Longtime computer security rivals are joining forces to battle increasingly sophisticated online attacks by cyber criminals.
“The attacks are getting more complex, and if we want to get ahead of attackers the call is to work together in a community approach,” Microsoft Security Response Center director Mike Reavey said.
“One of the things becoming clear is that customers want vendors to work together, and they want information and protection out faster,” he said.
Microsoft used a premier Black Hat security conference taking place this week in Las Vegas as a stage to unveil enhancements to the software giant’s computer defense collaboration efforts.
NEW TOOL
Microsoft released a new tool designed to make it easier for software security firms to model hacker threats and craft defenses.
The Redmond, Washington-based technology firm also unveiled a guidebook to demystify the realm of software security updates and vulnerability patches.
“There is a sea of information out there and we want to help customers navigate those waters,” Reavey said. “The guide walks them through what we do.”
A Microsoft Active Protections Program launched at Black Hat last year has grown to 47 members that share information to minimize time hackers have to craft and launch attacks on newly discovered software weaknesses, Reavey said.
“By working together, the security vendors get free vulnerability information, Microsoft knows their products will be protected from widespread exploitation when the disclosure goes out, and customers win by remaining protected,” TippingPoint security researcher Jason Avery said in a release.
“Everyone wins,” he said.
Microsoft provides computer security allies with an “exploitability index” that gauges the likelihood hackers will target various vulnerabilities to help security companies prioritize responses.
Microsoft also shares lessons learned while analyzing software for flaws.
“What we are seeing is they are working well with us and we are working well together,” Reavey said of allies in the software security world.
VIRUS
Security industry teamwork was crucial in countering a Conficker virus that plagued the Internet early this year.
Microsoft rallied a task force to stamp out Conficker, also referred to as DownAdUp, and the software colossus has placed a bounty of US$250,000 on the heads of those responsible for the threat.
The worm, a self-replicating program, takes advantage of networks or computers that haven’t kept up to date with security patches for Windows.
It can infect machines from the Internet or by hiding on USB memory sticks carrying data from one computer to another.
Conficker could be triggered to steal data or turn control of infected computers over to hackers amassing “zombie” machines into “botnet” armies.
Tools to remove Conficker virus and prevent its spread have been released, but computers without properly updated software could still be vulnerable.
WAITING GAME: The US has so far only offered a ‘best rate tariff,’ which officials assume is about 15 percent, the same as Japan, a person familiar with the matter said Taiwan and the US have completed “technical consultations” regarding tariffs and a finalized rate is expected to be released soon, Executive Yuan spokeswoman Michelle Lee (李慧芝) told a news conference yesterday, as a 90-day pause on US President Donald Trump’s “reciprocal” tariffs is set to expire today. The two countries have reached a “certain degree of consensus” on issues such as tariffs, nontariff trade barriers, trade facilitation, supply chain resilience and economic security, Lee said. They also discussed opportunities for cooperation, investment and procurement, she said. A joint statement is still being negotiated and would be released once the US government has made
Authorities have detained three former Taiwan Semiconductor Manufacturing Co (TMSC, 台積電) employees on suspicion of compromising classified technology used in making 2-nanometer chips, the Taiwan High Prosecutors’ Office said yesterday. Prosecutors are holding a former TSMC engineer surnamed Chen (陳) and two recently sacked TSMC engineers, including one person surnamed Wu (吳) in detention with restricted communication, following an investigation launched on July 25, a statement said. The announcement came a day after Nikkei Asia reported on the technology theft in an exclusive story, saying TSMC had fired two workers for contravening data rules on advanced chipmaking technology. Two-nanometer wafers are the most
NEW GEAR: On top of the new Tien Kung IV air defense missiles, the military is expected to place orders for a new combat vehicle next year for delivery in 2028 Mass production of Tien Kung IV (Sky Bow IV) missiles is expected to start next year, with plans to order 122 pods, the Ministry of National Defense’s (MND) latest list of regulated military material showed. The document said that the armed forces would obtain 46 pods of the air defense missiles next year and 76 pods the year after that. The Tien Kung IV is designed to intercept cruise missiles and ballistic missiles to an altitude of 70km, compared with the 60km maximum altitude achieved by the Missile Segment Enhancement variant of PAC-3 systems. A defense source said yesterday that the number of
Taiwanese exports to the US are to be subject to a 20 percent tariff starting on Thursday next week, according to an executive order signed by US President Donald Trump yesterday. The 20 percent levy was the same as the tariffs imposed on Vietnam, Sri Lanka and Bangladesh by Trump. It was higher than the tariffs imposed on Japan, South Korea and the EU (15 percent), as well as those on the Philippines (19 percent). A Taiwan official with knowledge of the matter said it is a "phased" tariff rate, and negotiations would continue. "Once negotiations conclude, Taiwan will obtain a better
RSS