No Image

Call for Papers | Microsoft BlueHat Shanghai 2019

2019-03-14 KENNETH 0

Call for Papers | Microsoft BlueHat Shanghai 2019 The Microsoft Security Response Center (MSRC) recently announced our first BlueHat security conference in Shanghai which will take place on May 29-30, 2019. After 15 years of BlueHat events in Redmond, Washington and Israel, we are thrilled to expand to a new location. We work with many talented security researchers throughout the Asia Pacific region to protect our shared online ecosystem, and we can’t wait to connect with them in person at BlueHat! BlueHat Shanghai will provide a fun, accessible venue for security researchers to come together and share innovative cybersecurity research and ideas. If you are a security researcherer or a security engineer, come join us! We are accepting CFP submissions through March 31, 2019. To submit a talk, please review the CFP information and complete the form via https://aka.ms/bhcfp. Topics [ more… ]

No Image

Practical advice for earning higher Microsoft bounty awards

2019-03-13 KENNETH 0

Practical advice for earning higher Microsoft bounty awards This year at the Nullcon International Security Conference I shared practical advice for how security researchers can maximize the impact of their security vulnerability submissions and earn higher bounty awards under the Microsoft Bounty Program. For those who couldn’t be there, I had two core pieces of advice. First, focus vulnerability research on the products and services that are eligible for bounty rewards. The eligible scope is published on our website. We expand our programs throughout the year, so check back regularly for new potential areas to research and follow us on Twitter for announcements of new bounty programs. Second, when reporting security vulnerabilities, provide clear, concise information to help our engineering teams reproduce the vulnerability for themselves. Detailed and well written instructions, or even short videos can more than double the possible [ more… ]

No Image

March 2019 Security Update Release

2019-03-13 KENNETH 0

March 2019 Security Update Release Today, we released security updates to provide additional protections against malicious attackers. As a best practice, we encourage customers to turn on automatic updates. More information about this month’s security updates can be found on the Security Update Guide. Source: March 2019 Security Update Release

No Image

February 2019 Security Update Release

2019-02-13 KENNETH 0

February 2019 Security Update Release Today, we released security updates to provide additional protections against malicious attackers. As a best practice, we encourage customers to turn on automatic updates. More information about this month’s security updates can be found on the Security Update Guide. Source: February 2019 Security Update Release

Microsoft’s Cyber Defense Operations Center shares best practices

2019-01-24 KENNETH 0

Microsoft’s Cyber Defense Operations Center shares best practices Today, a single breach, physical or virtual, can cause millions of dollars of damage to an organization and potentially billions in financial losses to the global economy. Each week seems to bring a new disclosure of a cybersecurity breach somewhere in the world. As we look at the current state of cybersecurity challenges today, we see the same types of attacks, but the sophistication and scope of each attack continues to grow and evolve. Add to these the threats of nation-state actors seeking to disrupt operations, conduct intelligence gathering, or generally undermine trust. You can download the Cyber Defense Operations Center strategy brief to gain more insight into how we work to protect, detect, and respond to cybersecurity threats. Like many companies, Microsoft takes technical dependencies upon a shared infrastructure, multiple teams, [ more… ]