iTnews
  • Home
  • News
  • Technology
  • Security

Photos: Inside Microsoft's Security War Room

By Stilgherrian .
Jun 30 2010 6:00AM
Follow google news

iTnews tours Microsoft's Security Response Centre.

Photos: Inside Microsoft's Security War Room
Linked gallery: Inside Microsoft's Security Response Center

When Microsoft finds a critical security flaw, the Microsoft Security Response Centre (MSRC) goes to war. So naturally they've got a War Room.

"We get over 150,000 emails to secure@microsoft.com a year," says MSRC director Mike Reavey. "A lot of that is spam. Some of that is 'My Hotmail account is locked out'. [But] out of those, about a thousand investigations result."

Critical vulnerabilities trigger the Software Security Incident Response Plan (SSIRP). Anyone with relevant knowledge is summoned to the War Room [see photo gallery, top right], physically or virtually, to work the problem around the clock.

"Anything that has a name. Blaster, Sasser, Slammer, Zotob. Anything that's an out-of-cycle release, you can assume one of these processes is occurring back at Redmond," Reavey told iTnews.

The Emergency Engineering Team War Room is unassuming.

A long conference table with power, network and A/V ports seats twenty. Six low chairs surround a coffee table. Red LED clocks show the time zones: Pacific, Mountain, Central, Eastern, London, Japan.

One monitor shows a world map with the day/night boundary shown in real time. The other four monitors show the MSRC logo. For now.

The few personal touches include signed basketball singlets from previous teams and big red button marked "easy".

There's a framed photograph of Harvey Keitel as Pulp Fiction's Winston Wolf, the fixer who remains calm in a crisis as others panic.

Next door is the Emergency Communications Team War Room, separated by a collapsible wall.

"The engineering team can focus on making sure we understand the facts. The communications team can take a complex message and make it simple," says Reavey.

Interplay between the two teams helps ensure the messages to customers aren't overly-complex but still include the important nuances.

Behind a black curtain sit the servers for what is presumably the secure network for developing and testing patches. Around twenty ordinary boxes are lined up on three white shelves, a mix of Dell, Compaq and unbranded machines.

No questions answered about them, though. And no photographs.

Stilgherrian travelled to Redmond, Washington, as a guest of Microsoft.

Add iTnews as your trusted source

Add iTnews As Your Trusted Source Add iTnews As Your Trusted Source
Got a news tip for our journalists? Share it with us anonymously here.
Tags:
bugsmicrosoftsecuritysoftwarevulnerability

Related Articles

  • Aurora Energy to modernise its ERP system Aurora Energy to modernise its ERP system
  • Anthropic releases Mythos-class model for public use Anthropic releases Mythos-class model for public use
  • Perth Airport to deploy 70 IT, OT systems for new terminal Perth Airport to deploy 70 IT, OT systems for new terminal
  • Apple bumps up security in fresh operating system releases Apple bumps up security in fresh operating system releases
Join our WhatsApp Channel

Partner Content

The hidden economics of AI: Why token usage matters more than you think
Partner Content The hidden economics of AI: Why token usage matters more than you think
Take control of your connectivity with Telstra’s Adaptive Networks Centre
Partner Content Take control of your connectivity with Telstra’s Adaptive Networks Centre
CommBank creates opportunities for technologists to upskill with frontier AI companies
Partner Content CommBank creates opportunities for technologists to upskill with frontier AI companies
AI is delivering business value today
Partner Content AI is delivering business value today

Sponsored Whitepapers

Agile in the AI Era: why projects still fail
Agile in the AI Era: why projects still fail
When Technology Becomes the Blocker: Unlocking Real Outcomes from AI and Cloud
When Technology Becomes the Blocker: Unlocking Real Outcomes from AI and Cloud
High-volume data sources for AI-driven security analytics
High-volume data sources for AI-driven security analytics
How healthcare organisations can get more value from cloud
How healthcare organisations can get more value from cloud
1 in 3 companies lose SaaS data. Here’s how to prevent it
1 in 3 companies lose SaaS data. Here’s how to prevent it

Events

  • iTnews State of Security Breakfast iTnews State of Security Breakfast
  • iTnews State of Data & AI Breakfast iTnews State of Data & AI Breakfast
  • The 2026 iAwards The 2026 iAwards
  • Integrate 2026 Integrate 2026
  • Security Exhibition & Conference Security Exhibition & Conference
Share on Facebook Share on LinkedIn Share on Whatsapp Email A Friend

Most Read Articles

Anthropic opens Claude Mythos Preview AI program to Australia

Anthropic opens Claude Mythos Preview AI program to Australia
Defence says Palantir is "sandboxed" in its environment

Defence says Palantir is "sandboxed" in its environment
Services Australia describes fraud, debt-related machine learning use cases

Services Australia describes fraud, debt-related machine learning use cases
Researchers build self-replicating AI worm with BYO LLM

Researchers build self-replicating AI worm with BYO LLM
techpartner.news logo
Sydney-based AI-cloud waste startup raises $3m
Sydney-based AI-cloud waste startup raises $3m
Brennan uses NiCE to modernise its contact centre
Brennan uses NiCE to modernise its contact centre
Impact Awards: Tecala slashes customer response times for fintech IQumulate
Impact Awards: Tecala slashes customer response times for fintech IQumulate
Interactive introduces private cloud platform
Interactive introduces private cloud platform
Digital61 expands cybersecurity portfolio
Digital61 expands cybersecurity portfolio
All rights reserved. This material may not be published, broadcast, rewritten or redistributed in any form without prior authorisation.
Your use of this website constitutes acceptance of nextmedia's Privacy Policy and Terms & Conditions.