www.secuobs.com/revue/news/197749.shtmlhttp://www.secuobs.com/revue/news/197749.shtml 2010-03-03 22:43:00 - 4sysops : Microsoft confirms free Office 2010 upgrade deal Microsoft Forefront Identity Manager 2010, the successor to Identity Lifecycle Manager 2007, is shipping Forrester provides tips to Windows 7 early adopters Copyright 2006-2010, 4sysops, Digital fingerprint 3db371642e7c3f4fe3ee9d5cf7666eb0 http://www.secuobs.com/revue/news/197746.shtmlhttp://www.secuobs.com/revue/news/197746.shtml 2010-03-03 19:55:11 - The Tech Herald Security News : RSA Conference 2010 On Tuesday, Immunet announced that they have teamed with Sourcefire to layer their cloud-based offerings into a new version of ClamAV for Windows ClamAV on the Windows platform has been around for a while, thanks to ClamAV being an Open Source project, and remaining so even after it was acquired by Sourcefire, whom many know because of SNORT Now, there are two versions of ClamAV for use on Windows The oldest maintained by ClamWin Pty Ltd http://www.secuobs.com/revue/news/197691.shtmlhttp://www.secuobs.com/revue/news/197691.shtml 2010-03-03 17:04:19 - Stratagem 13 : Microsoft warns Windows XP users, don t touch the F1 key - Linux Today - Microsoft warns Windows XP users, don t touch the F1 key http://www.secuobs.com/revue/news/197622.shtmlhttp://www.secuobs.com/revue/news/197622.shtml 2010-03-03 11:50:15 - Network World on Security : Microsoft today said it had restarted distribution of a security update that had crippled some Windows PCs last month with reboot problems and Blue Screen of Death error screens http://www.secuobs.com/revue/news/197533.shtmlhttp://www.secuobs.com/revue/news/197533.shtml 2010-03-03 00:07:15 - HackBloc.org : The law enforcement only guides on Windows 7 have been released They details the internals of the Bitlocker encryption algorithm, the NTFS file system, and much much more Grab your copy at http publicintelligencenet microsoft-windows-7vista-advanced-forensic All tags NoneLogin or register to tag items http://www.secuobs.com/revue/news/197359.shtmlhttp://www.secuobs.com/revue/news/197359.shtml 2010-03-02 23:00:33 - 4sysops : Microsoft resumes XP patch distribution says rootkit remover coming soon Microsoft released blue screen rootkit detection tool Microsoft to demo new cloud-computing advances at research showcase 38pourcents of IT managers ignore Web 20 risks Microsoft releases its privacy-enabling U-Prove technology Microsoft s EU ballot fails to randomize browser order Funny Microsoft is promoting http://www.secuobs.com/revue/news/197319.shtmlhttp://www.secuobs.com/revue/news/197319.shtml 2010-03-02 16:57:42 - TrendLabs Malware Blog by Trend Micro : Asking for help in Windows could lead to more trouble A newly discovered vulnerability in Internet Explorer IE leverages the ability of a Visual Basic script to invoke a HLP Windows Help file format file, which could give a remote attacker the ability to run arbitrary code on an affected system Visual Basic uses the following syntax Post from TrendLabs Malware Blog - by Trend Micro Calling Windows for Help May Lead to Vulnerability http://www.secuobs.com/revue/news/197162.shtmlhttp://www.secuobs.com/revue/news/197162.shtml 2010-03-02 14:10:32 - Journal du Net Solutions l'actualité en bref : Microsoft alerte sur l'existence d'une faille non-corrigée dans Internet Explorer Concernant le moteur VBScript et les fic http://www.secuobs.com/revue/news/197111.shtmlhttp://www.secuobs.com/revue/news/197111.shtml 2010-03-02 12:00:01 - Network World on Security : Microsoft told Windows XP users today not to press the F1 key when prompted by a Web site, as part of its reaction to an unpatched vulnerability that hackers could exploit to hijack PCs running Internet Explorer IE http://www.secuobs.com/revue/news/197086.shtmlhttp://www.secuobs.com/revue/news/197086.shtml 2010-03-02 08:22:22 - securitystream.info : Surf, press F1, get pwned Microsoft's security team is investigating a security vulnerability in older versions of Windows that allows attackers to execute malware on end user machines Offloading malware protection to the cloud Related posts 1 IE code execution bug can bite older Windows machines 2 Remote execution flaw mars older Thunderbird versions 3 Microsoft Warns of New IE Code Execution Flaw http://www.secuobs.com/revue/news/197038.shtmlhttp://www.secuobs.com/revue/news/197038.shtml 2010-03-02 04:33:24 - News : The app services technology is intended to boost speed and management of the Web and other programs IMAGE http://www.secuobs.com/revue/news/197003.shtmlhttp://www.secuobs.com/revue/news/197003.shtml 2010-03-02 04:33:24 - News : Cedric Crawley wants to keep Windows 7 and his applications in one partition, and his data in another IMAGE http://www.secuobs.com/revue/news/197000.shtmlhttp://www.secuobs.com/revue/news/197000.shtml 2010-03-02 03:37:56 - InSecurity Complex : One workaround for hole that could be exploited by attackers taking control of Windows running IE is to avoid pressing the F1 key when prompted by a Web site http://www.secuobs.com/revue/news/196990.shtmlhttp://www.secuobs.com/revue/news/196990.shtml 2010-03-02 02:52:33 - Hack In The Box : Cue the sad trombone, folks If you were waiting around with your Windows Mobile 65 device with hopes that Microsoft would one day bless it with a new chance at life in the form of Windows Phone 7, itâ s time to move on APC Magazine just got the full spiel from Microsoft themselves Windows Mobile 65 devices wonâ t be upgradable to Windows Phone 7 series You hear that Five hundred XDA hackers just scoffed and said â Yeah, weâ ll see about thatâ Why Standards Microsoft has a very, very, almost ridiculously strict set of hardware guidelines that they want manufacturing partners to follow when building Windows Phone 7 Series handsets â and for the most part, old handsets just donâ t fit the bill They either lack one of the three mandatory keys search, back, and Windows key , or â get this â they have too many keys http://www.secuobs.com/revue/news/196958.shtmlhttp://www.secuobs.com/revue/news/196958.shtml 2010-03-02 01:52:33 - Symantec Security Response Podcasts : Symantec announces Symantec Backup Exec 10d for Windows Servers and LiveState Recovery 60 http://www.secuobs.com/revue/news/196931.shtmlhttp://www.secuobs.com/revue/news/196931.shtml 2010-03-02 01:52:33 - Symantec Security Response Podcasts : Symantec announces Symantec Backup Exec 10d for Windows Servers and LiveState Recovery 60 http://www.secuobs.com/revue/news/196927.shtmlhttp://www.secuobs.com/revue/news/196927.shtml 2010-03-02 01:52:33 - Symantec Security Response Podcasts : Symantec announces Symantec Backup Exec 10d for Windows Servers and LiveState Recovery 60 http://www.secuobs.com/revue/news/196922.shtmlhttp://www.secuobs.com/revue/news/196922.shtml 2010-03-02 01:52:33 - Symantec Security Response Podcasts : Symantec announces Symantec Backup Exec 10d for Windows Servers and LiveState Recovery 60 http://www.secuobs.com/revue/news/196919.shtmlhttp://www.secuobs.com/revue/news/196919.shtml 2010-03-02 01:52:33 - Symantec Security Response Podcasts : Symantec announces Symantec Backup Exec 10d for Windows Servers and LiveState Recovery 60 http://www.secuobs.com/revue/news/196916.shtmlhttp://www.secuobs.com/revue/news/196916.shtml 2010-03-02 01:52:33 - Symantec Security Response Podcasts : A Symantec Security Response podcast featuring an overview of six new research papers on Windows Vista security released by Symantec Advanced Threat Research This goal of this podcast is to provide a balanced, unbiased and objective viewpoint on Windows Vista security http://www.secuobs.com/revue/news/196868.shtmlhttp://www.secuobs.com/revue/news/196868.shtml 2010-03-02 00:07:43 - securitystream.info : Surf, press F1, get pwned Microsoft's security team is investigating a security vulnerability in older versions of Windows that allows attackers to execute malware on end user machines Offloading malware protection to the cloud Related posts 1 IE code execution bug can bite older Windows machines 2 Remote execution flaw mars older Thunderbird versions 3 Microsoft Warns of New IE Code Execution Flaw http://www.secuobs.com/revue/news/196792.shtmlhttp://www.secuobs.com/revue/news/196792.shtml 2010-03-01 23:54:44 - Hack a Day : Patrick Becker had an ancient PC on his hands with a blown PSU He converted this into a stylish home for his Betta splendens The aquarium itself is fashioned from a piece for construction glass block with the top cut off This allows for a window that looks through the tank and shows off the motherboard http://www.secuobs.com/revue/news/196780.shtmlhttp://www.secuobs.com/revue/news/196780.shtml 2010-03-01 23:33:43 - Rootsecure.net : The Register IE code execution bug can bite older Windows machines http://www.secuobs.com/revue/news/196770.shtmlhttp://www.secuobs.com/revue/news/196770.shtml 2010-03-01 22:43:49 - News : Despite a report quoting a Microsoft executive saying that no current-generation phones will be upgradeable to the forthcoming Windows Mobile 7, the company refused to confirm those comments IMAGE http://www.secuobs.com/revue/news/196741.shtmlhttp://www.secuobs.com/revue/news/196741.shtml 2010-03-01 22:40:18 - 4sysops : Now that you have an overview of the Windows 7 deployment tools, it is time to learn more Windows 7 deployment In this post, I ve collected my favorite Windows 7 deployment resources If you know of other good articles on the web, feel free to link to them in a comment below Single PC migrations Upgrading from http://www.secuobs.com/revue/news/196735.shtmlhttp://www.secuobs.com/revue/news/196735.shtml 2010-03-01 22:40:18 - 4sysops : Funeral for Internet Explorer 6 next Thursday send flowers Microsoft responds to Google s accusations regarding the EC antitrust case Microsoft s browser choice hits IE users today Microsoft to target other botnets with legal weapon Market share Windows 7 up, OS X down, Chrome up and IE down Exclusive First Windows Phone 7 Series http://www.secuobs.com/revue/news/196734.shtmlhttp://www.secuobs.com/revue/news/196734.shtml 2010-03-01 22:34:59 - Channel 9 : IMAGE Every week Laura Paul bring you the hottest topics on the minds of Microsofties Here's the latest from this week Multi-Point Server Announced 3 Designs for Windows Phone 7 Series IE6 Funeral Windows 7 Commercial Parody and finally RikRolling http://www.secuobs.com/revue/news/196724.shtmlhttp://www.secuobs.com/revue/news/196724.shtml 2010-03-01 22:20:36 - Journal du Net Solutions l'actualité en bref : Microsoft alerte sur l'existence d'une faille non-corrigée dans Internet Explorer Concernant le moteur VBScript et les fic http://www.secuobs.com/revue/news/196721.shtmlhttp://www.secuobs.com/revue/news/196721.shtml 2010-03-01 22:13:59 - Exploit DB updates : http://www.secuobs.com/revue/news/196718.shtmlhttp://www.secuobs.com/revue/news/196718.shtml 2010-03-01 21:04:07 - News : Microsoft Windows climbed out of its rut last month to gain market share, Web measurement company NetApplicationscom said today IMAGE http://www.secuobs.com/revue/news/196693.shtmlhttp://www.secuobs.com/revue/news/196693.shtml 2010-03-01 20:34:44 - Rootsecure.net : Net Security Severe IE vulnerability threatens Windows XP users http://www.secuobs.com/revue/news/196680.shtmlhttp://www.secuobs.com/revue/news/196680.shtml 2010-03-01 17:14:43 - Stratagem 13 : Understanding User Account Control in Windows 7 - Understanding User Account Control in Windows 7 - the How-To Geek http://www.secuobs.com/revue/news/196613.shtmlhttp://www.secuobs.com/revue/news/196613.shtml 2010-03-01 16:08:53 - Help Net Security News : News of a newly discovered bug in VBScript and Windows Help files in Internet Explorer that could allow a remote attacker to run an arbitrary command has reached Microsoft on Friday and they immediate http://www.secuobs.com/revue/news/196593.shtmlhttp://www.secuobs.com/revue/news/196593.shtml 2010-03-01 11:34:36 - Network World on Security : Microsoft on Sunday confirmed it's investigating an unpatched bug in VBScript that hackers could exploit to plant malware on Windows XP machines running IE http://www.secuobs.com/revue/news/196530.shtmlhttp://www.secuobs.com/revue/news/196530.shtml 2010-03-01 09:46:40 - Raymond.CC Blog : IMAGE IMAGE Probably some of you have heard of BootVis, which can be used to check how long a Windows XP machine takes to boot, and then to optimize the boot process, sometimes considerably reducing the time required BootVis can be considered as a very useful tool but unfortunately it can only work in Windows XP IMAGE http://www.secuobs.com/revue/news/196514.shtmlhttp://www.secuobs.com/revue/news/196514.shtml 2010-02-28 23:24:39 - Security Database Tools Watch : winAUTOPWN is an auto hacking shell gaining tool It can also be used to test IDS, IPS and other monitoring sensors softwares Autohack your targets with least possible interaction Features Contains already custom-compiled executables of famous and effective exploits alongwith a few original exploits No need to debug, script or compile the source codes Scans all ports 1 - 65535 after taking the IP address and tries all possible exploits according to the list of discovered - Security Tools Framework, Exploitation, Attack, winAUTOPWN IMAGE IMAGE IMAGE IMAGE IMAGE IMAGE http://www.secuobs.com/revue/news/196443.shtmlhttp://www.secuobs.com/revue/news/196443.shtml 2010-02-28 18:08:59 - Les Tips du Laboratoire Microsoft : Qui n a jamais eu des dizaines de fenêtres ouvertes sur le bureau Nous allons partager avec vous une petite astuce sous Windows 7 Au cas où vous souhaitez organise http://www.secuobs.com/revue/news/196389.shtmlhttp://www.secuobs.com/revue/news/196389.shtml 2010-02-28 08:00:24 - Exploit DB updates : http://www.secuobs.com/revue/news/196343.shtmlhttp://www.secuobs.com/revue/news/196343.shtml 2010-02-27 10:06:00 - Security Shell : It is possible to invoke winhlp32exe from Internet Explorer 8,7,6 using VBScript Passing malicious HLP file to winhlp32 could allow remote attacker to run arbitrary command Additionally, there is a stack overflow vulnerability in winhlp32exe Afected Software Windows XP SP3 More info http isecpl http://www.secuobs.com/revue/news/196237.shtmlhttp://www.secuobs.com/revue/news/196237.shtml 2010-02-27 04:55:23 - News : A federal judge this week ruled that Microsoft's Windows Vista to XP downgrade rules do not violate antitrust laws as alleged in a lawsuit IMAGE http://www.secuobs.com/revue/news/196166.shtmlhttp://www.secuobs.com/revue/news/196166.shtml 2010-02-27 00:04:02 - News : Spiceworks surveyed 1,500 IT professionals at small and midsize companies before and after Microsoft's release of its Windows 7 operating system to learn more about adoption plans IMAGE http://www.secuobs.com/revue/news/196102.shtmlhttp://www.secuobs.com/revue/news/196102.shtml 2010-02-26 22:39:34 - 4sysops : Once you have planned your Windows 7 deployment and prepared your Windows 7 master images with their answer files, you are ready to deliver the images to your PCs This article gives an overview of Microsoft s free Windows 7 installation tools Windows Deployment Services WDS WDS is one of the major enhancements in Windows Server 2008 This http://www.secuobs.com/revue/news/196068.shtmlhttp://www.secuobs.com/revue/news/196068.shtml 2010-02-26 22:39:34 - 4sysops : Windows 7 memory usage What s the best way to measure Are you concerned about the latest Windows Activation update Researchers question Microsoft s botnet take-down Google explains search rankings after complaints in Europe Interesting search for search engine in Google Copyright 2006-2010, 4sysops, Digital fingerprint 3db371642e7c3f4fe3ee9d5cf7666eb0 http://www.secuobs.com/revue/news/196067.shtmlhttp://www.secuobs.com/revue/news/196067.shtml 2010-02-26 21:11:46 - News : Skype's VoIP apps for the Windows Mobile operating system, Skype Lite and Skype for Windows Phones, are no longer available for download, the company announced, claiming the apps didn't offer a good enough experience IMAGE http://www.secuobs.com/revue/news/196025.shtmlhttp://www.secuobs.com/revue/news/196025.shtml 2010-02-26 19:28:07 - Channel 9 : IMAGE This is the six and last screencast in a series of Windows 7 screencasts for showing developers how to use the taskbar to Light Up their applications on Windows 7 Out of the box, the Windows 7 taskbar provides support for tabbed thumbnails For example, when Internet Explorer uses tabs, they show up on the taskbar preview as if they were regular windows Cool as this functionality is, it doesn t come for free As a developer, you need to manage these tabs and make sure they appear on your application's taskbar button This screencast shows you how to add tab support to your application The code shown in this screencast is available to downloadThe other screencasts in this series are Programming the Windows 7 Taskbar Working with Application ID Programming the Windows 7 Taskbar Using the Taskbar Button Overlay Icons and Progress Bar Programming the Windows 7 Taskbar Jump Lists Part 1 Programming the Windows 7 Taskbar Jump List Part 2 Programming the Windows 7 Taskbar Custom Previews and Thumbnail Clips http://www.secuobs.com/revue/news/195988.shtmlhttp://www.secuobs.com/revue/news/195988.shtml 2010-02-26 19:05:28 - Patches : Microsoft's update to its anti-piracy tool is now available via Windows Update, the company has confirmed http://www.secuobs.com/revue/news/195980.shtmlhttp://www.secuobs.com/revue/news/195980.shtml 2010-02-26 12:42:15 - Roer.com Information Security blog : IMAGE Claims made of a major vulnerability in the Microsoft Windows operating system have been refuted Jan Fry, head of PCI at ProCheckUp Labs, claimed that the findings by 2X Software, revealed exclusively by SC Magazine yesterday, were a 'little sensationalist' Yesterday, 2X Software said that with a simple piece of code, an operating system from Windows 7 Server 2008 versions to Windows 2000 Server 2003 could be crashed with malicious applications installed However Fry refuted this, saying that the claims indicate that code needs to be run for the vulnerability to be exploited, so an attacker cannot just send some malicious traffic to a Microsoft server and crash it Fry said First scenario, someone is emailed a malicious application They run it once and their machine crashes This person is particularly stupid, so after rebooting, they run the executable again and once again the machine crashes By now, even a potato would see the correlation and would stop running the executable Read the article img wwwmaximumpccom http://www.secuobs.com/revue/news/195894.shtmlhttp://www.secuobs.com/revue/news/195894.shtml 2010-02-26 06:03:45 - Security Bloggers Network : Leading Windows Security resource site, WindowSecuritycom, announced today that Acunetix Web Vulnerability Scanner was selected the winner in the Web Application Security category of the WindowSecuritycom Readers Choice Awards for the third time in a http://www.secuobs.com/revue/news/195818.shtmlhttp://www.secuobs.com/revue/news/195818.shtml 2010-02-26 05:31:01 - Reverse Engineering : submitted by ethicszen link comment http://www.secuobs.com/revue/news/195812.shtmlhttp://www.secuobs.com/revue/news/195812.shtml 2010-02-26 03:12:26 - SecurityTube.Net : Creating, Running and Deleting Files with Device File Names on Windows Video Tutorial IMAGE http://www.secuobs.com/revue/news/195777.shtmlhttp://www.secuobs.com/revue/news/195777.shtml 2010-02-25 22:31:15 - News : Intel faces challenges in migrating from Windows XP to Windows 7, including application incompatibility and system readiness, the company said on Wednesday IMAGE http://www.secuobs.com/revue/news/195701.shtmlhttp://www.secuobs.com/revue/news/195701.shtml 2010-02-25 20:56:09 - 4sysops : End of Support for Windows XP SP2 and Windows Vista with no service packs installed Download Microsoft Baseline Configuration Analyzer 20 Windows Server 2008 R2 Migration Utilities Microsoft can kill botnets Copyright 2006-2010, 4sysops, Digital fingerprint 3db371642e7c3f4fe3ee9d5cf7666eb0 http://www.secuobs.com/revue/news/195668.shtmlhttp://www.secuobs.com/revue/news/195668.shtml 2010-02-25 20:53:45 - SecuraBit : Based on the positive feedback we received from the vLive course we promoted with SANS recently, we re doing it again Everyone has a Microsoft Windows system, and most of us have a lot of them How can you know whether or not your systems are configured securely How do you know that users are following security policies http://www.secuobs.com/revue/news/195665.shtmlhttp://www.secuobs.com/revue/news/195665.shtml 2010-02-25 19:23:46 - Channel 9 : IMAGE This is the fifth screencast in a series of Windows 7 screencasts for showing developers how to use the taskbar to Light Up their applications on Windows 7 Out of the box, the Windows 7 taskbar provides support for thumbnail and previews, which make it easier for users to preview running applications and switch between application windows with greater confidence But sometimes you want to override the default behavior this screencast shows how you can create custom thumbnail previews and thumbnail clips to provide your unique preview implementation The code shown in this screencast is available to download The other screencasts in this series are Programming the Windows 7 Taskbar Working with Application ID Programming the Windows 7 Taskbar Using the Taskbar Button Overlay Icons and Progress Bar Programming the Windows 7 Taskbar Jump Lists Part 1 Programming the Windows 7 Taskbar Jump List Part 2 Programming the Windows 7 Taskbar Tabbed Thumbnails http://www.secuobs.com/revue/news/195638.shtmlhttp://www.secuobs.com/revue/news/195638.shtml 2010-02-25 19:01:20 - Global Security Mag Online : Sign go, la solution de contrôle d'accès et de SSO Single Sign-On d'Ilex, s'affirme aujourd'hui comme une offre clé sur l'ensemble des environnements du marché et dans tous les contextes applicatifs Elle se voit notamment créditer par Microsoft Corp d'une totale compatibilité avec Windows 7 C'est pour Sign go une preuve manifeste de son approche globale du SSO Sign go bénéficie d'une technologie de pointe, lui permettant de s'imposer également sur des projets de fédération d'identités, - Produits http://www.secuobs.com/revue/news/195634.shtmlhttp://www.secuobs.com/revue/news/195634.shtml 2010-02-25 18:33:18 - Packet Storm Security Headlines : http://www.secuobs.com/revue/news/195624.shtmlhttp://www.secuobs.com/revue/news/195624.shtml 2010-02-25 16:58:35 - WindowSecurity.com : Acunetix Web Vulnerability Scanner was selected the winner in the Web Application Security category of the WindowSecuritycom Readers' Choice Awards Defiance Threat Management System and N-Stalker Web Application Security Scanner were runner-up and second runner-up respectively http://www.secuobs.com/revue/news/195572.shtmlhttp://www.secuobs.com/revue/news/195572.shtml 2010-02-25 12:51:50 - Les Tips du Laboratoire Microsoft : Il est possible de gagner quelques secondes lors du démarrage de Windows 7 Par défaut, celui-ci n'utilise pas tous les cœurs de votre processeur, mais il est possible d http://www.secuobs.com/revue/news/195504.shtmlhttp://www.secuobs.com/revue/news/195504.shtml 2010-02-25 03:41:50 - The Academy Pro : Today we have two SAINT videos The featured video of the day demonstrates how to perform credential scanning with SAINT 726 We also take a look at scanning a Ubuntu 910 system with SAINT You can follow The Academy Pro updates on Twitter and Feedburner Thank you all for your on-going support and recommendations Peter Giannoulis The Academy Pro wwwtheacademyprocom This http://www.secuobs.com/revue/news/195357.shtmlhttp://www.secuobs.com/revue/news/195357.shtml 2010-02-24 23:45:49 - 4sysops : In my last article I introduced those free Microsoft s deployment tools that help you plan Windows 7 deployment Today, I will give you an overview of the tools that you can use to prepare the image of your Windows 7 master installation The most important tool collection certainly is the Windows Automated Installation Kit This http://www.secuobs.com/revue/news/195288.shtmlhttp://www.secuobs.com/revue/news/195288.shtml 2010-02-24 23:45:49 - 4sysops : Download Microsoft Application Virtualization for Remote Desktop Services 46 Microsoft launches Windows MultiPoint Server 2010 Windows Server 2008 R2 Unleashed Now Available 1,680-pages, 3779 Google hit with antitrust probe in Europe This is why a search engine should only focus on search and nothing else Copyright 2006-2010, 4sysops, Digital fingerprint 3db371642e7c3f4fe3ee9d5cf7666eb0 http://www.secuobs.com/revue/news/195287.shtmlhttp://www.secuobs.com/revue/news/195287.shtml 2010-02-24 22:35:31 - Channel 9 : IMAGE This is the fourth screencast in a series of Windows 7 screencasts for showing developers how to use the taskbar to Light Up their applications on Windows 7 This screencast is the second of two screencasts focused on Windows 7 taskbar Jump List functionality In the first jump list screencast you learned the basics of using file association and the default Recent and Frequent categories In this part you dive into customizing jump list tasks and creating your own custom category The code shown in this screencast is available to download The other screencasts in this series are Programming the Windows 7 Taskbar Working with Application ID Programming the Windows 7 Taskbar Using the Taskbar Button Overlay Icons and Progress Bar Programming the Windows 7 Taskbar Jump Lists Part 1 Programming the Windows 7 Taskbar Custom Previews and Thumbnail Clips Programming the Windows 7 Taskbar Tabbed Thumbnails Related blog posts Developing for the Windows 7 Taskbar Jump into Jump Lists Part 1, Developing for the Windows 7 Taskbar Jump into Jump Lists Part 2, Developing for the Windows 7 Taskbar Jump into Jump Lists Part 3, http://www.secuobs.com/revue/news/195258.shtmlhttp://www.secuobs.com/revue/news/195258.shtml 2010-02-24 21:29:44 - News : A Forrester study concludes that the return on Windows 7 migrations will be well worth the investment Meanwhile, Microsoft pushes application virtualization tools to motivate Windows 7 and Office 2010 fence-sitters IMAGE http://www.secuobs.com/revue/news/195228.shtmlhttp://www.secuobs.com/revue/news/195228.shtml 2010-02-24 21:25:40 - ContactlessNews Contactless Smart Cards RFID Payment Transit and Security : Passlogix announced the release of v-GO Universal Authentication Manager v-GO UAM , the first strong authentication solution that will enable Microsoft Windows to accept any identification device for log-on, including door access badges, government-issued citizen identity cards, standalone or built-in laptop biometrics, one time passwords via mobile phones, and question and answer sequences According to Passlogix, the solution lowers the cost of back-end strong authentication infrastructure in corporate networks from more than 100 to just 15 per user v-GO UAM cuts down on costs by using Microsoft Active Director for data storage and administration, instead of employing a separate infrastructure with proprietary authentication servers v-GO UAM also simplifies the log-in process through contactless technology Users who have door access badges, for example, simply tap their badge on a badge reader attached to their computer and enter a PIN code They tap their badge again to lock their computer or log out Users with smart cards, such as government-issued identity cards, insert and remove their card from the smart card reader in the computer v-GO UAM also works with Passlogix s v-GO Single Sign-On to enable users to be re-authorized to sensitive applications with the same identification device they used to logon to Windows http://www.secuobs.com/revue/news/195227.shtmlhttp://www.secuobs.com/revue/news/195227.shtml