A free security tool is slaughtering the Zbot botnet, having cleaned the malware responsible for harvesting zombie computers from almost 280,000 machines.

In just a few days, MSRT has delivered a heavy blow to the network of zombie computers, with a few hundred thousand PCs having been cleaned.

MSRT was refreshed and offered to all Windows users via Windows Update on October 12, as a part of the company’s monthly release of security bulletins.

“Since the release of MSRT on Tuesday we have removed Zbot 281,491 times from 274,873 computers and is the #1 family of malware removed (which is not uncommon the month a family is added),” revealed Microsoft’s Jeff Williams. More »

Microsoft is gearing up to release patches for a record number of security vulnerabilities affecting a range of its products, including the latest iteration of Windows and Office.

The Redmond company will plug almost 50 security holes in Windows and Internet Explorer, as well as in the Office productivity suite and the .NET Framework.

The security bulletins will be released next week, on Tuesday, October 12, 2010 as a part of the software giant’s patch cycle.

“This month as part of our predictable security update process we are releasing 16 comprehensive bulletins addressing 49 vulnerabilities,” revealed Carlene Chmaj, Microsoft Security Response Senior Communications Manager. More »

Microsoft plans to plug no less than 34 security holes in Windows, office and Internet Explorer come June 8th, 2010. The move is part of the company’s monthly patch cycle scheduled for release on patch-Tuesday, the second Tuesday of every month.

There will be a total of 10 security bulletins as a part of the June update release, three of which carry the maximum severity rating of Critical, meaning that they are designed to patch vulnerabilities, which, in the eventuality of a successful exploit could allow attackers to perform remote code execution on a vulnerable system.

“Six of the bulletins affect Windows; of those, two carry a Critical severity rating and four are rated Important. Two bulletins, both with a severity rating of Important, affect Microsoft Office. One bulletin, again with a severity rating of Important, affects both Windows and Office. More »

Microsoft will release a total of 11 security bulletins on April 13, 2010, as a part of the company’s monthly patch cycle. According to Jerry Bryant, group manager, Response Communications, no less than 25 vulnerabilities affecting Windows, Office and Exchange will be patched next week. Out of the 11 patch packages, no less than eight impact releases of the Windows operating system, two affect Office and one both Windows and Exchange.

In the Security Bulletin Advance Notification for April 2010, the Redmond company offers general details about the upcoming patches, enough so that IT professionals can make the necessary preparations for deployment, but not sufficient for attackers to do reverse engineering on the security updates before they become available.

“I also want to point out to customers that we will be closing the following open Security Advisories with next week’s updates: Microsoft Security Advisory (981169) – Vulnerability in VBScript Could Allow Remote Code Execution. Microsoft Security Advisory (977544) – Vulnerability in SMB Could Allow Denial of Service,” Bryant stated. More »

As it does every month, Microsoft has built an ISO image packaging all the security updates it released for supported versions of the Windows client and server operating systems via its monthly patch cycle.

The latest release, namely the February 2010 Security Release ISO Image, brings to the table the Windows patches offered on February 9th through the Windows Update and Microsoft Update for Windows 7 and Windows Server 2008 R2, but also older releases of the OS, such as Windows Vista and Windows XP.

Just a few days ago, the Redmond company released no less than 13 security bulletins patching a total of 26 vulnerabilities in Windows and Office. A total of 11 patch packages were designed to plug security holes in Windows. “As always, it is recommended that customers deploy all security updates as soon as possible.

Of the bulletins released this month, customers should prioritize and deploy MS10-006, MS10-007, MS10-008, MS10-013, and MS10-015, given Critical severity ratings and/or Exploitability Index ratings of 1 (‘Consistent Exploit Code Likely’),” Jerry Bryant, Sr. Security communications manager – lead, revealed. More »