Microsoft has acquired PhoneFactor, a provider of two-factor authentication for mobile applications.
Microsoft released version 3.0 of its Enhanced Mitigation Experience Toolkit for Windows software on Tuesday.
Microsoft cloud users can monitor the security of their databases using SQL Azure Security Services, a monitoring service prototype released by SQL Azure Labs.
Initial fears by the Linux community that Microsoft's requirements for secure boot on Windows 8 machines would thwart Linux use appear to be half-correct.
Google is making inroads with its cloud-based suite of Google Apps. The company inked its largest deal to date with Banco Bilbao Vizcaya Argentaria (BBVA), the second-largest banking institution in Spain.
Microsoft released an out-of-band security bulletin on Friday aimed at patching all versions of the .NET Framework to prevent potential elevation of privilege attacks in ASP.NET-based Web sites.
Microsoft released a major update to Windows Intune, a PC management and security service aimed at mid-size organizations, that became publicly available in March.
Microsoft released its October Security Bulletin alerting users to eight patches, including a critical fix for .NET and Silverlight.
- By Jabulani Leffall
- 10/07/2011
Most fuzz-testing tools use the blackbox approach of throwing random inputs at a program without knowledge of the code. For the last two years, Microsoft has used a whitebox fuzz-testing method developed by Microsoft Research to reduce security flaws in its Windows x86 software.
The new head of the Microsoft Server and Tools Business, Satya Nadella, took the stage on Wednesday at the GigaOM Structure event to talk about Windows Azure and cloud computing adoption. Nadella spoke publicly about the company's strategy for the first time since replacing longtime Microsoft executive Bob Muglia in February.
French security group Vupen announced that vulnerabilities in the Google Chrome browser running on Windows allowed its researchers to bypass all security features, including the browser's sandbox mode.
Google Chrome has survived hacker contests for more than two years. Now a security firm claims it's found a zero-day exploit of Chrome running on Windows.
The May Security Bulletins address remote code execution vulnerabilities in Windows Server and Microsoft Office.
- By Jabulani Leffall
- 05/09/2011
Federal officials will act against Coreflood malware by sending commands that cause the botnet to remove itself, using the same network the perpetrators used to spread and update Coreflood.
In the wake of Amazon's cloud outages, Google on Friday disclosed more information about the physical security, data protection and reliability of its data centers.
In November Microsoft received authorization for its datacenters based on FISMA requirements. Now BPOS-Federal can be used in those datacenters.
The Coreflood botnet ring is believed to have been in operation for over 10 years, infecting approximately 2.3 million computers--1.86 million in the United States.
This month's patch includes critical fixes for the .NET Framework, scripting engines and other Microsoft Developer Tools.
- By Jabulani Leffall
- 04/14/2011
The March security patch, released on Tuesday, addresses four vulnerabilities related to remote code execution exploits in Windows and related applications.
- By Jabulani Leffall
- 03/11/2011
Cyber war has emerged as the hot topic at annual RSA Security Conference being held this week.
- By William Jackson
- 02/14/2011