Welcome to Delicate template
Header
Just another WordPress site
Header

Interesting Insights from the Latest MSIR

October 12th, 2011 | Posted by Brett Edgar in Malware | Microsoft | Monitoring | Security | Security Awareness & Training - (2 Comments)

The latest Microsoft Security Intelligence Report (Volume 11) has been released and contains some interesting information that Microsoft has collected from the execution of its Malicious Software Removal Tool (MSRT) and Internet Explorer SmartScreen® data.  Several of the results confirm what those of us in the network security monitoring community already know: Java is the most often exploited application (page xvii), Adobe Acrobat exploits account for most malicious documents (page xviii), and Adware is the most common type of malware identified (page xx).  Microsoft also stated that over a third of malware detected could spread via the AutoRun feature on removable media or on network shares.  Updates exist that help make the AutoRun feature in XP and Vista more like the one in Windows 7, which is to say more secure.  Deploy those updates.Read more

Brett Edgar

Brett Edgar

Brett is a Founder and the Director of Managed Security Services at TRUE. He has been working in the system and network forensics field since graduating from the University of Tulsa with a B.S. Computer Science in 2003. He speaks hexadecimal fluently and is TRUE's resident human Ethernet transceiver. He holds CISSP, CSSLP, and CNSS 4011-4015 certificates, loves MLB and NCAA Football, and when he gets tired of hexadecimal, he goes home to hang out with his wife and kid.

More Posts - Twitter

,

Vista SP2…it works

May 27th, 2009 | Posted by Brett Edgar in Microsoft | Windows - (0 Comments)

Well, installation wasn’t too bad.  It took about 20 minutes or so.  As a bonus, all of my settings seem to be intact and all of my programs continue to function properly.  Even our corporate AV is working… I hope this isn’t premature, but: Good job, Microsoft.

Brett Edgar

Brett Edgar

Brett is a Founder and the Director of Managed Security Services at TRUE. He has been working in the system and network forensics field since graduating from the University of Tulsa with a B.S. Computer Science in 2003. He speaks hexadecimal fluently and is TRUE's resident human Ethernet transceiver. He holds CISSP, CSSLP, and CNSS 4011-4015 certificates, loves MLB and NCAA Football, and when he gets tired of hexadecimal, he goes home to hang out with his wife and kid.

More Posts - Twitter

Vista SP2

May 27th, 2009 | Posted by Brett Edgar in Microsoft | Windows - (0 Comments)

So Vista SP2 is now available to the masses.  I’ve downloaded it and am in the process of installing it.  So far no problems, but it is claiming that my machine may reboot several times and the total installation time may be 1 hour or more.  Here’s hoping the upgrade goes smoothly and I still have full functionality when the process completes…I’ll post my results here later today.

Brett Edgar

Brett Edgar

Brett is a Founder and the Director of Managed Security Services at TRUE. He has been working in the system and network forensics field since graduating from the University of Tulsa with a B.S. Computer Science in 2003. He speaks hexadecimal fluently and is TRUE's resident human Ethernet transceiver. He holds CISSP, CSSLP, and CNSS 4011-4015 certificates, loves MLB and NCAA Football, and when he gets tired of hexadecimal, he goes home to hang out with his wife and kid.

More Posts - Twitter

Microsoft Attempting to Assassinate Google?

May 21st, 2009 | Posted by Brett Edgar in Microsoft - (0 Comments)

Microsoft appears set to display a new version of its search engine early next week.  The boys in Redmond have been scratching their heads trying to compete with the behemoth that is Google for the past few years.  Looks like this may be their latest attempt at assassination.

Sometimes I feel bad for Microsoft.  They have to compete with both Google and Apple.  Then I remember all the unfair things Microsoft has done to stifle competition in the past and I stop feeling bad.

Brett Edgar

Brett Edgar

Brett is a Founder and the Director of Managed Security Services at TRUE. He has been working in the system and network forensics field since graduating from the University of Tulsa with a B.S. Computer Science in 2003. He speaks hexadecimal fluently and is TRUE's resident human Ethernet transceiver. He holds CISSP, CSSLP, and CNSS 4011-4015 certificates, loves MLB and NCAA Football, and when he gets tired of hexadecimal, he goes home to hang out with his wife and kid.

More Posts - Twitter

, ,

Microsoft Opens Its Protocols

February 27th, 2008 | Posted by Michael Oglesby in Microsoft | Windows - (0 Comments)

Last week, in a surprise move, Microsoft announced Open Access to Protocol Documentation[microsoft.com]. Microsoft is releasing their protocol technical specifications for interoperability with Windows Vista, Windows Server 2008, Exchange, and others. This means third party and open source software will be able to “talk” directly with Windows components that had previously been closed to them. This is quite a change for Microsoft, who until now kept their protocols propriety, forcing vendors to reverse-engineer the protocols. This should result in greater support between open source products and Windows. I hope other companies follow Microsoft’s lead.

Michael Oglesby

Michael Oglesby

The Director of Tactical Security Services at TRUE, Michael specializes in security testing initiatives with vast network and application security assessment experience. He oversees a team of analysts in conducting SAST- and DAST-based services. Certifications include CISSP, CSSLP, QSA and CNSS 4011-4015. He is also the Verizon 2010 Data Breach Investigation Report Cover Challenge Winner and second place finisher in the 2011 competition.

More Posts - Twitter

,