Latest Microsoft Security Intelligence Report volume 11 available now
Volume 11 of the Microsoft Security Intelligence Report (SIR v11) is available now. For this volume of the Security Intelligence Report (SIR), we're presenting a short video that demonstrates how Win32/FakePAV steals credit card information and how to remove it. You can also read more on the ongoing threat of botnets in the articles "What is a Botnet?" and "Botnet Special Edition Reports".

VB Conference 2011 Features Microsoft Research
Several Microsoft researchers were featured in the Virus Bulletin 2011 conference held in Barcelona, Spain. Tony Lee, along with Costin Raiu from Kaspersky Lab, Jong Purisima from GFI Software, Nick Bilogorskiy, and Philipp Wolf from Avira, presented "MUTE - Malware URL Tracking and Exchange". Terry Zink presented "How to teach people to be aware of cyber security". Tim Ebringer presented "Bindex 2.0", the Microsoft in-house binary search engine. And Holly Stewart presented "Top exploits of 2011".

Latest Microsoft Security Intelligence Report volume 10 available now
Volume 10 of the Microsoft Security Intelligence Report (SIR v10) is available now. For this volume of the Security Intelligence Report (SIR), we're presenting a short video that calls attention to the second most commonly detected rogue security software: Win32/FakePAV. In addition to the Win32/FakePAV feature, we're continuing to highlight the ongoing threat of botnets in "Battling Botnets," which we released in 2010.

Latest Microsoft Security Intelligence Report volume 9 available now
Volume 9 of the Microsoft Security Intelligence Report (SIR v9) is available now. For this volume of the Security Intelligence Report (SIR), we've chosen botnets as the topic for Featured Intelligence. When we look at that intelligence as a whole, it's clear that botnets pose one of the most significant threats to system, organizational, and personal security. We've provided basic information (descriptions of how botnets work and how they're used, for example) as well detailed data, such as descriptions of important botnet families and prevalence of botnets by region and operating system. In addition, we've included the section "Fighting Back," which highlights the anti-botnet defense strategies that Microsoft and others in the security community have deployed.

VB Conference 2010 Features Microsoft Research
Several Microsoft researchers were featured in the Virus Bulletin 2010 conference held in Vancouver, Canada. For the technical stream, Joe Johnson led off on the second day of the conference with a paper on a unique rootkit with Alureon: the first 64-bit rootkit, and Holly Stewart and Peter Ferrie, along with Alexander Gostev from Kaspersky, presented Unravelling Stuxnet. The Skype is no longer the limit - new ways malware keeps in touch with your friends by David Wood, and Gaming the gamers: tricks of the trade in the world of PWS warcraft from three-time presenter Chun Feng, were presented on the final day of the conference. For the corporate stream, Scott Wu presented his paper Observations and lessons learned from comparing point-in-time cleaning against real-time protection, and Terry Zink talked about The psychology of spamming. Tony Lee and Jimmy Kuo discussed Industry testing and telemetry sharing, and finally Peter Ferrie again presented, along with other researchers from Sophos and McAfee, Standards and policies on packer use.

Latest Microsoft Security Intelligence Report volume 8 available now
Volume 8 of the Microsoft Security Intelligence Report (SIR v8) is available now. This latest volume of the SIR shows that malicious software infection rates differ significantly for different versions of the Microsoft Windows operating system. However, infection rates for more recently released operating systems and service packs are consistently lower than previous ones, for both client and server platforms. This volume also contains a heat map that illustrates the infection rates of locations around the world, expressed in a metric called CCM that represents the number of computers cleaned per thousand executions of the Malicious Software Removal Tool. Despite the global nature of the Internet, there are significant differences in the types of threats that affect users in different parts of the world. Infection data from several Microsoft security products for some of the more populous locations around the world demonstrates the highly localized nature of malware and potentially unwanted software.

Latest Microsoft Security Intelligence Report volume 7 available now
Volume 7 of the Microsoft Security Intelligence Report (SIR v7) is available now. This latest volume of the SIR details the changing threat landscape worldwide during the first half of 2009. The seventh volume of the SIR contains a comprehensive discussion on automated SQL injection attacks, which has been reported as how the security of several financial institutions were breached. This latest edition also documents trends in software vulnerabilities and exploits, spam and various other e-mail threats, browser-based exploits, and the distribution of threats between the workplace and the home environment.

MMPC Research Speaks at the AVAR 2009 in Kyoto, Japan
MMPC Research Manager Jimmy Kuo had the honor of being the guest speaker at the 12th Association of Antivirus Asia Researchers International Conference 2009 in Kyoto Japan, the largest Asia Pacific conference on anti-malware. As this conference focuses on anti-malware activities in the Asia Pacific region, geographical data from the latest SIR proved invaluable to the ongoing research in that area. Jonathan Poon and Ian McMillan from Microsoft also presented their paper entitled "The Evolution of an Automated Scanning Service 'Still Scanning for a Cyber-Needle in a Cyber-Haystack'".

PacSec 2009 Provides MMPC with Venue to Present SIR Data
The seventh version of the SIR provided data from a number of Microsoft security products, which in turn provided MMPC Researcher Tony Lee with information to provide the audience at the 7th Annual PacSec conference in Tokyo, Japan. This conference highlighted the need for collaboration between security product providers, ISPs, and law enforcement to combat malicious software. Jason Shirk from Microsoft also presented the paper "Exploitable and Effective Fuzzing Strategies as a Regular Part of Test".