Skip to main content

Month Archives: May 2007

Two Advisories on Non-Security Updates

Tuesday, May 22, 2007

Hello everyone, This is Christopher Budd. I wanted to let you know we’ve just posted a couple of Security Advisories related to important updates. We often use Security Advisories to let you know when we’re aware of security incidents that can affect customers. We also use Security Advisories to let you know about important information that can relate to your overall security.

New Detection Logic for May 8th Office 2007 Updates

Thursday, May 17, 2007

Hello there, Since this is my first post, I suppose a quick introduction is in order. I am Mark Griesi, a member of the Security Response Communications Team. My role on the team is much the same as my colleague Christopher Budd, who I know you are all familiar with.

ANS and Security Bulletin Updates

Wednesday, May 16, 2007

Hello everyone, This is Mark Miller again to let you know about some additional changes we are making this month. In April, we announced changes to our blog site. This month we are announcing changes to our Advanced Notification Service (ANS) as well as some changes we are planning to make to the format of our security bulletins in June.

Update to KB Article 931768

Wednesday, May 16, 2007

Hello everyone, this is Christopher Budd. I wanted to let people know that as part of our regular process, we’ve made an update to the Master KB article for MS07-027, 931768. Specifically, we’ve added an entry pointing to a new KB article, 937409, that discusses an issue that can occur for IE 7 customers who have changed the default locations of the “Temporary Internet Files” after they apply MS07-027.

BlueHat: Community Outreach

Monday, May 14, 2007

Katie Moussouris here. I’m the newest Security Strategist here at Microsoft. I was brought in by Sarah Blankinship to contribute to the work of the MSRC Security Community Outreach Team. I work in the group that is responsible for securing current and future Microsoft products. My background is application security, having come from Symantec by way of the @stake acquisition.

BlueHat: An MSRC Perspective

Friday, May 11, 2007

Hello everyone, This is Christopher Budd. As Andrew noted in his posting yesterday, on Thursday we had our Spring 2007 BlueHat Security Briefings. I had a chance to attend, along with several of my colleagues from the MSRC and Sarah was kind enough to let me do a guest post to share some thoughts on BlueHat from the standpoint of someone involved in security response.

BlueHat V5 Opens!

Thursday, May 10, 2007

Hi, Andrew Cushman the new director of the MSRC here. I’m thrilled to join this kickass team. I ‘m excited by the chance to continue delivering industry leading security response and by the chance to more closely integrate my other responsibilities with the MSRC team. Over the past couple years I led Microsoft’s Security Outreach Initiative.

BlueHat v5: The Paradox of Innovation

Thursday, May 10, 2007

BlueHat is Microsoft’s own little hacker con. We host it twice a year – the sessions today were all about innovation in security research. What did we learn? That Microsoft cannot solve the security problem, but we can raise the bar substantially to the point where finding bugs in Microsoft products is hard, and building reliable exploits even harder.

May 2007 Monthly Bulletin Release

Tuesday, May 08, 2007

Hello everyone, This is Christopher Budd. I wanted to let you know that our bulletins for May 2007 have just posted. This includes the security update for the DNS issue discussed in Microsoft Security Advisory 935964. This month, we’re releasing three bulletins affecting Microsoft Office. These have a maximum severity of Critical for earlier versions and Important for more recent versions:

May 2007 Advance Notification

Thursday, May 03, 2007

Hello everyone, this is Christopher Budd. It’s the Thursday before May 8, 2007, the date for the May 2007 monthly security bulletin release. As we do each month on this day, we’ve posted our Advance Notification. In it, we try to provide you with information about what we’re planning to release on Tuesday to help with your planning for the release.