Technology,Security,Software Review
Microsoft is working very hard to promote it’s Live Search across the globe to compete with Search leader Google. Recently Microsoft has started a contest in Canada called as “Big Ticket” to promote Live search in Canada.
YouSendIt has released a Microsoft office plug-in that allows Microsoft office users to directly send large files to their friends. This new Microsoft office plug-in allows Microsoft office users to send 2GB large files with few clicks. YouSendIt Microsoft office plug-in works only with Microsoft office 2003 and 2007. unfortunately there is no option available for Mac office users.
Microsoft has made available the SDL Threat modeling tool for download. SDL Threat modeling tool is very useful for software architects to identify and mitigate potential security issues in early phase of their software development life cycle. SDL Threat modeling tool is just not made for security professionals even non security professional can also create and analyze threat models. SDL Threat modeling tool integrates with bug tracking systems, integrating the threat modeling process into the standard development process.
Microsoft’s subscription based computing program will help more then 20 million people across the globe to have a personal computer or a laptop at their desk. Microsoft has started this started the Microsoft’s subscription based computing two and half years back after the launch of this program 2 millions computers are deployed across the globe. Microsoft has already partnered with more then 40 companies in 33 courtiers across the globe.
On November 18,2008 Microsoft has announced that, they are planning to offer a new consumer security offering focused on core anti-malware protection. This solution will be offer to consumers at no charge. Code-named “Morro,” this streamlined solution will be available in the second half of 2009 and will provide comprehensive protection from malware including viruses, spyware, rootkits and trojans. This new solution will be developed in such a way that it will use less computing resources and ideal for low-bandwidth scenarios. Microsoft also announced that it will discontinue retail sales of its Windows Live OneCare subscription service effective June 30, 2009.
On November 17, 2008 Microsoft announce the availability of Microsoft Exchange Online and Microsoft SharePoint Online for businesses of all sizes in the United States. This adds another product to growing Microsoft’s Software+services list. Microsoft has said that it plans to make available all of its enterprise software products as hosted services. As part of the Microsoft Online Services product family, Exchange Online and SharePoint Online are available separately or as a suite together with Office Live Meeting for conferencing, Microsoft Exchange Hosted Services and Microsoft Office Communications Online for instant messaging and presence.
Microsoft’s Malware protection website has published a list of 11 rouge antivirus programs that may harm your computer. All of these antivirus programs have different file names and directory structure but the purpose of all these program is same. some of Fake scan screen skins look similar to the Windows Security Center.
List of 11 Rouge Antivirus
Six month ago Microsoft has announced the last update for it’s SkyDrive. Now after six months they come up with a number of update in SkyDrive. SkyDrive is bringing the total of 25GB of online storage to live services. Besides the storage update their has been a lot of updates are also their for Live Services
More control over your online data: Now we can download our photos directly from Windows Live Photo Gallery. SkyDrive Folder now can be downloaded as a single .Zip file(available only in the United States, Denmark, and Ireland). Move files between SkyDrive folders and Copy files from multiple folders are some of the major improvements.
Photos rule!: Microsoft has added more then 20 new features improvements, and tweaks to make photos pop on SkyDrive. SkyDrive team has increased the size of SkyDrive photo thumbnails. Print photos directly from SkyDrive. A new online Slideshow is added, that work on any browser platform, but if you have Microsoft Silverlight installed you will get most out of it. Users can also use the people tag to tag their family and friends photographs.
Sharing should be easy: SkyDrive team has work very hard to improve the sharing in Live SkyDrive. Some of the features are
some of the other features that are included in this update
Microsoft has launched online stores in USA. According to Microsoft, these stores will help customers to get an easy way to purchase Microsoft software’s. Microsoft Store offers Microsoft’s entire consumer catalog, including desktop software, the Xbox console and its related game titles, the Microsoft Zune, and all of the company’s hardware, including mice, keyboards, web cameras, and joysticks. Along with a fast, secure buying experience, customers will enjoy an easy-to-use interface and useful product comparisons. Microsoft Store will price all its products at the manufacturer’s suggested retail price (MSRP).
On November 11, 2008 Microsoft has releases the security patch for MS08-068. Microsoft has taken more then seven and half years to patch a security vulnerability in their Windows operating system. According to Microsoft The vulnerability is rated Important on most operating systems, except Vista and Windows Server 2008 where it has a rating of Moderate.
Vulnerability in SMB Could Allow Remote Code Execution, Executive Summary
This security update resolves a publicly disclosed vulnerability in Microsoft Server Message Block (SMB) Protocol. The vulnerability could allow remote code execution on affected systems. An attacker who successfully exploited this vulnerability could install programs; view, change, or delete data; or create new accounts with full user rights. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.
This security update is rated Important for all supported editions of Microsoft Windows 2000, Windows XP, and Windows Server 2003, and Moderate for all supported editions of Windows Vista and Windows Server 2008. For more information, see the subsection, Affected and Non-Affected Software, in this section.
The security update addresses the vulnerability by modifying the way that SMB authentication replies are validated to prevent the replay of credentials. For more information about the vulnerability, see the Frequently Asked Questions (FAQ) subsection for the specific vulnerability entry under the next section, Vulnerability Information.
This vulnerability allows an attacker to redirect an incoming SMB connection back to the machine it came from and then access the victim machine using the victim’s own credentials. (Hence the term “credential reflection”). In typical Windows XP configurations where SMB sharing is enabled and the user is a member of the Administrators group, this allows the attacker to easily take over the machine. Public tools, including a Metasploit module, are available to perform this attack.
To do this attack attacker may use web browser or send and E-Mail to victim and when the web page or E-Mail message is open then it would try to connect to a server that is run by the attacker. After the successful connection with server, the machine will try to steal the network authentication credentials from the victim machines. These network authentication credentials can be used in future to gain access to the victims computer. In cases where the attacker is on the same network as the victim, even “trusted” websites can be leveraged to perform this attack – since network data can be modified before the victim receives it.
Microsoft mentioned that in all the cases the risk comes from machines on the internal network. It is still a good idea to block outbound SMB traffic, but if an attacker is already within the perimeter (or the user is on an untrusted network such as a public Wi-Fi hot-spot), there are mitigations which fall into these categories:
Disable File and Print sharing (assuming it is not needed on user’s machines).
Block inbound SMB connections using the Windows Firewall
Enable IPSec and require it on inbound SMB connections.
Enable SMB message signing. This can be enabled on select “high value” servers, or on all machines. (Note that there may be a substantial performance impact).
According to Microsoft this security flaw is moderate in Windows Vista and Windows Server 2008 operating system and important for Windows Server200,Windows XP, Windows Serve 2003 and earlier versions of Windows operating system.
