Sign in
|
Join
|
Help
Idan & Ohad Plotnik's Forefront Blog
Forefront MVP - www.ForefrontSecurity.ORG
Home
RSS
Atom
Comments RSS
Go
Tags
ITPRO
Security
TechEd
Teched_il
Archives
May 2013 (2)
April 2013 (2)
January 2013 (1)
September 2012 (1)
May 2012 (3)
March 2012 (3)
February 2012 (1)
January 2012 (3)
December 2011 (1)
November 2011 (2)
October 2011 (8)
August 2011 (1)
June 2011 (1)
May 2011 (2)
April 2011 (2)
January 2011 (3)
December 2010 (2)
November 2010 (1)
October 2010 (3)
August 2010 (4)
June 2010 (1)
March 2010 (1)
February 2010 (3)
January 2010 (1)
November 2009 (1)
August 2009 (2)
July 2009 (6)
June 2009 (1)
Navigation
Home
All Posts
RSS
Popular Tags
Browse by Tags
All Tags
»
Security
(
RSS
)
ITPRO
TechEd
Teched_il
Securing Active Directory
05 May 13 09:25 AM
|
Plotniko
| with
no comments
Hi Guys! The threat of compromise to IT infrastructures from external attack is rapidly growing and evolving. The Active Directory environment is often the target for these attacks. This article details steps that your organization can take to protect its Active Directory environment. The document Contains recommendations to enhance the security of Active Directory installations, discusses common attacks against Active Directory and countermeasures to reduce the attack surface, and offers recommendations...
Update Rollup 1 for Active Directory Rights Management Services Client 2.0 (KB2821183)
14 April 13 04:40 AM
|
Plotniko
| with
no comments
Hi Guys, So, There is a new update rollup 1 for the AD RMS client 2.0. Installed and checked in my lab. FYI: This update fixes the problems described in KB article 2821183. Active Directory Rights Management Services Client 2.1 (AD RMS Client 2.1) is software designed for your client computers to help protect access to and usage of information flowing through applications that use AD RMS whether installed on your premises or in a Microsoft datacenter. AD RMS Client 2.1 provides numerous updates and...
Important! Vulnerability in Active Directory Could Lead to Denial of Service (2830914)
11 April 13 01:04 PM
|
Plotniko
| with
no comments
Guys! This vulnerability Is critical! Affected on AD servers (Domain Controllers) till Windows Server 2012 ! Windows Server 2008 for Itanium-based Systems is not affected. Please review and take actions: http://technet.microsoft.com/en-us/security/bulletin/ms13-032 Thanks, Ohad Plotnik (Plotniko) VP Professional Services, MVP Aorato LTD. Never been hacked? You’re not looking close enough. www.Aorato.com
FIM 2010 R2 SP1 has been Released!
09 January 13 04:05 AM
|
Plotniko
| with
no comments
Hello Forefront Guys, On the Andreas Kjellman talk at the first annual Oxford Computer Group Redmond Identity, Access & Directory Summit at Microsoft HQ, the SP1 for Forefront Identity Manager 2010 R2 was announced! Not much information about the changes, Part of the changes in the SP1, including support for 2013 releases (Sharepoint etc'...) you can download via your MSDN subscriber benefits. The KB that will be released is KB2772429. Thanks, Ohad Plotnik (Plotniko) Identity and Security...
Forefront Product Roadmaps
12 September 12 06:09 PM
|
Plotniko
| with
no comments
Hello All, After a lot of Rumors on end of life for TMG etc'... Microsoft officially announces today the long-term planning for Forefront products: "Today, as a result of our effort to better align security and protection solutions with the workloads and applications they protect, Microsoft is announcing changes to the roadmaps of some of the security solutions made available under the Forefront brand." For More Information: http://blogs.technet.com/b/server-cloud/archive/2012/09/12...
Microsoft protects against the "Flame" Virus !
30 May 12 10:18 AM
|
Plotniko
| with
no comments
Hello, We are happy to announce that This threat is detected by the Microsoft antivirus engine. And the Microsoft MMPC updated the signature and it is now protecting from the new threat. For more information: http://forums.forefrontsecurity.org/default.aspx?g=posts&m=2980#post2980 Stay Up To Date ! Thanks, Ohad Plotnik (Plotniko) Identity and Security Architect, MVP Foreity LTD – Intelligent Security www.ForefrontSecurity.org
Active Directory Rights Management Service Client 2.0 is out!
29 May 12 10:56 AM
|
Plotniko
| with
no comments
Hi Security guys, Microsoft announced the Active Directory Rights Management Service Client 2.0. AD RMS Client 2.0 is software designed for your client computers To help protect access to and usage of information flowing through applications that use AD RMS whether installed on your premises or in a Microsoft datacenter. For more information and download: http://www.microsoft.com/en-us/download/details.aspx?id=29892 Thanks, Ohad Plotnik (Plotniko) Identity and Security Architect, MVP Foreity LTD...
New Advanced Cyber Threat - Virus "Worm.Win32.Flame"
29 May 12 10:52 AM
|
Plotniko
| with
no comments
Hi Security guys, I want to update you that Kaspersky labs announce a sophisticated malicious worm, that is actively being used as a cyber-weapon attacking entities in several countries mainly in the Middle East. For more information: http://forums.forefrontsecurity.org/default.aspx?g=posts&m=2978#post2978 http://www.kaspersky.com/about/news/virus/2012/Kaspersky_Lab_and_ITU_Research_Reveals_New_Advanced_Cyber_Threat Thanks, Ohad Plotnik (Plotniko) Identity and Security Architect, MVP Foreity...
Vulnerability in DNS Server Could Allow Denial of Service MS12-017 - Important
15 March 12 09:59 AM
|
Plotniko
| with
no comments
Hello, his security update resolves a privately reported vulnerability in Microsoft Windows. The vulnerability could allow denial of service if a remote unauthenticated attacker sends a specially crafted DNS query to the target DNS server. This security update is rated Important for all supported editions of Windows Server 2003, 32-bit and x64-based editions of Windows Server 2008, and x64-based editions of Windows Server 2008 R2. Please update your systems ASAP!!! Info is here: http://technet.microsoft...
Vulnerability in Windows Kernel-Mode Drivers Could Allow Elevation of Privilege MS12-018 - Important
15 March 12 09:57 AM
|
Plotniko
| with
no comments
Hello, This security update resolves a privately reported vulnerability in Microsoft Windows. The vulnerability could allow elevation of privilege if an attacker logs on to a system and runs a specially crafted application. An attacker must have valid logon credentials and be able to log on locally to exploit this vulnerability. This security update is rated Important for all supported releases of Microsoft Windows. Please update your systems ASAP!!! Info is here: http://technet.microsoft.com/en...
Microsoft Security Bulletin MS12-020 Critical Vulnerabilities in Remote Desktop Could Allow Remote Code Execution !!!
15 March 12 09:38 AM
|
Plotniko
| with
no comments
Hello, This security update resolves two privately reported vulnerabilities in the Remote Desktop Protocol. The more severe of these vulnerabilities could allow remote code execution if an attacker sends a sequence of specially crafted RDP packets to an affected system. By default, the Remote Desktop Protocol (RDP) is not enabled on any Windows operating system. Systems that do not have RDP enabled are not at risk. This security update is rated Critical for all supported releases of Microsoft Windows...
Microsoft released a signature for Win32/Delf.QR
08 February 12 03:07 PM
|
Plotniko
|
1 comment(s)
Hello, Today I sent a virus sample to the Microsoft MMPC team, That was analyzed as the “TrojanDownloader:Win32/Delf.QR” The full reply from Microsoft was: Analysis of the file(s) in Submission ID MMPC12020732034853 is now complete. This is the final email that you will receive regarding this submission. The Microsoft Malware Protection Center (MMPC) has investigated the following file(s) which we received on 2/7/2012 11:39:15 AM Pacific Time. Below is the determination for your submission. ====...
Security Compliance Manager 2.5 Beta is here!
27 January 12 12:11 PM
|
Plotniko
| with
no comments
PING The latest version the Microsoft Security Compliance Manager (SCM) tool—version 2.5—is now available for beta download and review! NEW baselines include: * Exchange Server 2007 SP3 Security Baseline * Exchange Server 2010 SP2 Security Baseline Updated client product baselines include: * Windows 7 SP1 Security Compliance Baseline * Windows Vista SP2 Security Compliance Baseline * Windows XP SP3 Security Compliance Baseline * Office 2010 SP1 Security Baseline * Internet Explorer 8 Security Compliance...
A Guide to Claims-Based Identity and Access Control, Second Edition eBook
27 January 12 12:09 PM
|
Plotniko
| with
no comments
Hello All, Claims-based identity seeks to control the digital experience and allocate digital resources based on claims made by one party about another. A party can be a person, organization, government, website, web service, or even a device. The very simplest example of a claim is something that a party says about itself. As the authors of this book point out, there is nothing new about the use of claims. As far back as the early days of mainframe computing, the operating system asked users for...
Hotfix Rollup 4 for Microsoft Forefront Protection for Exchange is HERE!
15 January 12 02:21 AM
|
Plotniko
|
1 comment(s)
Hello All! Microsoft has released Hotfix Rollup 4 for Forefront Protection 2010 for Exchange. http://support.microsoft.com/kb/2619883 This article contains information about how to obtain the hotfix rollup and about the issues that are fixed by the hotfix rollup. Issues that are fixed in Hotfix Rollup 4 for Forefront Protection 2010 for Exchange: 1. Email is sent to the Forefront Protection for Exchange UNDELIVERABLE folder instead of being delivered 2. UNC and proxy credentials are stored in clear...
More Posts
Next page »