Computerworld: Someone has leaked sample exploit code to hackers, and Microsoft isn't happy about it.
The story begins in March of 2011 when Italian security researcher Luigi Auriemma found a security vulnerability in Windows Remote Desktop Protocol. Auriemma passed the information on to HP TippingPoint's Zero Day Initiative, a bug bounty program. The HP group then created a sample exploit, which they passed on to Microsoft. Microsoft shared the exploit with members of the Microsoft Active Protection Program (MAPP), security vendors who have signed a strict non-disclosure agreement. However, it appears that someone violated that agreement because Auriemma found the exploit code in use on a Chinese website.
According to Microsoft's Yunsun Wee,"Microsoft is actively investigating the disclosure of these details and will take the necessary actions to protect customers and ensure that confidential information we share is protected pursuant to our contracts and program requirements."
One of the ways around the issues of security and control that make some businesses wary of cloud computing is to build a private cloud -- one that remains within the corporate firewall and is wholly controlled internally. Private clouds also increase the agility of IT an organization's IT infrastructure and make it easier to roll out new technology projects. Download this eBook to get the facts behind the private cloud and learn how your organization can get started.