Today Microsoft released an out-of-band security update for all versions of Internet Explorer.
Most security updates are released on the second Tuesday of the month. Out-of-band security updates are released before or after a regular monthly update release to address a time-sensitive security issue.
Watch a video about the out-of-band security bulletin release.
If you have automatic updating turned on, the security update will be downloaded and installed automatically and you will not need to take any action.
If you do not have automatic updating turned on, visit Microsoft Update and then see instructions below about how to configure automatic updating.
For more technical information about the update, see:
Turn on automatic updating in Windows 7 and Windows Vista
1. Open Windows Update by clicking the Start button . In the search box, type Update, and then, in the list of results, click Windows Update.
2. In the left pane, click Change settings.
3. Under Important updates, choose the option that you want.
4. Under Recommended updates, select the Give me recommended updates the same way I receive important updates check box, and then click OK. If you're prompted for an administrator password or confirmation, type the password or provide confirmation.
Turn on Automatic Updates in Windows XP (SP3 and SP2)
5. Click Start, and then click Control Panel.
6. Click Automatic Updates.
7. Choose Automatic (recommended).
Here’s the latest scam to float to the top of my e-mail inbox:
Dear customer!
Unfortunately we failed to deliver postal package you have sent on the 7th of December in time because the recipient’s address is erroneous.
Please print out the invoice copy attached and collect the package at our office.
United Parcel Service of America.
United Parcel Service (UPS) reports that this is a scam. If you open the attachment, you might install a virus, spyware, or other malicious software onto your computer. To read more about this and other scams like it, see UPS: Protect Yourself Against Fraud.
To get tips on how to avoid this and other kinds of Internet fraud, see How to reduce the risk of online fraud.
Microsoft CEO Steve Ballmer recently outlined the company’s cloud computing strategy in a speech at the University of Washington in Seattle.
The CEO described how from Windows Azure to Windows Live, Microsoft is embracing cloud technology. In fact, Ballmer said approximately 70 percent of people working for Microsoft today focus on technologies that are designed for the cloud or are “cloud-inspired.”
For more information, see:
· Microsoft Cloud Services
· Privacy in the Cloud – Our Approach
· Microsoft on Cloud Computing – Video Gallery
Microsoft releases security updates on the second Tuesday of every month. Today Microsoft released 1 new security update for Microsoft Windows and 1 new security update for Microsoft Office.
Get the updates
To download the update, visit the Microsoft Update Web site. If you have automatic updating turned on, your computer will update and install this security update.
Read more about the updates.
Watch a video about the updates.
Here's another form of Internet fraud that combines a variety of other common scams-social engineering, fake security software, and phishing. Cybercriminals have started calling people on the telephone, claiming to be from Microsoft, and offering to help solve their computer problems. Once cybercriminals have gained a victim's trust, they can do one or more of the following: Trick people into installing malicious software on their computer. Take control of a victim's computer remotely and adjust settings in order to leave the computer vulnerable. Request credit card information so that cybercriminals can bill for the phony services. Microsoft will not make unsolicited phone calls to help you with your computer. If you receive a phone call like this, hang up. If you think you might be a victim of fraud, you can report it. For more information, see What to do if you've responded to a phishing scam. For more information about how to recognize a phishing scam, see Avoid scams that use the Microsoft name fraudulently.
Here's another form of Internet fraud that combines a variety of other common scams-social engineering, fake security software, and phishing.
Cybercriminals have started calling people on the telephone, claiming to be from Microsoft, and offering to help solve their computer problems. Once cybercriminals have gained a victim's trust, they can do one or more of the following:
Microsoft will not make unsolicited phone calls to help you with your computer. If you receive a phone call like this, hang up.
If you think you might be a victim of fraud, you can report it. For more information, see What to do if you've responded to a phishing scam.
For more information about how to recognize a phishing scam, see Avoid scams that use the Microsoft name fraudulently.
If you file your taxes over the Internet, it's important to remember some common sense rules about how to protect your privacy and help prevent identity theft.
The information in your return contains everything that an unscrupulous third party needs to steal your identity, file tax returns on your behalf, steal your refund, and more.
There are many scams associated with filing your taxes. To help avoid some of the more common scams, you should:
Be realistic. If it sounds too good to be true, it probably is. From companies that promise to file your taxes for free, to Web sites that claim you don't have to pay income tax because it's unconstitutional--keep an eye out for deliberately misleading statements.
Be informed. Before you file your taxes online, spend a little time at the Web site for the Internal Revenue Service (IRS). Familiarize yourself with how to use the Internet to file your taxes, and with how the official IRS Web site looks. For information on the latest threats, visit the IRS Tax Fraud Alert page.
Never respond to unsolicited e-mail offers or requests for information. The IRS does not use e-mail to communicate any personal information, and legitimate tax-preparation companies should not approach you with unsolicited e-mail.
These messages are most likely identity-theft phishing scams. For more information, read How to recognize phishing e-mails or links. If you've been contacted by the IRS, you can call 1-800-829-1040 to find out if the contact was authentic.
To help protect against phishing scams, use Internet Explorer 8 and turn on SmartScreen Filter.
Make sure the Web site uses secure technology. If you’re filing your taxes on the Web, make sure that the Web address begins with https (for example, https://www.tailspintoys.com/) and check to see if a tiny locked padlock appears at the bottom right of the screen.
If you use Internet Explorer 8 you'll get another layer of protection with sites that use Extended Validation (EV) SSL Certificates. The address bar should turn green to alert you that there is more information available about the Web site. The identity of the Web site owner is also displayed on the address bar.
An EV SSL certificate not only helps ensures that the communication with a Web site is secure, but also includes information about the owner of the Web site, which has been identified by the Certification Authority (CA) issuing the SSL Certificate.
Choose your tax-preparation software with care. Ask people you trust for software recommendations.
Seek the advice of the IRS or a trusted tax professional before you participate in any tax-reduction scheme. Many offers to greatly reduce or eliminate your income tax payments are false.
If you try to take advantage of these so-called tax "opportunities," you could be wasting your money and committing a crime.
•
If you think there's another person using your Social Security number to file income taxes, call the Social Security Administration at (800) 772-1213.
If you suspect a company or an individual of committing tax fraud or not obeying tax laws, call the IRS at (800) 829-0433.
To find out how to report specific abuse, see Reporting Abusive Shelters, Fraud & Unscrupulous Tax Preparers.
For more information about reporting online fraud, see What to do if you’ve responded to a phishing scam.
Microsoft announced a preview of new technology called U-Prove, designed to protect privacy on the Internet.
U-Prove tokens make it possible for people to disclose minimal amounts of identifying information when they access applications and services.
The announcement was made by Scott Charney, corporate vice president of the Microsoft Trustworthy Computing Group in his keynote speech at the RSA Conference in San Francisco. Charney discussed U-Prove and other technological innovation that Microsoft is heralding as part of its End to End Trust vision.
To watch a video or read a transcript of the speech, see the Microsoft RSA Web site.
For more information and to watch a video about U-Prove, see Microsoft U-Prove technology release: open standards and Community Technology Preview (CTP).
Last month the National Cyber Security Alliance (NCSA) released a study about how cybersecurity and cybersafety are taught in United States schools. Researchers interviewed more than 1,000 teachers, 400 school administrators, and 200 technology coordinators.
Microsoft sponsored the study (“The State of K–12 Cyberethics, Cybersafety and Cybersecurity Curriculum in the United States”) which revealed that only 35 percent of United States schools require cyberethics, cybersafety, and cybersecurity in their curriculums. And only 27 percent of the teachers in the United States educate students about important topics like the safe use of social networks.
Read the report.
With current state of the economy and with education budgets being reduced, it’s not surprising that teachers find it difficult to teach cybersecurity. Microsoft wants to help by providing free resources for educators, care givers, and parents.
· Microsoft: Protect your family
· Security brochures and fact sheets
· Online safety and security event guide
· Security PowerPoint presentation
Microsoft just announced that support is ending for some older versions of the Windows operating system (OS).
If you're running one of these versions after support ends, you won't get security updates for Windows. This means that your computer will be at risk for viruses, spyware, and lot of other malicious software.
· The newest operating system from Microsoft is Windows 7. To learn more, see Windows 7: new and improved security features.
· If you want the most updated version of Windows Vista, get Windows Vista Service Pack 2 (SP2).
· If you want the most updated version of Windows XP, get Windows XP Service Pack 3 (SP3).
For more information, see What does it mean if my version of Windows is no longer supported?
If you don’t know what version of Windows you’re running, see Which version and service pack am I running?