http://www.digwin.com/cat/Security/hot Microsoft Top news, Buzz & Breaking Stories by communities en http://www.digwin.com/introducing-the-infosec-assessment-protection-suite InfoSec Assessment & Protection (A&P) Suite . Its a suite made up of protection and assessment tools which include: Web Protection Library (WPL) - an umbrella for several libraries and runtime modules including the Microsoft Anti-Cross Site Scripting Library v3.1 (Anti-XSS V3.1) and Security Runtime Engine (SRE), packaged together with Anti-XSS http://www.digwin.com/ms09064-critical-vulnerability-in-license-logging-server-could-allow-remote-code-execu Severity Rating: Critical - Revision Note: V1.0 (November 10, 2009): Bulletin published.Summary: This security update resolves a privately reported vulnerability in Microsoft Windows 2000. The vulnerability could allow remote code execution if an attacker sent a specially crafted network message to a computer running the License Logging Server. An http://www.digwin.com/a-peek-at-msrt-november-threat-reports By continuing to include new variants of the existing threat families, the MSRT has removed malware from more than 1.5 million machines three days after its release on 10 November. This month weve also added to the MSRT detection and have removed these new rogues from more than 110,000 machines. A lot of the top threat families are no strangers if http://www.digwin.com/branchcache-and-tmg-interoperability “…There are two main scenarios for the interoperability of Forefront TMG and BranchCache: Forefront TMG and BranchCache are deployed on the same host. For a description of this scenario, see Forefront TMG and BranchCache Hosted Cache deployed on the same host. Forefront TMG or ISA 2006 are used as the network gateway to the corporate network, and http://www.digwin.com/forefront-tmg-rtm-overview-interview With the RTM of Forefront Threat Management Gateway (TMG), David Cross tells us about what's new and gives some real-world examples of how Microsoft IT has benefited from TMG over ISA 2006.  He also discusses the following: Why TMG only utilizes Microsoft signatures with the GAPA / NIS capab. more... http://www.digwin.com/event-sans-appsec-2010-training-conference-in-san-francisco-this-january Check out the 7 different courses that address the actual problems application developers and programmers face every day, including Developer 320: Introduction to the Microsoft Security Development Lifecycle (SDL). SANS is a member of the SDL Pro Network and also the largest trusted resource for security training and certifications in the http://www.digwin.com/avast-antivirus-aswrdrsys-driver-local-privilege-escalation-vulnerability Avast! Antivirus is prone to a local privilege-escalation vulnerability. Local attackers can exploit this issue to execute arbitrary code with superuser privileges and completely compromise the affected computer. Failed exploit attempts will result in a denial-of-service condition. Go here to see the original: http://www.digwin.com/malware-writers-feeding-on-twilight-mania Online scammers get their teeth into unsuspecting victims Growing interest about the Twilight vampire series is making life risky for fans seeking information online, experts have warned. Security firm PC Tools documented a growing number of attacks and scams related to the popular book and movie series. The company expects such attacks to http://www.digwin.com/rogue-security-software-still-top-threat “…REDMOND, Wash. — Nov. 2, 2009 — Microsoft Corp. today released the seventh volume of the Microsoft Security Intelligence Report (SIRv7), which indicates that worm infections in the enterprise rose by nearly 100 percent during the first half of 2009 over the preceding six months. Rogue security software remains a major threat to customers; however, http://www.digwin.com/directaccess-design-and-deployment-guides “This document contains both the Design Guide and the Deployment Guide for DirectAccess in Windows Server 2008 R2. These guides help you to design and deploy DirectAccess servers, DirectAccess clients, and infrastructure servers on your intranet. Use the Design Guide to answer the “What,” “Why,” and “When” questions a deployment design team mi http://www.digwin.com/windows-server-2008-r2-updates-to-security-monitoring “…There are a number of auditing enhancements in Windows Server 2008 R2 and Windows 7 that increase the level of detail in security auditing logs and simplify the deployment and management of auditing policies. These enhancements include: Global Object Access Auditing. In Windows Server 2008 R2 and Windows 7, administrators can define comp http://www.digwin.com/forefront-online-protection-for-exchange-fope-documentation If you’re interest in Forefront Online Protection for Exchange (FOPE), aka Forefront Online Security for Exchange (FOSE), ex-Exchange Hosted Filtering (EHF), you may find the following downloads interesting: Setup Checklists: Microsoft Forefront Online Protection for Exchange and Exchange Hosted Archive 9.2 - Use the following setup checklists to he http://www.digwin.com/nsa-dod-working-in-partership-with-microsoft-to-develop-windows- “Working in partnership with Microsoft and (the Department of Defense), NSA leveraged our unique expertise and operational knowledge of system threats and vulnerabilities to enhance Microsoft’s operating system security guide without … More here: NSA, DoD working in ‘partership’ with Microsoft to develop Windows … http://www.digwin.com/appwrap-in-uag-whats-new AppWrap (Application Wrapper) is an IAG and UAG XML configuration file that enables manipulating HTTP responses on their way back from the backend web server to the client. In IAG 2007, approximately 30 such files existed, since each AppWrap file was used for a different type of single-application trunk (for example, one AppWrap file was used for a http://www.digwin.com/ms09063-critical-vulnerability-in-web-services-on-devices-api-could-allow-remote-code- Severity Rating: Critical - Revision Note: V1.0 (November 10, 2009): Bulletin published.Summary: This security update resolves a privately reported vulnerability in the Web Services on Devices Application Programming Interface (WSDAPI) on the Windows operating system. The vulnerability could allow remote code execution if an affected Windows system http://www.digwin.com/whats-another-32bits-to-malware The migration of PC computing from 32-bit to 64-bit is in full swing at last, and if youve been confused as to what it all means, youre not alone. PCs built for years now have been capable of running both 32-bit and 64-bit operating systems, but for that you need 64-bit version of Windows (and corresponding drivers for devices), and getting http://www.digwin.com/how-to-configure-wpl-v10-sre Save to save the configuration. The following sections are added to the configuration file. Once the configuration is in place, ASP.NET will now try to resolve the httpModules defined in the configuration. In case of 64-bit windows Go to %ProgramFiles(x86)%\Microsoft Information Security\Web Protection Library v1.0\SecurityRuntimeEngine or 32-bit http://www.digwin.com/uag-and-directaccess-and-client-management When you see demonstrations of DirectAccess, the bulk of the presentation always seems to be related to how cool and convenient it is for the users to connect to corporate network resources. Indeed, it is cool! The user doesn’t even need to log on to connect to the corpnet – all he has to do is start the computer. more... http://www.digwin.com/customizing-the-mobile-device-xhtml-fba-page-to-allow-password-change-0 What a coincidence! Someone asked on the Web boards the other day about how to enable password changes on the Web boards. I thought this was an interesting question and put it on my list to find out how to do this. more... http://www.digwin.com/seesmic-moving-to-windows-platform-announces-seesmic-for-windows During this morning’s keynote at PDC09 – Seesmic Founder Loic Le Meur joined Ray Ozzie on stage to make a very important announcement regarding the future of Seesmic. Seesmic focuses on bringing many of your favorite social networking services like Twitter and Facebook together into a single application so you don’t have to bounce between those