2020 年 2 月 12 日 (日本時間)、マイクロソフトは以下のソフトウェアのセキュリティ更新プログラムを公開しまし
[サイバーセキュリティ月間2020] マイクロソフト セキュリティパッチのきほん②
※ 2020 年 11 月に、セキュリティ更新プログラム ガイドがリニューアルしています。新しいセキュリティ更新プログ
Recognizing Security Researchers in 2020
Is it too early to talk about the 2020 MSRC Most Valuable Security Researchers? Five months from now, at the end of June, the program period closes for researchers to be considered for inclusion in the Most Valuable Researchers list. The top researcher list will be revealed at Black Hat North America in August.
[サイバーセキュリティ月間2020] IT 管理者向け セキュリティ管理に役立つ情報公開のお知らせ
日本政府は、サイバーセキュリティに関する普及啓発強化のため、2 月 1 日から 3 月 18 日までを「サイバーセキ
Announcing the Xbox Bounty program
We are pleased to announce the launch of the Xbox Bounty program today.
The Xbox bounty program invites gamers, security researchers, and technologists around the world to help identify security vulnerabilities in the Xbox network and services, and share them with the Microsoft Xbox team through Coordinated Vulnerability Disclosure (CVD). Eligible submissions with a clear and concise proof of concept (POC) are eligible for awards up to US$20,000.
カスタマー サポート データベースのアクセス構成の誤りについて
本記事は、Microsoft Security Response Center ブログ “Access Misconfiguration for Customer Support Database” (2020 年 1 月 22 日 米国時間
Access Misconfiguration for Customer Support Database
Today, we concluded an investigation into a misconfiguration of an internal customer support database used for Microsoft support case analytics. While the investigation found no malicious use, and although most customers did not have personally identifiable information exposed, we want to be transparent about this incident with all customers and reassure them that we are taking it very seriously and holding ourselves accountable.
Announcing MSRC 2019 Q4 Security Researcher Leaderboard
Following the first Security Researcher Quarterly Leaderboard we published in October 2019, we are excited to announce the MSRC Q4 2019 Security Researcher Leaderboard, which shows the top contributing researchers for the last quarter.
In each quarterly leaderboard, we recognize the security researchers who ranked at or above the 95th percentile line based on the total points.
January 2020 Security Updates: CVE-2020-0601
The January security updates include several Important and Critical security updates. As always, we recommend that customers update their systems as quickly as practical. Details for the full set of updates released today can be found in the Security Update Guide.
We believe in Coordinated Vulnerability Disclosure (CVD) as proven industry best practice to address security vulnerabilities.