February Microsoft patch released on 10th December, fixes critical flaw on the following applications. If your automatic update turned off, make sure you check for update and install this patch immediately.
- Internet Explorer 7 – Fix flaw that allow a malicious Web site to install malware on a vulnerable PC.
- Visio – Fix flaw where attacker can run any command if you open a hacked Visio file.
- Microsoft Exchange – Fix flaw where Microsoft Exchange could be taken over by a specially crafted TNEF message sent to it by an attacker.
- SQL server – Fixing flaw for possibly another attack after successful SQL injection attack.
The patches run on one of my notebook for IE7 and SQL server flaw.
Micheal Howard is a security expert in MS and he has quite good articles for those working on MS platform or environment. It looks odd however, if security blogs such as one belonged to Michael Howard, was spammed by such as illegal trackback, which appears to undermine the security level of the blog itself.
While he is busy with his security tips and speech around the world, doing paper work, writing new books, spammer (human or bot who never sleeps) has taken advantage by leaving spam trackback which appears to get loosen off from Microsost security/filter itself. This is nothing new and such behaviour can easily be avoided by even new bloggers.
If you use WordPress, maybe you should try Simple Track Back plugin to overcome this problem. It works well on my tiny blog. Or if you use your own MS blog platform (if it exists) or other blogging platform, why not request your engineers to create the same.
It does not only enhance the blog credibility, but also shows that your blog is as secured as your system.
My attempt to browse the illegal trackback was unsuccessful, since our Smart Filter blocks this URL as ”Spammer URL’ . It looks like this system is clever than yours in handling spam.
note: this serves as an entertainment only, don’t take it seriously okey! I do know that spam is different from security.
