Archive

Archive for the ‘System Center’ Category

#AVGater vulnerability does not affect Windows Defender Antivirus, MSE, or SCEP

On November 10, 2017, a vulnerability called #AVGater was discovered affecting some antivirus products. The vulnerability requires a non-administrator-level account to perform a restore of a quarantined file.

Windows Defender Antivirus and other Microsoft antimalware products, including System Center Endpoint Protection (SCEP) and Microsoft Security Essentials (MSE), are not affected by this vulnerability.

This vulnerability can be exploited to restore files that have been detected and quarantined by an antivirus product. To exploit this, malicious applications, including those launched by user-level accounts without administrator privileges, create an NTFS junction from the %System% folder to folder where the quarantined file is located. This NTFS junction can trigger the antivirus product to attempt to restore the file into the %System% folder.

This is a relatively old attack vector. By design, Microsoft antimalware products, including Windows Defender Antivirus, have never been affected by this vulnerability because it does not permit applications launched by user-level accounts to restore files from quarantine. This is part of the built-in protections against this and other known user-account permissions vulnerabilities.

Read more about Windows Defender Antivirus and the rest of our Windows Defender protection products at the following links:

 

*Edited 11/17/2017 to include other Microsoft antimalware products

 


Talk to us

Questions, concerns, or insights on this story? Join discussions at the Microsoft community and Windows Defender Security Intelligence.

Follow us on Twitter @WDSecurity and Facebook Windows Defender Security Intelligence.

 

Cloud OS Network: Tieto och Microsoft stärker sitt samarbete

Tieto går med i Microsofts Cloud OS Network för att ytterligare utveckla tjänsterna i Tieto Productivity Cloud, som erbjuds i de nordiska länderna. Cloud OS Network är ett globalt konsortium bestående av molntjänstleverantörer som har tagit till sig Microsoft Cloud OS-visionen.  Dessa organisationer erbjuder lösningar för infrastruktur och produktivitetstjänster som baseras på Microsoft validerade plattform utformad för att uppfylla företagens affärsbehov. Avtalet gör det möjligt för Tieto att fortsätta utveckla lösningar på Microsofts molnplattform.

Nätverkets medlemmar kombinerar branschledande Microsoftteknik med den egna expertisen inom datadrift och geografisk expertis, för att ge kunderna full flexibilitet och omfattande valmöjligheter för en hybrid datacenterlösning.

“Våra kunder söker den bästa leveransmodellen för sina Microsoftbaserade lösningar. Tieto kan stödja kunden i deras egna dedikerade miljö, i en privat molnlösning i Tieto Productivity Cloud, i Microsofts publika moln eller i en hybridlösning som kombinerar dem. Tieto Productivity Cloud, baserat på Microsofts molnplattform, möjliggör en fullserviceleverans över olika molnlösningar med sömlösa övergångar, ” säger Mikko Pulkkinen, Vice President, Managed Services, Shared Services, Tieto.

Microsofts molnplattform ger en enhetlig infrastruktur över kunders egna datacenter, Windows Azure, och tjänsteleverantörsmolnlösningar. Detta ger kunderna fler valmöjligheter och större flexibilitet än från någon annan molnleverantör i branschen. “Medlemmar i Cloud OS Network tillhandahåller en pålitlig Microsoftplattform för molnlösningar. Genom att säkerställa en stringens i olika miljöer samt erbjuda möjligheten att välja från en mängd moln – publika, partnerdriftade eller hybrida – erbjuder Tieto kunderna flexibla molnlösningar som bäst motsvarar deras behov,” säger Takeshi Numoto, Corporate Vice President, Server and Tools Marketing, Microsoft. 

Kunderna kan välja en kombination av tjänster som Microsoft Sharepoint, Microsoft Exchange, Microsoft Lync, Microsoft SQL Server, Microsoft BizTalk, Microsoft Active Directory och Microsoft Dynamics CRM-tjänster  vilka kan levereras i en hybrid molnlösning.

 

 

 

Microsoft Cloud OS Network lanseras idag

Idag lanseras Microsoft Cloud OS Network, ett globalt konsortium av mer än 25 molntjänsteleverantörer som tillhandahåller tjänster som bygger på Microsoft Cloud Platform: Windows Server med Hyper-V, System Center och Windows Azure Pack.

 

Företagen som gått med i nätverket ställer sig bakom Microsofts Cloud OS vision om en enhetlig plattform som spänner över kunddatacenter, Windows Azure och leverantörsmoln. Medlemmarna i Cloud OS Network erbjuder Microsoft-validerad, molnbaserad infrastruktur och applikationslösningar som är utformade för att möta kundernas behov.

 

Läs mer om Cloud OS Network i den internationella Microsoftbloggen. Om du är nyfiken på att höra leverantörernas perspektiv så berättar Telecomputing om sitt engagemang här.

 

Telecomputing går med i Microsoft Cloud OS Network

Telecomputing meddelar idag att de går med i det globala molninitiativet Microsoft Cloud OS Network, för att erbjuda ökad produktivitet och flexibilitet. Microsoft Cloud OS Network har många molntjänstleverantörer anslutna över hela världen och Telecomputing är en av de första i Sverige att ansluta sig till nätverket. Alliansen gör det möjligt för Telecomputing att kombinera sina lokala produkter och tjänster med Microsofts molnplattform, vilket ger nordiska kunder hög flexibilitet och lösningar som är anpassade efter deras behov.

 

“Genom att gå med i Cloud OS Network kan vi erbjuda våra kunder Microsofts marknadsledande molnplattform och integrera detta med lokala tjänster som behövs för att möta nordiska marknaden och lagkrav. Det nya erbjudandet ger kunderna flexibla molnlösningar baserade på den senaste Microsofttekniken, samtidigt som kostnaderna hålls till ett minimum” säger Kjell Tore Espeseth, CTO på Telecomputing.

 

Cloud OS Network är ett globalt konsortium av 25 molntjänstleverantörer som tillhandahåller tjänster baserade på Microsofts molnplattform, inklusive Windows Server 2012 R2 med Hyper-V, System Center 2012 R2 och Windows Azure Pack. Leverantörerna stöder Microsofts Cloud OS-vision om en enhetlig plattform för infrastruktur, applikationer och data som sträcker sig över kundernas datacenter, Windows Azure och leverantörers moln.

 

“Vi ser en ökad efterfrågan på flexibla och dynamiska molntjänster och fokuserar på att leverera mervärdestjänster till den nordiska marknaden som uppfyller dessa behov. Genom att gå med i Cloud OS Network kan vi snabbt och kostnadseffektivt utveckla nya tjänster, locka nya kunder och öka intäkterna,” säger Espeseth.

 

Telecomputing kan nu erbjuda gränslösa datacenter för applikationer, data och device management. Det innebär att kunderna kan fokusera på sin kärnverksamhet istället för att hantera ett datacenter.

 

”Genom att kunder kan nyttja en välkänd plattform baserad på Windows Server Hyper-V, System Center och Windows Azure Pack när de arbetar med en driftsleverantörs tjänster, ger Cloud OS Network fördelen av molntjänster på kundens egna villkor. Som partner i Cloud OS Network kan Telecomputing uppfylla kunders växande behov av konkurrenskraftiga hybridlösningar som är både flexibla och
kostnadseffektiva,” säger Anders Wendt, Produktchef Datacenter på Microsoft Sverige.

 

För mer information, vänligen kontakta:

Telecomputing AS : Kjell Tore Espeseth, CTO, tlf : +47 93 48 37 62

Microsoft AB: Anders Wendt, Produktchef Datacenter, andersw@microsoft.com

Get the “Scoop” on Hyper-V during VMworld

VMworld kicks off this week in San Francisco. I happen to know a few loyal VMware IT professionals, and the event is clearly a very exciting time of the year for them – an opportunity to meet other fellow enthusiasts, as well as to learn more about new releases from VMware. But I wonder if they would ever expect to learn more about Microsoft technologies such as Hyper-V and System Center while attending the event. Well, that’s what we’re going to make happen this year, albeit a little creatively.

Before I go into more details, let me first address the most obvious question that VMworld attendees (and IT professionals that are familiar with VMware) are probably asking right now – “why would I want to learn about Hyper-V while attending VMworld?” The answer is simple – to help their careers as technology professionals. Research shows that over 70% of businesses now have more than one virtualization platform in their IT environment. As you can imagine, this trend is opening up opportunities for IT professionals that are familiar with more than one virtualization platform. And if you look at the market data, it is clear that Hyper-V is the one to watch (and try!) . In fact, Microsoft is quickly catching up with VMware in terms of hyper-visor share. IDC data shows that over the last 3 years, Hyper-V has grown usage share 4 times faster than ESX/vSphere.

This progress in the marketplace is no accident. We have gone from strength to strength with successive releases of Windows Server and System Center, and our solution boasts a number of features that surprise IT professionals, especially those that have not looked our way recently. Do you fall in that camp? If so, did you know that:

  • Get the scoop on Hyper-V at VMworldHyper-V in Windows Server 2012 supports twice the physical memory, twice the number of active VMs per host, and 32 times the maximum virtual disk size compared to vSphere 5.1?
  • Windows Server 2012 and System Center 2012 include network and storage virtualization solutions at no extra charge?
  • The storage enhancements in Windows Server 2012 can help you reduce your high availability storage costs by almost half[1]?
  • In a recent benchmarking test, ESG found that a single server running 12 Hyper-V VMs could support the requirements of 48,000 Exchange users[2]?
  • With System Center 2012, you can manage hypervisors from multiple vendors, as well as VMs running in off-premises/public cloud environments?
  • With the software defined networking features in Windows Server and System Center, you can achieve complete VM mobility without having to purchase an expensive add-ons and additional technologies?
  • Using System Center’s integration with Visual Studio, you can isolate root causes of application performance issues right down to the code level, and triage them directly to the development team?

Now, back to VMworld, and our presence there. If you are a VMworld 2013 attendee, and would like to learn more about the progress we have made, we invite you to a free scoop of San Francisco’s finest frozen custard and some casual conversation with our technical experts at our frozen custard stand, located just a block away from Moscone center (201 2nd Street from Noon – 4 pm, to be exact). And needless to say, you are welcome even if you just want the custard!

Varun Chhabra
Senior Product Marketing Manager, Server and Tools


[1] Source: ESG Lab Review Report: Microsoft Windows Server 2012 Storage Performance and Cost Analysis, July 2013

[2] Source: ESG Report: Exchange 2013 on Windows Server 2012 Hyper-V Performance Testing 

I want you to go read the In the Cloud Blog

I am channeling my early days living and breathing as a U.S. Army Officer.  I can’t be any more clear about what I am asking you to do. So, here is your mission:

Subscribe to this this nine-part Blog Series called:          What’s New in Windows Server & System Center 2012 R2.

In all seriousness… This 9 post blog series has had many eye balls from pretty much every organization across the company. It is a culmination of all the content that we discussed at events like TechEd in New Orleans and Madrid.  The intent is to boil down the core scenarios or pillars for our Windows Server and System Center 2012 R2 release into Four Distinct Groups of articles that if you read them all, you would actually be able to light up each one of these scenarios….

I’m not kidding.

Today, we published the second blog post in the series called, What’s New in 2012 R2:  Making Device Users Productive and Protecting Corporate Information.  This is part 1 of 2 where we talk about lighting up Bring your own device, (BYOD) or what we call People Centric IT (PCIT).

This series of posts feature Brad Anderson our VP for Windows Server and System Center along with his leadership team and also the engineering teams that are still hard at work on releasing R2. There is a section at the bottom of every post called NEXT STEPS to all the underlying engineering blogs that light up the scenario.

I really hope you all take the time to go read these posts. We based this plan on tons of feedback that you wanted more integrated content from our Product Teams.

Thanks and I hope you find these posts useful and if you don’t please let me know what you think we should be doing differently,

Kevin Beares
Senior Community Lead – Windows Server and System Center

Get security updates for September

September 11th, 2012 No comments

Microsoft releases security updates on the second Tuesday of every month. 

The bulletin announces the release of 2 security updates:

  • 1 update for Visual Studio
  • 1 update for System Center 

Get the updates.

Watch a video about the updates.

To get more information about security updates and other privacy and security issues delivered to your email inbox, sign up for our newsletter.

HIPAA or PCI or FISMA Baseline? (FAQ)

June 9th, 2011 No comments

A teammate of mine posted a FAQ this week about the GRC space and how it intersects with Microsoft Baselines. Check it out!
http://social.technet.microsoft.com/wiki/contents/articles/grc-baselines-made-easy.aspx

-jeff
PS – for those of you…(read more)

HIPAA or PCI or FISMA Baseline? (FAQ)

June 9th, 2011 No comments

A teammate of mine posted a FAQ this week about the GRC space and how it intersects with Microsoft Baselines. Check it out!
http://social.technet.microsoft.com/wiki/contents/articles/grc-baselines-made-easy.aspx

-jeff
PS – for those of you…(read more)

HIPAA or PCI or FISMA Baseline? (FAQ)

June 9th, 2011 No comments

A teammate of mine posted a FAQ this week about the GRC space and how it intersects with Microsoft Baselines. Check it out!
http://social.technet.microsoft.com/wiki/contents/articles/grc-baselines-made-easy.aspx

-jeff
PS – for those of you…(read more)

HIPAA or PCI or FISMA Baseline? (FAQ)

June 9th, 2011 No comments

A teammate of mine posted a FAQ this week about the GRC space and how it intersects with Microsoft Baselines. Check it out!
http://social.technet.microsoft.com/wiki/contents/articles/grc-baselines-made-easy.aspx

-jeff
PS – for those of you…(read more)

Now available: System Center Configuration Manager Extensions for SCAP Beta

June 1st, 2009 Comments off

If your organization is affected by the Federal Desktop Core Configuration (FDCC) mandate, and the Security Content Automation Protocol (SCAP), then this new Beta program will be of interest to you. The FDCC mandate from the Office of Management and Budget…(read more)

Categories: SCCM, SCM, security, System Center Tags: