WHy doesn't Microsoft provide contact for security issues

TheMSsForum.com: The Microsoft Software Forum

The bogus MS security bulletin is making the rounds
again, and I wanted to report the address it came from so
that Microsoft could track them down, but there is no way
that I can find to post security concerns to them (nor
any way that I can see to actually CONTACT MS people in
any way.) Just in case some one who might chance to
read this has a clue on how to pass it on. Here is the e-
mail address. Seems to be fairly arrogant behavior in
not wanting to talk to anyone about things that affect
their product

Internet Security Center

dvyvhtantfrea_yfpury@newsletters.ms.com
Top

Re: WHy doesn't Microsoft provide contact for security issues by Lanwench

Lanwench
Tue Jan 27 23:09:45 CST 2004

Not sure, but note that it is highly unlikely that they are unaware of this
problem. The spoofed sender name is not relevant....


Jim Gerretson wrote:
> The bogus MS security bulletin is making the rounds
> again, and I wanted to report the address it came from so
> that Microsoft could track them down, but there is no way
> that I can find to post security concerns to them (nor
> any way that I can see to actually CONTACT MS people in
> any way.) Just in case some one who might chance to
> read this has a clue on how to pass it on. Here is the e-
> mail address. Seems to be fairly arrogant behavior in
> not wanting to talk to anyone about things that affect
> their product
>
> Internet Security Center
>
> dvyvhtantfrea_yfpury@newsletters.ms.com


Top

Re: WHy doesn't Microsoft provide contact for security issues by Ken

Ken
Tue Jan 27 23:24:41 CST 2004

The from: addresses are usually spoofed. If there was any easy way to track
this down, it would have been done already, and we wouldn't have this
never-ending problem!

Probably your best bet is to:
a) look in the headers of the email message to track down the IP address
that forwarded the message onto your server
b) find out which ISP is responsible for that IP block (using Whois)
c) let the ISP know that one of their customers is infected and sending out
viruses. Have them talk to their customer.

Cheers
Ken

"Jim Gerretson" <jlgerre@comcast.net> wrote in message
news:536e01c3e558$91eda820$a101280a@phx.gbl...
: The bogus MS security bulletin is making the rounds
: again, and I wanted to report the address it came from so
: that Microsoft could track them down, but there is no way
: that I can find to post security concerns to them (nor
: any way that I can see to actually CONTACT MS people in
: any way.) Just in case some one who might chance to
: read this has a clue on how to pass it on. Here is the e-
: mail address. Seems to be fairly arrogant behavior in
: not wanting to talk to anyone about things that affect
: their product
:
: Internet Security Center
:
: dvyvhtantfrea_yfpury@newsletters.ms.com


Top

Re: WHy doesn't Microsoft provide contact for security issues by Andrew

Andrew
Wed Jan 28 05:25:10 CST 2004

> "Jim Gerretson" <jlgerre@comcast.net> wrote in message
> news:536e01c3e558$91eda820$a101280a@phx.gbl...
>
> The bogus MS security bulletin is making the rounds
> again, and I wanted to report the address it came from so
> that Microsoft could track them down, but there is no way
> that I can find to post security concerns to them (nor
> any way that I can see to actually CONTACT MS people in
> any way.) Just in case some one who might chance to
> read this has a clue on how to pass it on. Here is the e-
> mail address. Seems to be fairly arrogant behavior in
> not wanting to talk to anyone about things that affect
> their product
>
> Internet Security Center
>
> dvyvhtantfrea_yfpury@newsletters.ms.com



You mean APART from the FREE number to call for virus issues?

It's listed in large letters on the left of this page, and others:
http://www.microsoft.com/security/

In case you can't see the image for some reason, the number is

***** 1-866-PCSAFETY *****

Hope that helps,

Andrew


--
AZC
MVP


Top

Re: WHy doesn't Microsoft provide contact for security issues by Sanjay

Sanjay
Wed Jan 28 12:17:50 CST 2004

MS does provide a telephone number to get help on and to report
security-related issues. The number (for US & Canada) is 866-PCSAFETY.

Before calling that number, however, it would a good idea to check
http://www.microsoft.com/security and see what information is already
available there. This site contains a prominent link to the PCSAFETY number
and a lot of other useful security info.

Good Luck.

This posting is provided "AS IS" with no warranties, and confers no rights.

"Jim Gerretson" <jlgerre@comcast.net> wrote in message
news:536e01c3e558$91eda820$a101280a@phx.gbl...
> The bogus MS security bulletin is making the rounds
> again, and I wanted to report the address it came from so
> that Microsoft could track them down, but there is no way
> that I can find to post security concerns to them (nor
> any way that I can see to actually CONTACT MS people in
> any way.) Just in case some one who might chance to
> read this has a clue on how to pass it on. Here is the e-
> mail address. Seems to be fairly arrogant behavior in
> not wanting to talk to anyone about things that affect
> their product
>
> Internet Security Center
>
> dvyvhtantfrea_yfpury@newsletters.ms.com


Top