Security Management Strategies for the CIOEmail Alerts
-
Quiz: Security-related enhancements in Windows Server 2008
Test your knowledge of Beth Quinlan's Windows Server 2008 lesson. Quiz
-
Quiz: Intrusion defense in the era of Windows Vista
A five-question multiple-choice quiz to test your understanding of the content presented by expert Peter H. Gregory in this lesson of SearchSecurity.com's Intrusion Defense School. Security School
-
Windows IIS server hardening checklist
Use this checklist on the job to secure your IIS server. Security School
-
Quiz: Securing Microsoft Exchange
A five-question multiple-choice quiz to test your understanding of the content presented in this lesson of SearchSecurity.com's Messaging Security School. Messaging Security School
-
Authenticating Windows
Three options for Windows authentication with eSSO clients. Information Security maga
-
Web Security School Final Exam Answers
Take this final exam to assess your knowledge of Web Security. Security Quiz Answer
-
SAP Security Learning Guide
This guide pulls SAP security information from both SearchSecurity.com and its sister site, SearchSAP.com, to provide the most comprehensive resource around for all aspects of making your SAP system bulletproof. Learning Guide
-
Incident response process brings ROI and peace of mind
In this excerpt of Chapter 2 from ISACA's Cybercrime: Incident Response and Digital Forensics, author Robert Schperberg looks at the benefits of instituting an incident response process. Reprint
-
Security support from MOM
Learn how Microsoft Operations Manager supports security in this excerpt from "Hacking Exposed Windows Server 2003." Book Chapter
-
RootkitRevealer turns root kits' tactics back at them
A contributor reviews freeware RootkitRevealer from Sysinternals. Review
- See More: Essential Knowledge on Windows Security: Alerts, Updates and Best Practices
-
Microsoft: Windows Vista infections outpace Windows XP
A security update addressing the Windows Autorun feature was likely a factor in driving down the infection rate in Windows XP, Microsoft said. News | 09 May 2012
-
May 2012 Patch Tuesday: Microsoft fixes Duqu Trojan ghost code
Experts suggest patience when dealing with this month’s round of Microsoft updates. News | 08 May 2012
-
Adobe pushes patch for actively exploited Flash Player vulnerability
Adobe is addressing a zero-day flaw in Flash Player being used by cybercriminals in email attacks targeting Internet Explorer users. News | 04 May 2012
-
Microsoft program breach led to early RDP vulnerability exploit
Microsoft said a member of its confidential Active Protections Program leaked information that prompted an exploit targeting a flaw patched in March. News | 03 May 2012
-
Microsoft to fix 23 vulnerabilities in May 2012 Patch Tuesday
Microsoft said it plans to address flaws in Windows, Office, Silverlight and the .NET Framework. News | 03 May 2012
-
Microsoft April 2012 Patch Tuesday repairs critical IE flaws, ActiveX control issue
Microsoft repaired 11 vulnerabilities in April, including a critical update to its Internet Explorer browser and an ActiveX fix that affects a variety of software and server systems. News | 10 Apr 2012
-
Attack code surfaces for Microsoft RDP vulnerabilities
Antimalware vendors say proof-of-concept exploit code has surfaced on several Chinese websites. Experts recommend patching Windows systems now. News | 16 Mar 2012
-
Dangerous Microsoft RDP vulnerabilities repaired in Patch Tuesday
Vulnerability experts call the Microsoft Remote Desktop Protocol flaws dangerous and say they should be quickly addressed by patching admins. News | 13 Mar 2012
-
Six bulletins, one critical, expected for March 2012 Patch Tuesday
Microsoft’s March bundle of updates repairs seven vulnerabilities, including a critical Windows flaw. News | 08 Mar 2012
-
February 2012 Patch Tuesday: Critical IE, Windows kernel flaws fixed
Flaws in Internet Explorer and the Windows C Runtime library could be used to gain access to system files and download additional malware onto a victim’s machine. News | 14 Feb 2012
- See More: News on Windows Security: Alerts, Updates and Best Practices
-
Windows 7 network security: Keys to a Windows 7 upgrade project plan
Ensure Windows 7 network security during your enterprise desktop upgrade with two essential elements for your Windows 7 upgrade project plan. Tip
-
Windows vs. Mac security: An enterprise endpoint security comparison
Expert Mike Chapple explores the security implications of running Macs on the corporate network in a side-by-side comparison of Windows vs. Mac security. Tip
-
Call to action: Is now the time to upgrade from Windows XP to 7?
A disproportionate percentage of PCs infected with rootkits are running Windows XP. Does the upgrade from Windows XP to 7 need to happen now? Tip
-
Assessing Internet Explorer 9 security: Safest browser ever?
Research shows Internet Explorer 9 security identifies as much as 99% of potential malware. So is IE9 now the safest browser out there? Michael Cobb answers that question in this expert tip. Tip
-
A primer for user privilege management in Windows Server 2008
Privilege management can be a troublesome endeavor, but Windows Server 2008 introduces a multi-level privilege attribute system with better limits for standard users. Expert Randall Gamby explains the options in Windows Server 2008 for user privilege... Tip
-
Microsoft IIS 7 security best practices
Are you up to date with Microsoft IIS security best practices? Don't allow your enterprise to become vulnerable. Tip
-
A pre-implementation Windows 7 security guide for enterprises
Many enterprises are preparing to upgrade to Windows 7, but what are the security advantages and implications of the move? Expert Michael Cobb has the answers. Tip
-
Windows Firewall with Advanced Security beefs up Windows 7 security
Windows Firewall with Advanced Security extends security to Windows 7 and Windows Server 2008 end users. Tip
-
Automating Microsoft Windows patch management with WSUS
Microsoft offers Windows Server Update Services (WSUS) as a free download, but there are installation and agent-related issues to contend with. Tip
-
Free Windows security tools every admin must have
Believe it or not, there's more to life than Sysinternals. Check out some of the best free security tools from third-parties for Windows server administration. Tip
- See More: Tips on Windows Security: Alerts, Updates and Best Practices
-
BIOS management best practices: BIOS patches and BIOS updates
Amid growing concern over BIOS threats, expert Mike Cobb discusses how organizations should manage BIOS patches and BIOS updates. Answer
-
Service Pack 1 for Windows 7: What you need to know
Michael Cobb explains why Service Pack 1 for Windows 7 is different than service packs in the past. Answer
-
Microsoft security check: Is a Redmond Internet health check viable?
While it would be nice to check every computer for malware before allowing it on the Internet, expert Nick Lewis details why this is problematic. Answer
-
Zero-day attack protection for Microsoft Graphics Rendering Engine
How vulnerable is the Windows Graphics Rendering Engine, and how should companies address recent zero-day attacks? Learn more in this expert response. Answer
-
Computer hijacking: Protecting against the Microsoft DLL download flaw
If exploited, the Microsoft DLL load-hijacking flaw could allow attackers to execute arbitrary code on machines. In this expert response, Nick Lewis explains how to protect against this vulnerability. Ask the Expert
-
With EMET, Microsoft ranges beyond mitigation security technology
The Enhanced Mitigation Experience Toolkit is designed to help improve your enterprise application security. See how the EMET toolkit can help protect older Windows systems. Ask the Expert
-
What is DLL? It's more than a new and improved .EXE file
You see the term dynamic-link libraries a lot, but what is DLL and is it secure? Ask the Expert
-
Windows Server 2008 migration: Is it essential?
While many experts say the Windows Server 2008 operating system is Microsoft's most secure OS yet, expert Michael Cobb explains why a migration may not be essential for all companies. Ask the Expert
-
Security for Windows XP: Knowing when to update a Windows version
Is Windows XP still secure enough for enterprise use, or should infosec pros be updating to more secure Windows versions as soon as possible? Threats expert Nick Lewis weighs in. Ask the Expert
-
Why it's important to turn on DEP and ASLR Windows security features
In the quest for application security, many developers are disabling or incorrectly implementing two important Windows security features. In this expert response, Michael Cobb explains why ASLR and DEP should always be turned on. Ask the Expert
- See More: Expert Advice on Windows Security: Alerts, Updates and Best Practices
-
principle of least privilege (POLP)
The principle of least privilege (POLP) is the practice of limiting access to the minimal level that will allow normal functioning. Applied to employees, the principle of least privilege translates to giving people the lowest level of user rights tha... Definition
-
BotHunter
BotHunter is a type of bot application that looks for other bots by tracking two-way communication flows between active software inside a private network and external entities... (Continued) Definition
-
trusted computing
Trusted computing is a broad term that refers to technologies and proposals for resolving computer security problems through hardware enhancements and associated software modifications... (Continued) Definition
-
security identifier (SID)
In Windows NT and 2000 operating systems, the security identifier (SID) is a unique alphanumeric character string that identifies each operating system and each user in a network of NT/2000 systems. Definition
-
Gartner’s Neil MacDonald on IE9 security, Apple security issues
In this video, Gartner’s Neil MacDonald discusses patch management, IE9 security, his Windows 8 security wish list and protecting Apple computers. Video
-
Using Windows 7 security features in your data protection program
Lisa Phifer discusses Windows 7 security features like AppLocker, User Access Controls, BitLocker and BitLockerToGo, Volume Shadow Copy and DirectAccess. Video
-
Adobe: Flash security and the Microsoft Active Protections Program
Brad Arkin discusses Adobe's strategy to secure Flash Player and its decision to join the Microsoft Active Protections Program. Video
-
Microsoft: Windows Vista infections outpace Windows XP
A security update addressing the Windows Autorun feature was likely a factor in driving down the infection rate in Windows XP, Microsoft said. News
-
May 2012 Patch Tuesday: Microsoft fixes Duqu Trojan ghost code
Experts suggest patience when dealing with this month’s round of Microsoft updates. News
-
Adobe pushes patch for actively exploited Flash Player vulnerability
Adobe is addressing a zero-day flaw in Flash Player being used by cybercriminals in email attacks targeting Internet Explorer users. News
-
Microsoft program breach led to early RDP vulnerability exploit
Microsoft said a member of its confidential Active Protections Program leaked information that prompted an exploit targeting a flaw patched in March. News
-
Microsoft to fix 23 vulnerabilities in May 2012 Patch Tuesday
Microsoft said it plans to address flaws in Windows, Office, Silverlight and the .NET Framework. News
-
Microsoft April 2012 Patch Tuesday repairs critical IE flaws, ActiveX control issue
Microsoft repaired 11 vulnerabilities in April, including a critical update to its Internet Explorer browser and an ActiveX fix that affects a variety of software and server systems. News
-
Attack code surfaces for Microsoft RDP vulnerabilities
Antimalware vendors say proof-of-concept exploit code has surfaced on several Chinese websites. Experts recommend patching Windows systems now. News
-
Dangerous Microsoft RDP vulnerabilities repaired in Patch Tuesday
Vulnerability experts call the Microsoft Remote Desktop Protocol flaws dangerous and say they should be quickly addressed by patching admins. News
-
Six bulletins, one critical, expected for March 2012 Patch Tuesday
Microsoft’s March bundle of updates repairs seven vulnerabilities, including a critical Windows flaw. News
-
February 2012 Patch Tuesday: Critical IE, Windows kernel flaws fixed
Flaws in Internet Explorer and the Windows C Runtime library could be used to gain access to system files and download additional malware onto a victim’s machine. News
- See More: All on Windows Security: Alerts, Updates and Best Practices
About Windows Security: Alerts, Updates and Best Practices
Having problems with Windows Vista and XP security? Get tips and tricks on how to repair problems and how to install security patches and updates. Advice is also offered on tools, threats, deployment, features and software.