[Lockergnome] Computer Security ~ September 12, 2009

Lockergnome's Computer Security ~ September 12, 2009    Google & Gmail won't connect Internet Cafe Heeeeeelllllllllppppppppppp !!!!!!!!!!!! ACER Laptop is. track/log the websites visitted in home network IE 8 dont have internet connection.. what should i do?? brother p-touch pro xl is wasting tape Disc Cleanup http server not connecting side-by-side configuration is incorrect Firefox freezes everything! Remove date from a digital photo HELP ME OUT Limited or No Connectivity Outlook Express 6 Not Receiving All Mail In Account Advanced Websites Made Easy: This is the first eBook on a new technology known as HTML/OS, a high-speed database engine and development environment that runs all across the Web. The HTML/OS engine eliminates the need for integration tools such as ASP, JSP, and PhP, and it eliminates the need for programming languages to handle protocols such XML, Corba, and DCOM. It replaces all of these with a simple BASIC-like language you type into HTML documents. Almost anyone can use... [Click Here to Download] Lockergnome help - Antivirus Discussions Recent submission to uploadmalware tREND Micro? MAMB problem solved while installing application GLB3.tmp wants to connect to .. Sandbox report for latest on-line virus scan malware AntiVir wont update? deferant IE7 closure And 45 days after I sent the worm to AVAST 'Most dangerous' celebs to search for online Avira AntiVirus questions Howto move towards Web3.0 and Web4.0 explained by Eseco Sy.. task bar pop-up spyware malware fix eEye Blink free anti-malware and firewall malware ta making files with illegal characters? a small disturbance in Beijing Lockergnome help - Trojans/Spyware Discussions Google Hijack virus System Security 2009 Can I delete these "problems" from Spybot - Search & Destr.. Alexa Toolbar: Security software finds it as Virus/Spyware Google Hijack Virus I need help!! i think i have malware avg updates are "forbidden" Can't seem to remove uacinit.dll. Help please? spyware hi, i have a malware infection i think :-( nother hijacked google in firefox and IE Google Hijack- Unable to update anti-virus Search hijacked -- AVG Can't Update - Frequent crashes Plethora of problems from one stupid action. Spyware Doctor Offer Lockergnome help - Antivirus Discussions - General Discussions Recent submission to uploadmalware tREND Micro? MAMB problem solved while installing application GLB3.tmp wants to connect to .. Sandbox report for latest on-line virus scan malware AntiVir wont update? deferant IE7 closure And 45 days after I sent the worm to AVAST 'Most dangerous' celebs to search for online Avira AntiVirus questions Howto move towards Web3.0 and Web4.0 explained by Eseco Sy.. malware ta making files with illegal characters? a small disturbance in Beijing How to update NOD32? Problem with iexplore.exe Lockergnome help - Antivirus Discussions - McAfee Internet Explorer 8 Coming Next Month Via WSUS McAfee Annoying Restart Computer Warning Anybody had to deal with McAfee's new Download Manager? Norton vs McAfee? McAfee Uninstall has crippled me McAfee ePO CMA Install Issues w/ Framework Service AVS is no more, AOL now using McAfee McAfee Enterprise AV Problem McAfee Virus Scan Enterprise Update problem help please Uninstall McAfee Firewall Kaspersky vs McAfee and Norton McAfee isn't picking up a pest!!! Infamous McAfee framework service problem McAfee updated then msconfig gives "access denied, log in .. McAfee, Vista and Dell- an installation from hell Lockergnome help - Antivirus Discussions - Symantec/Norton Will Norton AV 2002 run on Win98se? Online attackers feed off Norton forum purge Can't login to Norton Internet Security are going to buy norton 2009? How do I "reset" Symantec scan history? Secure storage system svichoost.exe anyone? How to un-install NORTON suite? AVG vs Norton NAV 2007 total removal ??? Infostealer cancelling Norton subscriptions Norton 360 vs. printer/scanner issues Norton Internet Security 2007 Problem With Norton SystemWorks and Windows XP Login Lockergnome help - Antivirus Discussions - AVG AVG Free AntiVirus -some problems lately- anyone else? AVG - The Virus Vault has reached the maximum file count l.. Avg reported virus/trojan then disappeared? Disabling AVG AVG problem with AutoIt scripts ... ? What to do to stop A.. Defrag AVG files AVG 8.0 Problems Galore AVG Free Edition 8.0.175 Unable to install AVG free 8.0 Problem installing paid AVG 8.0 - ewido conflict AVG free command line Problems uninstalling AVG Free 7.5 stop AVG Gaelicum removal tool running on startup Network question with AVG 8.0 Quick Scan? Lockergnome help - Antivirus Discussions - F-PROT F-PROT Is F-Prot for DOS no longer supported? F-Prot Fisk Intl' F-Prot What is latest version of F-Prot for DOS free version? F-Prot for Dos not scanning all files F-Prot server down? F-Prot Antivirus ftp://ftp.f-prot updates taking forever to download F-PROT for Linux - Trying to check bootsector F-prot DOS run in Windows DOS BOX or real mode MS-DOS modifying memory usage of a program (F-Prot)? AdAware 1.06 conflict with F-Prot 3.16b NOD32 vs. F-PROT? Commercial message from F-Prot Lockergnome help - Antivirus Discussions - Panda Problem with Panda mother-in-law's computer riddled pfdnnt program not found after uninstalling Panda IS unable to install Panda Panda 2007 - internet/lan problem Panda and PATH command problem with panda antivirus 2007 How about Panda PANDA FIREWALL ALLOW IP RANGE OF LAN Panda Titanium 2006 virus and anti spyware a scan schedule.. problems found with panda dont no how to get rid panda titanium antivirus plus antispyware 2006 renew license how to move panda businesSecure panda update script panda for linux free? Lockergnome help - Antivirus Discussions - Free Antivirus task bar pop-up spyware malware fix eEye Blink free anti-malware and firewall TT Livescan Database Update - 7/7/2009 Avira free: problem with advertising free antivirus for old notebook Freebie AV For Windows Home Server? Free Anti-Virus programs System files protected Has anyone tried the free Spyware Doctor Starter Edition -.. 4 windows XP installation ! Trend Micro 2008 compared to Avast 7.5 problem with the Resident Shield of AVG7.5 BugHunter Signature Update August 4th, 2007 - 10,953 signa.. Freeware Software BugHunter Update! 07.09.2007 Lockergnome help - Antivirus Discussions - Others Google-Redirect virus? Zone Alarm Trial - Running Firewall only Bit Defender uninstall Unable To UnInstall TrendMicro's PC-Cillin?? G-Data Antivirus or NOD32? Trend Micro PC-Cillin Internet Security 2007 Issue RunScanner 0.9.5 released! Bit Defender Finds This Trend Micro Pc-cillin Trend PC-Cillin and Windows 98SE Upgrade? Trend Micro PC-cillin trendmicro internet security restore quarantines problem BitDefender on demand only new files and folders created by BitDefender? How to Handle Remote Tech Support Lockergnome help - Trojans/Spyware Discussions - General Discussions Google Hijack virus System Security 2009 Alexa Toolbar: Security software finds it as Virus/Spyware Google Hijack Virus I need help!! i think i have malware avg updates are "forbidden" Can't seem to remove uacinit.dll. Help please? spyware hi, i have a malware infection i think :-( nother hijacked google in firefox and IE Google Hijack- Unable to update anti-virus Search hijacked -- AVG Can't Update - Frequent crashes Plethora of problems from one stupid action. Spyware Doctor Offer Help for yet another search engine hijack? Lockergnome help - Trojans/Spyware Discussions - Lavasoft Ad-Aware Ad-Aware crashes on Opera cookies - why? Adaware error whist scanning problem ad-aware & spybot spybot and addaware ADAWARE 2007 ADAWARE SE COMMAND LINE OPTIONS Ad-Aware Updates Adaware will not finish Adaware definitions "588 days old" ??? Does BitDefender interfere with Ad-Aware? Ad-Aware ref file problem Kaspersky and Ad Aware Pinging all the experts here -->Zone Alarm anti-spyware ju.. Updates: Latest Defs. Jun. 15th?! AdAware found regkey items...advice? Lockergnome help - Trojans/Spyware Discussions - Webroot Spy Sweeper Vietnampathfinder Travel Spy Sweeper v 6.0.2.39 stopping spysweeper spy sweeper under vista Spy Sweeper Interface Problem Allow specific ad sites in v5.5? Webroot Antivirus any good? XP Shutdown/Restart Problem after installing Spy Sweeper. Not Sure Spysweeper 5.3.2.2361 is Working Restart Problem (Spy Sweeper) webroot spysweeper How good is SpySweeper Antivirus extra module? spy sweeper 5.0 problems? Spy Sweeper: ma vi sembra possibile? SpySweeper dected Perfect Keylogger. Now what? Lockergnome help - Trojans/Spyware Discussions - Spybot S&D Can I delete these "problems" from Spybot - Search & Destr.. Trojan horse virus SHeur.BSLA Spybot-B I am SICK of w32.spybot.worm spybot search and destroy Spybot 1.4 & Win 95 k6ber.exe hacktool and msnsgrs.exe spybot TeaTimer Issues Spybot S&D Allow Change Problem SpywareBlaster and Spybot Search & Destroy. Spybot Search and Destroy Updates Folder Tea-Timer (Spybot) spybot question Hits with Spybot Spybot & The Bane of the '!!bad checksum!' MusicAnywhere: Enjoy your favourite mp3 songs from anywhere you roam. All you need is MusicAnywhere and a Web browser. No separate client needed; just a Web browser will do!. Get MusicAnywhere, set it, and GO! MusicAnywhere lets you listen to your favourite songs located in one computer from any other through the Internet using a Web browser. All you have to do is to install and set up the MusicAnywhere server on a computer where your... [Click Here to Download] Administrivia © 1996-2008, Lockergnome LLC. ISSN: 1095-3965. ISIPP Accredited. All Rights Reserved. Web site hosted by the folks who bring us Lockergnome.net.

Things a Geek Needs When on Vacation Virtual Machine Setup Problems I'm a Geek in Greece's Glamour Magazine! How to Overcome Writer's Block How to Share Files Between Mac and PC for Free How to Make Your Own Video Game Where to Find New (and Free!) iPhone Apps LEGO Death Star Review Road Trip: Family Vacation You Never Know What People are Going to Type LEGO Dad What Does Hawaii Taste Like? More Headlines My Letter to Courtney Love Koss Ear Buds Unboxing Is the PS2 Dead? 802.11n Ratified! VIA Shows Notebook with WiMAX Onboard Nintendo continues to disappoint Microsoft Engineer Shows Why You Just Don?t Upgrade Any of Their Op » Are You Searching for 9-11 Information? Special Girl Scout Edition Tall Healthcare ADHD Heart Attacks Gridlock Jennifer Aniston 9-10-01: A Day That Will Live in Infamy Leaving No Patch of Green Unturned Jon Hammond in Quartet at Gospel Uptown Club WeatherBug With Your Joomla Install! Screenr World Mosaics 2 Smart Phone Dropped In Water Quixotic Dandelion BBQ Cuteness Disable Security Alerts In Windows 7 Acer Aspire One 11.6-Inch Black Netbook for $300 + Free Shipping! The Ultimate Home Brewer?s Recipe Book Further Help Find Conference Mobile Blogs eBooks Buy Coupons Domains Games Sponsor Download Help Join MP3s Home

[Lockergnome] Computer Security ~ September 11, 2009

Lockergnome's Computer Security ~ September 11, 2009    Google & Gmail won't connect Internet Cafe Heeeeeelllllllllppppppppppp !!!!!!!!!!!! ACER Laptop is. track/log the websites visitted in home network IE 8 dont have internet connection.. what should i do?? brother p-touch pro xl is wasting tape Disc Cleanup http server not connecting side-by-side configuration is incorrect Firefox freezes everything! Remove date from a digital photo HELP ME OUT Limited or No Connectivity Outlook Express 6 Not Receiving All Mail In Account Vampix v1.0.03: Vampix lets you add black and white effects to your digital images by extracting (removing) colors from the images and creating a partial B&W effect. With some patience, you can create a neat effect, however we found it to be mostly hit and miss, with limited control over the results, and a rather complicated interface that lacks documentation. [348k] [Win98/ME/2k/XP] [FREE] [SnapFiles]... [Click Here to Download] Lockergnome help - Antivirus Discussions Recent submission to uploadmalware tREND Micro? MAMB problem solved while installing application GLB3.tmp wants to connect to .. Sandbox report for latest on-line virus scan malware AntiVir wont update? deferant IE7 closure And 45 days after I sent the worm to AVAST 'Most dangerous' celebs to search for online Avira AntiVirus questions Howto move towards Web3.0 and Web4.0 explained by Eseco Sy.. task bar pop-up spyware malware fix eEye Blink free anti-malware and firewall malware ta making files with illegal characters? a small disturbance in Beijing Lockergnome help - Trojans/Spyware Discussions Google Hijack virus System Security 2009 Can I delete these "problems" from Spybot - Search & Destr.. Alexa Toolbar: Security software finds it as Virus/Spyware Google Hijack Virus I need help!! i think i have malware avg updates are "forbidden" Can't seem to remove uacinit.dll. Help please? spyware hi, i have a malware infection i think :-( nother hijacked google in firefox and IE Google Hijack- Unable to update anti-virus Search hijacked -- AVG Can't Update - Frequent crashes Plethora of problems from one stupid action. Spyware Doctor Offer Lockergnome help - Antivirus Discussions - General Discussions Recent submission to uploadmalware tREND Micro? MAMB problem solved while installing application GLB3.tmp wants to connect to .. Sandbox report for latest on-line virus scan malware AntiVir wont update? deferant IE7 closure And 45 days after I sent the worm to AVAST 'Most dangerous' celebs to search for online Avira AntiVirus questions Howto move towards Web3.0 and Web4.0 explained by Eseco Sy.. malware ta making files with illegal characters? a small disturbance in Beijing How to update NOD32? Problem with iexplore.exe Lockergnome help - Antivirus Discussions - McAfee Internet Explorer 8 Coming Next Month Via WSUS McAfee Annoying Restart Computer Warning Anybody had to deal with McAfee's new Download Manager? Norton vs McAfee? McAfee Uninstall has crippled me McAfee ePO CMA Install Issues w/ Framework Service AVS is no more, AOL now using McAfee McAfee Enterprise AV Problem McAfee Virus Scan Enterprise Update problem help please Uninstall McAfee Firewall Kaspersky vs McAfee and Norton McAfee isn't picking up a pest!!! Infamous McAfee framework service problem McAfee updated then msconfig gives "access denied, log in .. McAfee, Vista and Dell- an installation from hell Lockergnome help - Antivirus Discussions - Symantec/Norton Will Norton AV 2002 run on Win98se? Online attackers feed off Norton forum purge Can't login to Norton Internet Security are going to buy norton 2009? How do I "reset" Symantec scan history? Secure storage system svichoost.exe anyone? How to un-install NORTON suite? AVG vs Norton NAV 2007 total removal ??? Infostealer cancelling Norton subscriptions Norton 360 vs. printer/scanner issues Norton Internet Security 2007 Problem With Norton SystemWorks and Windows XP Login Lockergnome help - Antivirus Discussions - AVG AVG Free AntiVirus -some problems lately- anyone else? AVG - The Virus Vault has reached the maximum file count l.. Avg reported virus/trojan then disappeared? Disabling AVG AVG problem with AutoIt scripts ... ? What to do to stop A.. Defrag AVG files AVG 8.0 Problems Galore AVG Free Edition 8.0.175 Unable to install AVG free 8.0 Problem installing paid AVG 8.0 - ewido conflict AVG free command line Problems uninstalling AVG Free 7.5 stop AVG Gaelicum removal tool running on startup Network question with AVG 8.0 Quick Scan? Lockergnome help - Antivirus Discussions - F-PROT F-PROT Is F-Prot for DOS no longer supported? F-Prot Fisk Intl' F-Prot What is latest version of F-Prot for DOS free version? F-Prot for Dos not scanning all files F-Prot server down? F-Prot Antivirus ftp://ftp.f-prot updates taking forever to download F-PROT for Linux - Trying to check bootsector F-prot DOS run in Windows DOS BOX or real mode MS-DOS modifying memory usage of a program (F-Prot)? AdAware 1.06 conflict with F-Prot 3.16b NOD32 vs. F-PROT? Commercial message from F-Prot Lockergnome help - Antivirus Discussions - Panda Problem with Panda mother-in-law's computer riddled pfdnnt program not found after uninstalling Panda IS unable to install Panda Panda 2007 - internet/lan problem Panda and PATH command problem with panda antivirus 2007 How about Panda PANDA FIREWALL ALLOW IP RANGE OF LAN Panda Titanium 2006 virus and anti spyware a scan schedule.. problems found with panda dont no how to get rid panda titanium antivirus plus antispyware 2006 renew license how to move panda businesSecure panda update script panda for linux free? Lockergnome help - Antivirus Discussions - Free Antivirus task bar pop-up spyware malware fix eEye Blink free anti-malware and firewall TT Livescan Database Update - 7/7/2009 Avira free: problem with advertising free antivirus for old notebook Freebie AV For Windows Home Server? Free Anti-Virus programs System files protected Has anyone tried the free Spyware Doctor Starter Edition -.. 4 windows XP installation ! Trend Micro 2008 compared to Avast 7.5 problem with the Resident Shield of AVG7.5 BugHunter Signature Update August 4th, 2007 - 10,953 signa.. Freeware Software BugHunter Update! 07.09.2007 Lockergnome help - Antivirus Discussions - Others Google-Redirect virus? Zone Alarm Trial - Running Firewall only Bit Defender uninstall Unable To UnInstall TrendMicro's PC-Cillin?? G-Data Antivirus or NOD32? Trend Micro PC-Cillin Internet Security 2007 Issue RunScanner 0.9.5 released! Bit Defender Finds This Trend Micro Pc-cillin Trend PC-Cillin and Windows 98SE Upgrade? Trend Micro PC-cillin trendmicro internet security restore quarantines problem BitDefender on demand only new files and folders created by BitDefender? How to Handle Remote Tech Support Lockergnome help - Trojans/Spyware Discussions - General Discussions Google Hijack virus System Security 2009 Alexa Toolbar: Security software finds it as Virus/Spyware Google Hijack Virus I need help!! i think i have malware avg updates are "forbidden" Can't seem to remove uacinit.dll. Help please? spyware hi, i have a malware infection i think :-( nother hijacked google in firefox and IE Google Hijack- Unable to update anti-virus Search hijacked -- AVG Can't Update - Frequent crashes Plethora of problems from one stupid action. Spyware Doctor Offer Help for yet another search engine hijack? Lockergnome help - Trojans/Spyware Discussions - Lavasoft Ad-Aware Ad-Aware crashes on Opera cookies - why? Adaware error whist scanning problem ad-aware & spybot spybot and addaware ADAWARE 2007 ADAWARE SE COMMAND LINE OPTIONS Ad-Aware Updates Adaware will not finish Adaware definitions "588 days old" ??? Does BitDefender interfere with Ad-Aware? Ad-Aware ref file problem Kaspersky and Ad Aware Pinging all the experts here -->Zone Alarm anti-spyware ju.. Updates: Latest Defs. Jun. 15th?! AdAware found regkey items...advice? Lockergnome help - Trojans/Spyware Discussions - Webroot Spy Sweeper Vietnampathfinder Travel Spy Sweeper v 6.0.2.39 stopping spysweeper spy sweeper under vista Spy Sweeper Interface Problem Allow specific ad sites in v5.5? Webroot Antivirus any good? XP Shutdown/Restart Problem after installing Spy Sweeper. Not Sure Spysweeper 5.3.2.2361 is Working Restart Problem (Spy Sweeper) webroot spysweeper How good is SpySweeper Antivirus extra module? spy sweeper 5.0 problems? Spy Sweeper: ma vi sembra possibile? SpySweeper dected Perfect Keylogger. Now what? Lockergnome help - Trojans/Spyware Discussions - Spybot S&D Can I delete these "problems" from Spybot - Search & Destr.. Trojan horse virus SHeur.BSLA Spybot-B I am SICK of w32.spybot.worm spybot search and destroy Spybot 1.4 & Win 95 k6ber.exe hacktool and msnsgrs.exe spybot TeaTimer Issues Spybot S&D Allow Change Problem SpywareBlaster and Spybot Search & Destroy. Spybot Search and Destroy Updates Folder Tea-Timer (Spybot) spybot question Hits with Spybot Spybot & The Bane of the '!!bad checksum!' Backup Plus DVD Edition: Backup Plus DVD Edition allows you to back up your most important data to CD and DVD media, in an easy-to-use and intuitive environment. Ensure your most important files are safe in case of a computer disaster with Backup Plus DVD Edition. Applications can be reinstalled from your original install disks, but data files can't! What would you do if you lost all of your e-mail data? How about your created documents or family pictures?... [Click Here to Download] Administrivia © 1996-2008, Lockergnome LLC. ISSN: 1095-3965. ISIPP Accredited. All Rights Reserved. Web site hosted by the folks who bring us Lockergnome.net.

Things a Geek Needs When on Vacation Virtual Machine Setup Problems I'm a Geek in Greece's Glamour Magazine! How to Overcome Writer's Block How to Share Files Between Mac and PC for Free How to Make Your Own Video Game Where to Find New (and Free!) iPhone Apps LEGO Death Star Review Road Trip: Family Vacation You Never Know What People are Going to Type LEGO Dad What Does Hawaii Taste Like? More Headlines Leaving No Patch of Green Unturned Jon Hammond in Quartet at Gospel Uptown Club WeatherBug With Your Joomla Install! Screenr World Mosaics 2 Smart Phone Dropped In Water Quixotic Dandelion BBQ Cuteness Disable Security Alerts In Windows 7 Acer Aspire One 11.6-Inch Black Netbook for $300 + Free Shipping! The Ultimate Home Brewer?s Recipe Book New And Updated Windows Apps For September 11th, 2009 Microsoft Tries a Different Tack AMD Has A Vision, But Will It Be Right For You? AMD Brings Another 6-Pack to the Game September 11, 2001: My Story VMware: Famous Last Words Microsoft Starts Its Own Open Source Party, Will Others Attend? Raveable Jasper?s Journeys Greek Glamour Geek And Monopoly Sheik? Tres Chic! Further Help Find Conference Mobile Blogs eBooks Buy Coupons Domains Games Sponsor Download Help Join MP3s Home

US-CERT Current Activity - Fraudulent 9/11 Web Sites

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

US-CERT Current Activity

Fraudulent 9/11 Web Sites

Original release date: September 11, 2009 at 3:59 pm
Last revised: September 11, 2009 at 3:59 pm

US-CERT is aware of public reports indicating that attackers are using
legitimate web pages to run malicious code on victims' machines.

Reports, including a posting by Sophos, indicate that these messages
* Include keywords and names related to the 9/11/2001 terrorist
attack
* Prompt users with a fake virus scan that attempts to make users
believe they have a security issue. The users are then asked to
download fake security software that is actually malicious code.

Please note that these characteristics may change at any time.

US-CERT encourages users and administrators to take the following
preventative measures to help mitigate the security risks:
* Install anti-virus software, and keep its virus signature file up
to date
* Refer to the Avoiding Social Engineering and Phishing Attacks
document for more information on social engineering attacks

Relevant Url(s):
<http://www.us-cert.gov/cas/tips/ST04-014.html>

<http://www.sophos.com/blogs/gc/g/2009/09/11/scareware-scammers-exploit-911>

====
This entry is available at
http://www.us-cert.gov/current/index.html#fraudulent_9_11_web_sites

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.5 (GNU/Linux)

iQEVAwUBSqqvOXIHljM+H4irAQJoOAf7BhJVa6nY9qK9uV9vaESmQXDmCvFslbzA
wpSGUe4Jx1UJ7iEhNYJxE9nIApuNCTKU+NP8Ve40ovnl97uX00kUdGof2d7Vl6ig
dVryJ1qde5K8l4j4IccK6e8+frL+F6c5bLRzciutWVV6Z1Wtv0ghKVO+txoGe/oR
F2U3KQ62K1P276iDvni816JcSKGA1DpKwNI9AnTxUV4EqMDXSNAFtlt4GlceIu1l
H7zlYWDAfu8HsaSjQliHudSJvmBvVQ4uquPw8os4mJJvlF8bPCxJajyC6d4GNsIL
wyjItKO4tc1iq3/Av98Uh6eh3CygxA3fDu/0rKk9YJhCaUWkhJIhTA==
=lEze
-----END PGP SIGNATURE-----

Microsoft Security Newsletter - Volume 6, Issue 9

Sign up for other newsletters | Unsubscribe | Update your profile

This is a monthly newsletter for IT professionals and developers—bringing security news, guidance, updates, and community resources directly to your inbox. To view an online version of this newsletter, click here or subscribe to the Featured Security and Privacy Content RSS feed to receive more frequent updates on news and featured resources. If you would like to receive less technical security news, guidance, and updates, please subscribe to the Microsoft Security for Home Computer Users Newsletter. Note from the Editor I love football. I love high school football. I love college football. I love NFL football. What I do not love is missing football. This year, one of the games of my beloved Green Bay Packers is on Monday night. That's the Monday night before the second Tuesday of the month. You know … the night before we release the monthly updates. When I should be sitting at home, yelling at my television, I'll be doing what you're doing—spending hours reading, worrying, and hoping that the solution won't be worse than the problem. That leads me to my focus for this month: security update management. Rolling out fixes is not the most glamorous of tasks. It is, however, one of the most crucial tasks we perform. A lot could go wrong either way. The process you use plays a huge part in that. I'm not just talking about whether you're a small business that relies on Microsoft Update or a medium-sized one that takes advantage of Windows Server Update Services (WSUS). You may even be using the great features available in Microsoft System Center Configuration Manager 2007. Regardless of the vehicle that gets you to the stadium, you still have to practice and have a good game plan to win. It's all about effective and consistent processes. Now, I realize that understanding the whole Microsoft Security Update process is … challenging. We have security updates, and security bulletins, and security notifications, and security advisories. Who can keep up? It's more difficult than trying to read an NFL playbook. Good luck figuring it all out. Until now. Thanks to some great work by our very own Michael Grady (who just happens to be a former college football player), Microsoft has finally put together a playbook that makes sense of it all. The Microsoft Security Update Guide is "must have" security guidance that walks you through all the terms, processes, and tools to get it all done correctly. What is the difference between a bulletin and an advisory? What things should I consider before deployment? Do I even need this update? What resources are available to assist me? Get this guide. It will make your job a lot easier, leaving you plenty of time to enjoy the game. Until next time! Kai Axford, MBA, CISSP, MCSE Sr. Security Strategist, Microsoft Trustworthy Computing (TwC) Top Stories Introducing the Microsoft Security Update Guide Better understand how to use Microsoft security release information, processes, tools, and communications to help manage organizational risk and develop a repeatable, effective deployment mechanism for security updates. In this guide, you will find a convenient glossary of terms, an overview of the Microsoft Security Bulletin process, and a stage-by-stage review of Microsoft Security Updates. Download the Microsoft Forefront Protection 2010 for Exchange Server Release Candidate This next-generation version of Forefront Security for Exchange Server provides fast and effective detection of malware and spam, blocks out-of-policy content, and integrates with Microsoft Forefront Online Protection for Exchange to offer the defense-in-depth benefits of hosted and on-premises filtering in a single solution. Windows Server Update Services 3.0 SP2 RTM Now Available WSUS 3.0 SP2 supports the latest operating systems, including Windows Server 2008 R2 and Windows 7 clients. WSUS 3.0 SP2 is more robust and features significant improvements in client performance, reliability, and increased server usability. Download a 90-Day Trial of Windows 7 Enterprise Brought to you by the Springboard Series, a 90-day trial is now available to help you test and evaluate the RTM version of Windows 7 Enterprise. Designed specifically for IT professionals, this 90-day trial is offered in English, French, German, Japanese, and Spanish. (Note: If you already have Windows 7 through MSDN, TechNet, or Software Assurance, you do not need to download this trial.) Security Guidance Security Compliance Management Toolkit Series This toolkit series provides an end-to-end solution to help your organization plan, deploy, and monitor security baselines of Windows operating systems and 2007 Microsoft Office applications. How to Use the Microsoft Security Response Center Exploitability Index The Microsoft Exploitability Index makes an assessment on the likelihood that code will be released that exploits the vulnerability or vulnerabilities addressed in a security bulletin within the first 30 days after that bulletin's release. Learn how to take advantage of this tool in your organization. Implementing Patch Management to Improve Web Application Security Learn how to keep single or multiple servers up to date, and improve your knowledge of the processes required to create a sound patch management system. Deploying FCS Definition Updates with a Shared System Center Configuration Manager WSUS Infrastructure Microsoft Forefront Client Security uses the WSUS engine to deploy definition updates to all the clients that Forefront Client Security manages. Microsoft System Center Configuration Manager 2007 uses WSUS to provide metadata to the scanning engine on Configuration Manager clients that facilitate software updates. This document provides guidance on how to configure Forefront Client Security definition updates to use an existing Configuration Manager WSUS infrastructure while ensuring that Configuration Manager and Forefront Client Security function properly and work together in harmony. How Do I: Change Default Work Items in the SDL Process Template? The Security Development Lifecycle (SDL) Process Template was developed to ease the integration of security into the software development process. This four-minute video will show you how to modify the default work items that are created in your new SDL Process Template team project, and how to modify the default work item types, such as Task or Bug. This Month's Security Bulletins Critical: • MS09-045: Vulnerability in JScript Scripting Engine Could Allow Remote Code Execution (971961) • MS09-049: Vulnerability in Wireless LAN AutoConfig Service Could Allow Remote Code Execution (970710) • MS09-047: Vulnerabilities in Windows Media Format Could Allow Remote Code Execution (973812) • MS09-048: Vulnerabilities in Windows TCP/IP Could Allow Remote Code Execution (967723) • MS09-046: Vulnerability in DHTML Editing Component ActiveX Control Could Allow Remote Code Execution (956844) Security Bulletin Overview for September 2009 • Microsoft Security Response Center (MSRC) Blog Post • Windows Media Video (WMV) • Windows Media Audio (WMA) • iPod Video (MP4) • MP3 Audio • High Quality WMV (2.5 Mbps) • Zune Video (WMV) Active Template Library Security Update for Developers Get detailed information and guidance for controls and components built with the Active Template Library. The Business of Security There is a reason you subscribe to this newsletter. You are working, or hope to be working, in the area of information security. You are in the security business, a term often confused with the "business of security." The business of security focuses on those skills that security professionals rely on, beyond their deep technical knowledge. It refers to the ability to translate technical concepts into business value. It's about understanding that the chief financial officer is more worried about cash flow than packet flow. In short, it's about managing risk. As you continue to progress in your career, these are skills you will find as valuable as your ability to install a perimeter firewall. Each month, in this new section of the newsletter, we will concentrate on those things that will allow you to move onward and upward in your security career. Over the next few months, we'll hear from those who have obtained a seat in the boardroom and from those who can put you there. We'll hear from chief information security officers and IT directors who can tell you what they like and dislike when interviewing candidates for roles in their company. We'll help you understand things like security metrics and return on security investment (ROSI), so you can have a business discussion with your senior managers. We'll also discuss how to deliver an effective presentation to those senior staff members. Security needs to be seen as a business enabler, not a hurdle, and this is where we'll learn to do that. So welcome. It's time to set aside the technical manual and get ready to work on upgrading one the most overlooked assets in your organization—you! Is there a topic you would like to see us discuss? E-mail us at secaware@microsoft.com. Microsoft Product Lifecycle Information Find information about your particular products on the Microsoft Product Lifecycle Web site. • See a list of supported service packs: Microsoft provides free software updates for security and nonsecurity issues for all supported service packs. Security Events and Training Windows 7 Summit Join Marcus Murray, Microsoft MVP in Security, as he and fellow MVPs present a free online Windows 7 webinar on October 7. Walk through the various Windows 7 security features and the threats they mitigate, plus learn about deployment, migration, virtualization, and more. Free Events to Ignite Your Windows Security Skills Heat up your skills with the all-new Firestarter event series. Each day-long event tackles a single Microsoft technology, including free sessions presented live by Microsoft developer and IT pro evangelists as well as technology specialists—with special appearances from community luminaries. Attend in person or via live meeting or download the webcast at your convenience and start learning about new built-in security enhancements in Windows. New Virtual Lab Series: Web Server Security Internet Information Services (IIS) 7.0 maximizes Web server security by default with minimal Web server footprint and automatic application isolation. Learn how to capitalize on IIS 7.0 to offer greater application isolation by giving worker processes a unique identity and a sandboxed configuration by default, further reducing security risks. Upcoming Security Webcasts Momentum Webcast: What's New with Exchange Server 2010? (Level 100) Thursday, September 17, 11:00 AM Pacific Time Momentum Webcast: Optimize Your Desktop Infrastructure with Windows 7 and MDOP (Level 100) Thursday, September 24, 11:00 AM Pacific Time IT Manager Webcast: Information Security Using HBI Information Classification and Automation (Level 200) Thursday, October 8, 11:00 AM Pacific Time Interactive Security Webcast Calendar Use this dynamic, interactive format to find upcoming security webcasts. For IT Professionals • TechNet Webcast: Microsoft Secure Collaboration Solution (Level 200) Tuesday, September 29, 1:00 PM Pacific Time • TechNet Webcast: Identity and Access Management Solution (Level 200) Thursday, October 1, 1:00 PM Pacific Time • TechNet Webcast: Design Considerations for Internal Public Key Infrastructures (Level 200) Monday, October 5, 10:00 AM Pacific Time • TechNet Webcast: Microsoft Information Protection Solution (Level 200) Tuesday, October 6, 1:00 PM Pacific Time • TechNet Webcast: Connect Remotely Using Windows 7 DirectAccess (Level 300) Wednesday, October 7, 10:00 AM Pacific Time • TechNet Webcast: Microsoft Secure Messaging Solution (Level 200) Thursday, October 8, 1:00 PM Pacific Time • TechNet Webcast: Optimizing Operations Manager for Monitoring, Auditing, and Dashboards (Level 300) Friday, October 9, 8:00 AM Pacific Time • TechNet Webcast: Microsoft Secure Endpoint Solution (Level 200) Tuesday, October 13, 12:00 PM Pacific Time • TechNet Webcast: Using Service Manager to Enhance the Capabilities of System Center Solutions (Level 300) Tuesday, October 13, 1:00 PM Pacific Time • TechNet Webcast: Information About Microsoft October Security Bulletins (Level 200) Wednesday, October 14, 11:00 AM Pacific Time • TechNet Webcast: Microsoft Integrated Security Solution (Level 200) Thursday, October 15, 1:00 PM Pacific Time Now On Demand • Help Customers Protect Offline Virtual Machines from Security Threats Learn how to keep offline virtualized servers up to date and safe from attack. Volume 6, No. 9 September 2009 In This Issue: Top Stories Security Guidance This Month's Security Bulletins The Business of Security Microsoft Product Lifecycle Information Security Events and Training Upcoming Security Webcasts Security Program Guide • Microsoft SDL – Developer Starter Kit • Security Awareness Materials Guidance, samples, and templates for creating a security-awareness program in your organization. • Learn Security On the Job • Learning Paths for Security - Microsoft Training References and Resources Upcoming Chats • View a listing of upcoming technical chats Security Blogs • Trustworthy Computing Security/Privacy Blogs • Michael Howard • Eric Lippert • Eric Fitzgerald • MSRC Blog • ACE Team • Windows Security • Solution Accelerators - Security & Compliance • Kai Axford • Security Vulnerability Research & Defense • Security Development Lifecycle (SDL) Security Newsgroups • General Security issues/questions Open with newsreader • Virus issues/questions Open with newsreader • ISA Server Open with newsreader • Window Vista: Security Open with newsreader • SQL Server: Security Open with newsreader • Windows Server: Security Open with newsreader Community Web Sites • IT Pro Security Community Additional Security Resources • Security Help and Support for IT Professionals • TechNet Troubleshooting and Support Page • Microsoft Security Glossary • Security TechCenter • MSDN Security Developer Center • Sign-Up for the Microsoft Security Notification Service • Security Bulletin Search Page • Home Users: Protect Your PC • MCSE/MCSA: Security Certifications • Subscribe to TechNet • Register for TechNet Flash IT Newsletter © 2009 Microsoft Corporation. All rights reserved. Microsoft, Forefront, MSDN, Windows, Windows Media, Windows Server, and Zune are either registered trademarks or trademarks of Microsoft Corporation in the United States and/or other countries. The names of actual companies and products mentioned herein may be the trademarks of their respective owners. To cancel your subscription to this newsletter, reply to this message with the word UNSUBSCRIBE in the Subject line. You can also unsubscribe at http://www.microsoft.com/info/unsubscribe.htm. You can manage all your Microsoft.com communication preferences at this site. Legal Information. This newsletter was sent by the Microsoft Corporation One Microsoft Way Redmond, Washington, USA 98052 Sign up for other newsletters | Unsubscribe | Update your profile © 2009 Microsoft Corporation Terms of Use | Trademarks | Privacy Statement