Microsoftは アプリ インストーラー の悪用に対処します
Friday, January 05, 2024
本ブログは、Microsoft addresses App Installer abuse の抄訳版です。最新の情報は原文を参照してください。 概要 ここ数か
Friday, January 05, 2024
本ブログは、Microsoft addresses App Installer abuse の抄訳版です。最新の情報は原文を参照してください。 概要 ここ数か
Thursday, December 28, 2023
Summary In recent months, Microsoft Threat Intelligence has observed threat actors leveraging social engineering and phishing techniques to target Windows OS users and utilizing the ms-appinstaller URI scheme. We have addressed and mitigated this malicious activity by turning off ms-appinstaller by default. Additionally, Microsoft has coordinated with Certificate Authorities to revoke the abused code signing certificates utilized by malware samples we have identified.
Friday, July 24, 2020
Partnering with the research community is an important part of Microsoft’s holistic approach to defending against security threats. Bounty programs are one part of this partnership, designed to encourage and reward vulnerability research focused on the highest impact to customer security. The Windows Insider Preview (WIP) Bounty Program is a key program for Microsoft and researchers.
Tuesday, July 14, 2020
Today we released an update for CVE-2020-1350, a Critical Remote Code Execution (RCE) vulnerability in Windows DNS Server that is classified as a ‘wormable’ vulnerability and has a CVSS base score of 10.0. This issue results from a flaw in Microsoft’s DNS server role implementation and affects all Windows Server versions.
Tuesday, August 13, 2019
We have released the August security updates to provide additional protections against malicious attackers. As a best practice, we encourage customers to turn on automatic updates. More information about this month’s security updates can be found in the Security Update Guide. As a reminder, Windows 7 and Windows Server 2008 R2 will be out of extended support and no longer receiving updates as of January 14, 2020.
Thursday, October 04, 2018
注: この内容は一般の方を対象とした記述にしています。 今日はセキュリティ基本対策 5 か条の第 4 条「暗号化
Wednesday, September 26, 2018
注: この内容は一般の方を対象とした記述にしています。 今日はセキュリティ基本対策 5 か条の第 3 条「アカウ
Wednesday, September 19, 2018
注: この内容は一般の方を対象とした記述にしています。 今日はセキュリティ基本対策 5 か条の第 2 条「アクシ
Wednesday, September 12, 2018
注: この内容は一般の方を対象とした記述にしています。 今日はセキュリティ基本対策 5 か条の第 1 条「最新の
Thursday, April 12, 2018
本記事は、Microsoft Secure のブログ “How artificial intelligence stopped an Emotet outbreak” (2018 年 2 月 14 日 米国時間公開)