Now that Windows 7 is available, a recent blog by Chester Wisnieski (who works at security vendor Sophos), entitled Windows 7 vulnerable to 8 out of 10 viruses, which has stirred some interest.

Here's a quick summary for those who missed Chester's blog. During a test SophosLabs conducted, they subjected Windows 7 to "10 unique [malware] samples that arrived in the SophosLabs feed." They utilized a clean install of Windows 7, using default settings (including the UAC defaults), but did not install any anti-virus software. The end result was 8 of the 10 malware samples successfully ran and the blog proclaims that "Windows 7 disappointed just like earlier versions of Windows." Chester's final conclusion? "You still need to run anti-virus on Windows 7." Well, we agree: users of any computer, on any platform, should run anti-virus software, including those running Windows 7.

Clearly, the findings of this unofficial test are by no means conclusive, and several members of the press have picked apart the findings, so I don't need to do that. I'm a firm believer that if you run unknown code on your machine, bad things can happen. This test shows just that; however, most people don't knowingly have and run known malware on their system. Malware typically makes it onto a system through other avenues like the browser or email program. So while I absolutely agree that anti-virus software is essential to protecting your PC, there are other defenses as well.

Let me recap some of the Windows 7 security basics. Windows 7 is built upon the security platform of Windows Vista, which included a defense-in-depth approach to help protect customers from malware. This includes features like User Account Control (UAC), Kernel Patch Protection, Windows Service Hardening, Address Space Layout Randomization (ASLR), and Data Execution Prevention (DEP) to name just a few. The result, Windows 7 retains and refines the development processes, including going through the Security Development Lifecycle, and technologies that made Windows Vista the most secure Windows operating system ever released.

Beyond the core security of Windows 7, we have also done a lot of work with Windows 7 to make it harder for malware to reach a user's PCs in the first place. One of my favorite new features is the SmartScreen Filter in Internet Explorer 8. The SmartScreen Filter was built upon the phishing protection in Internet Explorer 7 and (among other new benefits) adds protection from malware. The SmartScreen Filter will notify you when you attempt to download software that is unsafe - which the SophosLabs methodology totally bypassed in doing their test.

So while I'm not a fan of companies sensationalizing findings about Windows 7 in order to sell more of their own software, I nevertheless agree with them that you still need to run anti-virus software on Windows 7.  This is why we've made our Microsoft Security Essentials offering available for free to customers. But it's also equally important to keep all of your software up to date through automatic updates, such as through the Windows Update service. By configuring your computers to download and install updates automatically you will help ensure that you have the highest level of protection against malware and other vulnerabilities.

Join Stephen Elop, President of Microsoft’s Business Division, and Robert Wahbe, Corporate Vice President of the Server and Tools Marketing Group at Microsoft, for the TechEd Europe 2009 keynote on Monday November 9th starting at 6:30am Pacific. During the keynote, Stephen and Robert will discuss the state of IT and the new generation of business solutions from Microsoft that will help customers reach their full business potential. Following the keynote at 8:00am Pacific there will be a post-keynote Q&A with Chris Capossela, Senior Vice President of the Information Worker Product Management Group, Bob Kelly, Corporate Vice President of Infrastructure Server Marketing, and Tami Reller, Corporate Vice President and Chief Financial Officer of Windows and Windows Live.

You’ll be able to watch the keynote and participate in the post-keynote Q&A via the Microsoft TechEd Global Press Room. Additionally, you can follow the excitement on Twitter by using the hashtag #TEE09.

Volume seven of the Microsoft Security Intelligence Report (SIRv7) - part of Microsoft's  commitment to providing an unparalleled level of security intelligence to help keep individuals and organizations better informed and to maximize security investments - was released today and there are a couple of tidbits in the report that caught my attention that I thought I would pass on. As a reminder, the SIR is published by Microsoft twice per year and looks at the data and trends observed in the first and second halves of each calendar year.

The first thing that struck me while reading through the report is that for the first time, the SIR shares some high-level security best practices from countries that have consistently exhibited low malware infection. For example, Japan, Austria and Germany's infection rates remained relatively low during the first half of this year.

So how do these regions keep their customers and resources safe from cyber threats?  Japan's infection rates remain relatively low is due in large part to collaborations like the Cyber Clean Center. The Cyber Clean Center is a cooperative project between ISPs, major security vendors and Japanese government agencies aimed at educating users on how to keep their PCs infection free. Austria has implemented strict IT enforcement guidelines to lower piracy rates and this, along with strong ISP relationships and fast Internet lines, has helped ensure the ecosystem is kept up to date with security patches. Germany has also leveraged collaboration efforts with its CERT and ISP communities to help identify and raise awareness of botnet infections and, in some cases, quarantine infected computers.

The other thing that stood out to me was the graph below. This graph shows the effectiveness of automatic updating and shows what happened to the trojan downloader family Win32/Renos once Microsoft released a signature update for Windows Defender via Windows Update and Microsoft Update. Within three days, enough computers had received the new signature update to reduce the error reports from 1.2 million per day to less than 100,000 per day worldwide! To me this shows how important it is for users and organizations to utilize automatic updates to help prevent the spread of malware! 

The report also underscores some of the trends that we have seen from previous versions of the report: for example, the infection rate for Windows Vista is significantly lower than that of its predecessor, Windows XP. It also tells me that the higher the service pack levels of an OS, the lower the infection rate. Once again, these items help point out that you need to keep your software up-to-date. With Windows 7 now available it might be a good time to look at upgrading your OS!

Take a look at the full report at http://www.microsoft.com/sir and use the information to help protect yourself, your networks, and your users.

Over the past months, my colleagues from the Microsoft Solution Accelerators team have been hard at work to develop the planning and design guidance for DirectAccess. Today, we are pleased to announce the release of the Infrastructure Planning and Design (IPD) Guide for DirectAccess.

In case you’ve been haven’t heard, the new DirectAccess feature in Windows 7 and Windows Server 2008 R2 now gives you the ability to allow remote users to access enterprise shares, websites, and applications without the need to connect to virtual private network (VPN) systems. DirectAccess also gives IT managers like you the ability to update remote PCs anytime they are connected to the Internet, without the user being logged on to the machine.

As you prepare to take advantage of DirectAccess, your first step should be about designing your infrastructure to support this access feature that provides different security options. But how do I know where to start?

This IPD Guide for DirectAccess covers four key steps in the design process for DirectAccess to help you just that.

The IPD Guide for DirectAccess is a member of the Windows 7 Solution Accelerators family that are designed to help you accelerate the planning, deployment and operations of Windows 7 and features such as DirectAccess. Download this guide today and get started!

Next Steps

1. Download the IPD Guide for Direct Access.
2. Download other best practices from the Infrastructure Planning and Design series for products such as Windows Server 2008 R2, Hyper-V, App-V, SQL Server 2008, Exchange Online, SharePoint Online, System Center and much more at the IPD home page on TechNet.
3. Learn how DirectAccess enables remote users to access the corporate network anytime they have an Internet connection, without the extra step of initiating a virtual private networking (VPN) connection. Find out how to use DirectAccess to provide a more secure and flexible corporate network infrastructure in which computers on and off the network can remain healthy, managed, and updated.
4. Visit the Deployment Zone on Springboard to learn more about Direct Access.
5. Check out other Windows 7 Solution Accelerators.

Gartner Symposium/ITxpo 2009, the industry's largest and most important annual gathering of CIOs and their senior IT leaders is taking place this week in Orlando, Florida.

During this year’s event, which will focus on how business technology can help customers return to growth by balancing cost optimization and risk mitigation, Microsoft will be helping customers to understand how they can realize the benefits of Windows 7 through the following activities and sessions:

Windows 7 Early Adopter Customer Panel: Tuesday, October 20th, 2009   12:30PM - 1:30PM ET (Moderated by Michael A. Silver - Gartner)

A panel of Windows 7 early adopters will discuss Windows 7 planning, deployment tips and rollout plans. During the panel, attendees will share their experience on planning for a successful deployment and the immediate results they received deploying Windows 7. Featured Gartner Research VP & Distinguished Analyst Michael Silver will facilitate the panel discussion. Please visit Gartner.com for a replay of this webcast on October 22nd.

Windows 7 Unplugged-- Tips From Microsoft's CIO Office: Tuesday, October 20th, 2009 2:00Pm - 2:20PM ET (Rick Merrifield - Microsoft)

In this interactive session, the Chief Architect in Microsoft’s IT department will share insider tips on how to plan, pilot and rollout Windows 7. Learn how your organization can benefit from applying the Windows Optimized Desktop to increase end user productivity, enhance security and reduce costs by automating IT management.

Windows Optimized Desktop-- Windows 7 and Microsoft Desktop Optimization Pack: Wednesday, October 21st  3:30PM -4:30pm ET (Gavriella Schuster - Microsoft)

The Windows Optimized Desktop is designed to help with today’s imminent IT challenges while ensuring your future success. Come learn how Microsoft Windows 7 and the Microsoft Desktop Optimization Pack 2009 R2 together provide better user productivity, stronger data protection, security and PC management and automation improvements that can help you  save costs and improve IT efficiency.

Mastermind Keynote with Stephen Elop, President, Microsoft Business Division Thursday,  October 22nd 11:00am - 11:45am (Moderated by Neil MacDonald and Brian Gammage - Gartner)

Gartner analysts Neil MacDonald and Brian Gammage will moderate an interview with Stephen on a variety of topics top of mind for Symposium attendees. As president of the Microsoft Business Division, Stephen oversees the Information Worker, Microsoft Business Solutions and Unified Communications Groups here at Microsoft and is a member of the company's senior leadership team that sets overall strategy and direction for the company.

Windows 7 Hand On Labs— Monday, October 19th - Thursday,  October 22nd Various times (Various presenters)

30 minute, proctor led, interactive sessions where attendees can experience the following features of Windows 7: Windows 7 UI features, Internet Explorer 8 & Web Slices, Problem Steps Recorder, Med-V (using Internet Explorer to launch a Med-V web site), and using BitLocker which will include a 1GB key drive to activate BitLocker as a giveaway, with pre-loaded content including the current product guide and the Microsoft Optimized Desktop datasheet.

Thank you to all of you who tuned in and posted or sent in questions for our most recent roundtable and made it another huge success. We will be posting all the questions and answers in the next few days so keep an eye out.

Missed the VRT? Here is the promo of what you can look forward to when the replay become available later this week.

To be the first to know when the replay goes live, follow our Twitter feed @MSSpringboard or watch for our blog post here.