Feeds Microsoft

Allgemeine Sicherheitsinformationen von Microsoft

  • Announcing the Top MSRC 2020 Q3 Security Researchers
    by Sylvie Liu on 15. Oktober 2020 at 16:00

    Following the MSRC’s 2020 Most Valuable Security Researchers announced during this year’s Black Hat, we’re excited to announce the top contributing researchers for the 2020 Third Quarter (Q3)! The top three researchers of the 2020 Q3 Security Researcher Leaderboard are: David Dworken (1800 points), Cameron Vincent (1780 points), and Yuki Chen (1380 points). Congratulations to … Announcing the Top MSRC 2020 Q3 Security Researchers Read More » The post Announcing the Top MSRC 2020 Q3 Security Researchers appeared first on Microsoft Security Response Center.

  • Security Analysis of CHERI ISA
    by MSRC Team on 14. Oktober 2020 at 19:30

    Is it possible to get to a state where memory safety issues would be deterministically mitigated? Our quest to mitigate memory corruption vulnerabilities led us to examine CHERI (Capability Hardware Enhanced RISC Instructions), which provides memory protection features against many exploited vulnerabilities, or in other words, an architectural solution that breaks exploits. We’ve looked at … Security Analysis of CHERI ISA Read More » The post Security Analysis of CHERI ISA appeared first on Microsoft Security Response Center.

  • Concluding the Azure Sphere Security Research Challenge, Microsoft Awards $374,300 to Global Security Research Community
    by Sylvie Liu on 6. Oktober 2020 at 15:59

    The Azure Sphere Security Research Challenge brought together 70 researchers from 21 countries to help secure Azure Sphere customers and expand Microsoft’s partnerships with the global IoT security research community. During the three-month Azure Sphere Security Research Challenge, researchers surfaced 20 Critical or Important severity security vulnerabilities, with Microsoft awarding $374,300 in bounty awards for … Concluding the Azure Sphere Security Research Challenge, Microsoft Awards $374,300 to Global Security Research Community Read More » The post Concluding the Azure Sphere Security Research Challenge, Microsoft Awards $374,300 to Global Security Research Community appeared first on Microsoft Security Response Center.

  • New and improved Security Update Guide!
    by msrc on 21. September 2020 at 22:24

    We’re excited to announce a significant update to the Security Update Guide, our one-stop site for information about all security updates provided by Microsoft. This new version will provide a more intuitive user experience to help protect our customers regardless of what Microsoft products or services they use in their environment. We’ve listened to your feedback and incorporated many … New and improved Security Update Guide! Read More » The post New and improved Security Update Guide! appeared first on Microsoft Security Response Center.

  • What to Expect When Reporting Vulnerabilities to Microsoft
    by MSRC Team on 21. September 2020 at 17:00

    At the Microsoft Security Response Center’s (MSRC), our primary mission is to help protect our customers. One of the ways we do this is by working with security researchers to discover security vulnerabilities in our services and products, and then making sure those that pose a threat to customers get fixed. Many researchers report these … What to Expect When Reporting Vulnerabilities to Microsoft Read More » The post What to Expect When Reporting Vulnerabilities to Microsoft appeared first on Microsoft Security Response Center.

  • Control Flow Guard for Clang/LLVM and Rust
    by MSRC Team on 17. August 2020 at 16:45

    As part of our ongoing efforts towards safer systems programming, we’re pleased to announce that Windows Control Flow Guard (CFG) support is now available in the Clang C/C++ compiler and Rust. What is Control Flow Guard? CFG is a platform security technology designed to enforce control flow integrity. It has been available since Windows 8.1 … Control Flow Guard for Clang/LLVM and Rust Read More » The post Control Flow Guard for Clang/LLVM and Rust appeared first on Microsoft Security Response Center.

  • Congratulations to the MSRC’s 2020 Most Valuable Security Researchers
    by Sylvie Liu on 5. August 2020 at 16:00

    Today we announce our Most Valuable Security Researchers for 2020! The MSRC Researcher Recognition program is an integral aspect of recognizing the ongoing partnerships with our community of talented security researchers who report through Coordinated Vulnerability Disclosure (CVD). These recognitions run throughout specific periods of the year and provide regular opportunities to recognize those who … Congratulations to the MSRC’s 2020 Most Valuable Security Researchers Read More » The post Congratulations to the MSRC’s 2020 Most Valuable Security Researchers appeared first on Microsoft Security Response Center.

  • Microsoft Bug Bounty Programs Year in Review: $13.7M in Rewards
    by Jarek Stanley on 4. August 2020 at 15:58

    Security researchers are a vital component of the cybersecurity ecosystem that safeguards every facet of digital life and commerce. The researchers who devote time to uncovering and reporting security issues before adversaries can exploit them have earned our collective respect and gratitude. The security landscape is constantly changing with emerging technology and new threats. By … Microsoft Bug Bounty Programs Year in Review: $13.7M in Rewards Read More » The post Microsoft Bug Bounty Programs Year in Review: $13.7M in Rewards appeared first on Microsoft Security Response Center.

  • Microsoft Joins Open Source Security Foundation
    by MSRC Team on 3. August 2020 at 16:00

    Microsoft has invested in the security of open source software for many years and today I’m excited to share that Microsoft is joining industry partners to create the Open Source Security Foundation (OpenSSF), a new cross-industry collaboration hosted at the Linux Foundation. The OpenSSF brings together work from the Linux Foundation-initiated Core Infrastructure Initiative (CII), … Microsoft Joins Open Source Security Foundation Read More » The post Microsoft Joins Open Source Security Foundation appeared first on Microsoft Security Response Center.

  • Black Hat 2020: See you in the Cloud!
    by MSRC Team on 30. Juli 2020 at 22:35

    It hardly feels like summer without the annual trip to Las Vegas for Black Hat USA. With this year’s event being totally cloud based, we won’t have the chance to catch up with security researchers, industry partners, and customers in person, an opportunity we look forward to every year. We’ll still be there though, and … Black Hat 2020: See you in the Cloud! Read More » The post Black Hat 2020: See you in the Cloud! appeared first on Microsoft Security Response Center.

  • Handle v4.22, NotMyFault v4.20, Process Explorer v16.25, Sysmon v10.1
    by Mark Russinovich on 15. Juni 2019 at 19:27

    Handle v4.22 This release of Handle fixes a race condition in the driver that could lead to a...

  • Sysmon v10.0, Autoruns v13.95, VMMap v3.26
    by Mark Russinovich on 12. Juni 2019 at 3:29

    Sysmon 10.0 This release of Sysmon adds DNS query logging, reports OriginalFileName in process...

  • Sysmon v9.0, Autoruns v13.94
    by Mark Russinovich on 19. Februar 2019 at 20:47

    Sysmon 9.0 Sysmon v9.0 introduces rule groups that enable the specification of AND or OR matching...

  • Autoruns v13.93, Handle v4.21, Process Explorer v16.22, SDelete v2.02, Sigcheck v2.71, Sysmon v8.02 and VMMap v3.25
    by Mark Russinovich on 9. Dezember 2018 at 22:58

    Autoruns 13.93 This Autoruns update fixes a bug that prevented UserInitMprLogonScript from being...

  • Sigcheck 2.70, BgInfo v4.26, and VMMap v3.22
    by Mark Russinovich on 21. Oktober 2018 at 13:08

    Sigcheck v2.70 Windows WinVerifyTrust function reports signed MSI files that have malware appended...

  • Sysmon v8.0, Autoruns v13.90
    by Mark Russinovich on 5. Juli 2018 at 23:33

    Sysmon v8.0 This update to Sysmon adds rule tagging, which results in tags appearing in event log...

  • RAMMap v1.51
    by Mark Russinovich on 1. Juni 2018 at 13:25

    RAMMap v1.51 This update to RAMMap fixes an incompatibility with the latest version of Windows 10.

  • Sysmon v7.03
    by Mark Russinovich on 14. Mai 2018 at 17:05

    Sysmon v7.03 This update to Sysmon fixes a service executable crash that could result from long...

  • Sysmon v7.02
    by Mark Russinovich on 30. April 2018 at 4:12

    Sysmon v7.02 This update to Sysmon, an advanced security logging service, fixes memory leaks in its...

  • Process Monitor v3.50, Autoruns v13.82, Du v1.61, SDelete v2.01
    by Mark Russinovich on 17. Februar 2018 at 15:28

    Process Monitor v3.50 Process Monitor now includes a /runtime switch to control headless capture...