Lucene search
K
MsrcMost viewed

1366 matches found

MSRC
MSRC
added 2018/09/11 7:0 a.m.9 views

2018 年 9 月のセキュリティ更新プログラム (月例)

2018 年 9 月 12 日 日本時間、マイクロソフトは以下のソフトウェアのセキュリティ更新プログラムを公開しまし...

0.3AI score
Exploits0
MSRC
MSRC
added 2018/08/14 7:0 a.m.9 views

2018 年 8 月のセキュリティ更新プログラム (月例)

2018 年 8 月 15 日 日本時間、マイクロソフトは以下のソフトウェアのセキュリティ更新プログラムを公開しまし...

0.3AI score
Exploits0
MSRC
MSRC
added 2018/06/21 7:0 a.m.9 views

Announcing Changes to Microsoft’s Mitigation Bypass Bounty

Today we’re announcing a change to the Mitigation Bypass Bounty that removes Control Flow Guard CFG from the set of in-scope mitigations. In this blog, we’ll provide additional background and explain why we’re making this change. Mitigation Bypass Bounty Background Mitigation Bypass Bounty...

1.2AI score
Exploits0
MSRC
MSRC
added 2018/05/08 7:0 a.m.9 views

2018 年 5 月のセキュリティ更新プログラム (月例)

2018 年 5 月 9 日 日本時間、マイクロソフトは以下のソフトウェアのセキュリティ更新プログラムを公開しまし...

0.3AI score
Exploits0
MSRC
MSRC
added 2018/04/04 7:0 a.m.9 views

Triaging a DLL planting vulnerability

DLL planting aka binary planting/hijacking/preloading resurface every now and then, it is not always clear on how Microsoft will respond to the report. This blog post will try to clarify the parameters considered while triaging DLL planting issues. It is well known that when an application loads ...

6.8AI score
Exploits0
MSRC
MSRC
added 2018/04/04 7:0 a.m.9 views

Triaging a DLL planting vulnerability

DLL planting aka binary planting/hijacking/preloading resurface every now and then, it is not always clear on how Microsoft will respond to the report. This blog post will try to clarify the parameters considered while triaging DLL planting issues. It is well known that when an application loads ...

2.2AI score
Exploits0
MSRC
MSRC
added 2018/03/13 7:0 a.m.9 views

March 2018 security update release

Today, we released security updates to provide additional protections against malicious attackers. By default, Windows 10 receives these updates automatically, and for customers running previous versions, we recommend they turn on automatic updates as a best practice. More information about this...

7AI score
Exploits0
MSRC
MSRC
added 2018/01/09 8:0 a.m.9 views

2018 年 1 月のセキュリティ更新プログラム (月例)

2018 年 1 月 10 日 日本時間、マイクロソフトは以下のソフトウェアのセキュリティ更新プログラムを公開しまし...

0.3AI score
Exploits0
MSRC
MSRC
added 2017/11/14 8:0 a.m.9 views

November 2017 security update release

Today, we released security updates to provide additional protections against malicious attackers. By default, Windows 10 receives these updates automatically, and for customers running previous versions, we recommend they turn on automatic updates as a best practice. More information about this...

7AI score
Exploits0
MSRC
MSRC
added 2017/10/10 7:0 a.m.9 views

October 2017 security update release

Today, we released security updates to provide additional protections against malicious attackers. By default, Windows 10 receives these updates automatically, and for customers running previous versions, we recommend they turn on automatic updates as a best practice. More information about this...

2.3AI score
Exploits0
MSRC
MSRC
added 2017/09/25 7:0 a.m.9 views

Microsoft Office に関する報奨金プログラムの延長

本記事は、Microsoft Security Response Center のブログ “Extending the Microsoft Office Bounty Program” 2017 年 9 月 15 日 米...

1.1AI score
Exploits0
MSRC
MSRC
added 2017/09/14 7:0 a.m.9 views

EMET II のさらに先へ - Windows Defender Exploit Guard

本記事は、Security Research & Defense のブログ "Moving Beyond EMET II – Windows Defender Exploit Guard" 2017 年 8 月 9 日 米国時間公開 を翻訳したもので...

2AI score
Exploits0
MSRC
MSRC
added 2017/09/12 7:0 a.m.9 views

EMET は Windows 10 Defender Exploitation Guard へ統合されます

こんにちは、垣内ゆりかです。 本ブログでも、たびたび取り上げてきました 脆弱性緩和ツール Enhanced Mitigation Experience Toolkit EMET 。 EMET は...

2.4AI score
Exploits0
MSRC
MSRC
added 2017/09/01 7:0 a.m.9 views

Announcing the BlueHat v17 Schedule

September is here! The dash from the close of the call for papers to now has been amazing. We had nearly two hundred submissions spanning the gamut of security topics and presenters. The result is a solid schedule that will challenge and educate all attendees. On behalf of the content advisory...

6.9AI score
Exploits0
MSRC
MSRC
added 2017/08/08 7:0 a.m.9 views

August 2017 security update release

Today, we released security updates to provide additional protections against malicious attackers. By default, Windows 10 receives these updates automatically, and for customers running previous versions, we recommend they turn on automatic updates as a best practice. More information about this...

6.8AI score
Exploits0
MSRC
MSRC
added 2017/07/11 7:0 a.m.9 views

2017 年 7 月のセキュリティ更新プログラム (月例)

2017 年 7 月 12 日 日本時間、マイクロソフトは以下のソフトウェアのセキュリティ更新プログラムを公開しまし...

0.3AI score
Exploits0
MSRC
MSRC
added 2017/07/11 7:0 a.m.9 views

[IT 管理者向け] TLS 1.2 への移行を推奨しています

こんにちは、垣内由梨香です データを暗号化し安全にやり取りを行う Transport Layer Security TLS。TLS は利用しているが、詳細なバージョンまでは把握してない、そんな方も多いのではないでしょうか?暗号プロトコルは「使ってさえいれば安全」ではありません。現在の脅威に対応できるバージョンのみを利用しリスクを下げることが重要です。 マイクロソフトでは、より安全な TLS 1.2 へ移行していくことを推奨しています。 2020/9/7 追記 各製品、サービスにおける TLS 1.0/1.1 の廃止予定については、次の情報を参考にしてください。 TLS 1.0 and 1...

7.4AI score
Exploits0
MSRC
MSRC
added 2017/06/26 7:0 a.m.9 views

Microsoft Edge に関する報奨金プログラムの拡張

本記事は、Microsoft Security Response Center のブログ “Extending the Microsoft Edge Bounty Program” 2017 年 6 月 21 日 米...

0.7AI score
Exploits0
MSRC
MSRC
added 2017/06/22 7:0 a.m.9 views

進化したウイルス対策

本記事は、 Microsoft Malware Protection Center のブログ “Antivirus evolved” 2017 年 5 月 8 日 米国時間公開 を翻訳したも...

2.1AI score
Exploits0
MSRC
MSRC
added 2017/05/09 7:0 a.m.9 views

2017 年 5 月のセキュリティ更新プログラム (月例)

2017 年 5 月 10 日 日本時間、マイクロソフトは以下のソフトウェアのセキュリティ更新プログラムを公開しまし...

0.3AI score
Exploits0
MSRC
MSRC
added 2017/05/09 7:0 a.m.9 views

May 2017 security update release

Today, we released security updates to provide additional protections against malicious attackers. By default, Windows 10 receives these updates automatically, and for customers running previous versions, we recommend they turn on automatic updates as a best practice. More information about this...

2.6AI score
Exploits0
MSRC
MSRC
added 2017/04/21 7:0 a.m.9 views

Taking your feedback on the Security Update Guide

The Security Update Guide has been in public preview since November 2016. This month marked our first release when security update information was published entirely in the new format. Over the last few months, customers and partners have provided a lot of feedback on the direction and...

6.8AI score
Exploits0
MSRC
MSRC
added 2017/04/11 7:0 a.m.9 views

2017 年 4 月のセキュリティ更新プログラム (月例)

2017 年 4 月 12 日 日本時間、マイクロソフトは以下のソフトウェアのセキュリティ更新プログラムを公開しまし...

0.3AI score
Exploits0
MSRC
MSRC
added 2017/03/01 8:0 a.m.9 views

Office 365 security researchers: Double your bounties March-May 2017

Microsoft strives to protect our customers and we’re constantly improving our security posture to meet their needs. We realize the desire of researchers and customers to security test our services to ensure they can trust us and our solutions. We also believe that if a researcher informs us of a...

2.5AI score
Exploits0
MSRC
MSRC
added 2017/02/21 8:0 a.m.9 views

Adobe Flash Player security vulnerability release

Today, we released an Adobe Flash Player security update to provide additional protections against malicious attackers. As a best practice, we encourage customers to turn on automatic updates. More information about these updates can be found on the Security Update Guide. MSRC team...

6.7AI score
Exploits0
MSRC
MSRC
added 2016/11/01 7:0 a.m.9 views

BlueHat v16 Keynote announced

Microsoft is excited to announce David Kennedy, CEO of TrustedSec and Binary Defense Systems, as the BlueHat v16 keynote speaker. David is a well-known speaker from the community, a published author, and the founder of the DerbyCon Security Conference. His keynote, entitled “The Security Monty...

6.9AI score
Exploits0
MSRC
MSRC
added 2016/10/11 7:0 a.m.9 views

October 2016 security update release

Today we released security updates to provide additional protections against malicious attackers. As a best practice, we encourage customers to apply security updates as soon as they are released. More information about this month’s security updates and advisories can be found in the Security...

6.7AI score
Exploits0
MSRC
MSRC
added 2016/08/09 7:0 a.m.9 views

August 2016 security update release

Today we released security updates to provide additional protections against malicious attackers. As a best practice, we encourage customers to apply security updates as soon as they are released. More information about this month’s security updates and advisories can be found in the Security...

6.7AI score
Exploits0
MSRC
MSRC
added 2016/07/12 7:0 a.m.9 views

July 2016 security update release

Today we released security updates to provide additional protections against malicious attackers. As a best practice, we encourage customers to apply security updates as soon as they are released. More information about this month’s security updates and advisories can be found in the Security...

6.7AI score
Exploits0
MSRC
MSRC
added 2016/06/07 7:0 a.m.9 views

Microsoft Bounty Program expansion - .NET Core and ASP.NET RC2 Beta Bounty

Today I have another exciting expansion of the Microsoft Bounty Program. Please visit https://aka.ms/BugBounty to find out more. As we approach release for .NET Core and ASP.NET, we would like to get even more feedback from the security research community. We are offering a bounty on the .NET Cor...

6.9AI score
Exploits0
MSRC
MSRC
added 2016/04/29 7:0 a.m.9 views

Changes to Security Update Links

Updates have historically been published on both the Microsoft Download Center and the Microsoft Update Catalog and Security Bulletins linked directly to update packages on the Microsoft Download Center. Some updates will no longer be available from the Microsoft Download Center. Security bulleti...

6.9AI score
Exploits0
MSRC
MSRC
added 2015/11/18 8:0 a.m.9 views

BlueHat v15 Announces Schedule and Registration

As we inch closer to the 15th BlueHat Security Conference, we are happy to announce the lineup of speakers and topics for this event. This year will continue with a solid speaker and topic selection that engage engineers, executives, and invited guests to discuss and tackle some of the hardest...

6.9AI score
Exploits0
MSRC
MSRC
added 2015/10/13 7:0 a.m.9 views

October 2015 Security Update Release Summary

Today we released security updates to provide protections against malicious attackers. As a best practice, we encourage customers to apply security updates as soon as they are released. More information about this month’s security updates and advisories can be found in the Security TechNet Librar...

6.7AI score
Exploits0
MSRC
MSRC
added 2015/08/11 7:0 a.m.9 views

August 2015 Security Update Release Summary

Today we released security updates to provide protections against malicious attackers. As a best practice, we encourage customers to apply security updates as soon as they are released. More information about this month’s security updates and advisories can be found in the Security TechNet Librar...

6.7AI score
Exploits0
MSRC
MSRC
added 2015/06/09 7:0 a.m.9 views

June 2015 Updates

Today, as part of Update Tuesday, we released 8 security bulletins. We encourage customers to apply all of these updates. For more information about this month’s security updates, including the detailed view of the Exploitability Index XI, visit the Microsoft Bulletin Summary webpage. If you are...

6.7AI score
Exploits0
MSRC
MSRC
added 2015/01/08 8:0 a.m.9 views

Evolving Microsoft's Advance Notification Service in 2015

Our Advance Notification Service ANS was created more than a decade ago as part of Update Tuesday to broadly communicate in advance, about the security updates being released for Microsoft products and services each month. Over the years, technology environments and customer needs have evolved,...

6.7AI score
Exploits0
MSRC
MSRC
added 2014/12/04 8:0 a.m.9 views

Advance Notification Service for the December 2014 Security Bulletin Release

Today, we provide advance notificationfor the release of seven Security Bulletins. Three of these updates are rated Critical and four are rated as Important in severity. These updates are for Microsoft Windows, Internet Explorer IE, Office and Exchange. As per our monthly process, we’ve scheduled...

7AI score
Exploits0
MSRC
MSRC
added 2014/10/14 7:0 a.m.9 views

October 2014 Updates

Today, as part of Update Tuesday, we released eight securityupdates – three rated Critical and five rated Important - to address 24 Common Vulnerabilities & Exposures CVEs in Windows, Office, .NET Framework, .ASP.NET, and Internet Explorer IE. We encourage you to apply all of these updates, but f...

7.2AI score
Exploits0
MSRC
MSRC
added 2014/08/12 7:0 a.m.9 views

Assessing risk for the August 2014 security updates

Today we released nine security bulletins addressing 37 unique CVE’s. Two bulletins have a maximum severity rating of Critical while the other seven have a maximum severity rating of Important. This table is designed to help you prioritize the deployment of updates appropriately for your...

7AI score
Exploits0
MSRC
MSRC
added 2014/07/31 7:0 a.m.9 views

Announcing EMET 5.0

Today, we are excited to announce the general availability of the Enhanced Mitigation Experience Toolkit EMET 5.0. As many of you already know, EMET is a free tool, designed to help customers with their defense in depth strategies against cyberattacks, by helping detect and block exploitation...

7.2AI score
Exploits0
MSRC
MSRC
added 2014/05/28 7:0 a.m.9 views

Meet myBulletins: an online security bulletin customization service

Microsoft is committed to promoting a safer, more trusted Internet and providing monthly security updates is one of the ways our customers keep their devices and connections to the Internet more secure. Packaging updates together into a monthly bulletin cycle stems from customer feedback and offe...

6.9AI score
Exploits0
MSRC
MSRC
added 2014/05/16 7:0 a.m.9 views

May 2014 Security Bulletin Webcast and Q&A

Today we published the May 2014 Security Bulletin Webcast Questions & Answers page. We answered 17 questions in total, with the majority focusing on the update for SharePoint MS14-022, Group Policy MS14-025 and Internet Explorer MS14-029. Here is the video replay: We invite you to join us for the...

7.2AI score
Exploits0
MSRC
MSRC
added 2014/05/13 7:0 a.m.9 views

The May 2014 Security Updates

Today, we released eight security bulletins – two rated Critical and six rated Important – to address 13 Common Vulnerability & Exposures CVEs in .NET Framework, Office, SharePoint, Internet Explorer, and Windows. We encourage you to apply all of these updates, but for those who need to prioritiz...

7.3AI score
Exploits0
MSRC
MSRC
added 2014/05/13 7:0 a.m.9 views

Assessing risk for the May 2014 security updates

Today we released eight security bulletins addressing 13 unique CVE’s. Two bulletins have a maximum severity rating of Critical while the other six have a maximum severity rating of Important. The table is designed to help you prioritize the deployment of updates appropriately for your environmen...

7AI score
Exploits0
MSRC
MSRC
added 2014/04/30 7:0 a.m.9 views

Protection strategies for the Security Advisory 2963983 IE 0day

We’ve received a number of customer inquiries about the workaround steps documented in Security Advisory 2963983 published on Saturday evening. We hope this blog post answers those questions. Steps you can take to stay safe The security advisory lists several options customers can take to stay...

6.8AI score
Exploits0
MSRC
MSRC
added 2014/04/11 7:0 a.m.9 views

April 2014 Security Bulletin Webcast and Q&A

Today we published the April 2013 Security Bulletin Webcast Questions & Answers page. We answered 13 questions in total, with the majority focusing on the update for Internet Explorer MS14-018 and the Windows 8.1 Update KB2919355. Two questions that were not answered on air have been included on...

7.5AI score
Exploits0
MSRC
MSRC
added 2014/04/03 7:0 a.m.9 views

Advance Notification Service for the April 2014 Security Bulletin Release

Today we provide advance notification for the release of four bulletins, two rated Critical and two rated Important in severity. These updates address issues in Microsoft Windows, Office and Internet Explorer. The update provided through MS14-017 fully addresses the Microsoft Word issue first...

6.8AI score
Exploits0
MSRC
MSRC
added 2014/03/17 7:0 a.m.9 views

March 2014 Security Bulletin Webcast and Q&A

Today we published the March 2014 Security Bulletin Webcast Questions & Answers page. We answered eight questions in total, with the majority focusing on the updates for Windows MS14-016 and Internet Explorer MS14-012. One question that was not answered on air has been included on the Q&A page...

7.3AI score
Exploits0
MSRC
MSRC
added 2014/02/25 8:0 a.m.9 views

Announcing EMET 5.0 Technical Preview

Today, we are thrilled to announce a preview release of the next version of the Enhanced Mitigation Experience Toolkit, better known as EMET. You can download EMET 5.0 Technical Preview here. This Technical Preview introduces new features and enhancements that we expect to be key components of th...

6.9AI score
Exploits0
MSRC
MSRC
added 2014/01/14 8:0 a.m.9 views

Assessing risk for the January 2014 security updates

Today we released four security bulletins addressing six CVE’s. All four bulletins have a maximum severity rating of Important. We hope that the table below helps you prioritize the deployment of the updates appropriately for your environment. Bulletin Most likely attack vector Max Bulletin...

7.2AI score
Exploits0
Total number of security vulnerabilities1366