No more Microsoft advisory email notifications?

Published: 2014-06-28
Last Updated: 2014-06-28 00:23:42 UTC
by Mark Hofman (Version: 1)
9 comment(s)

We had this sent to us today letting us know there will no longer be emails sent by Microsoft for advanced notifications, etc.  Instead people are to use the RSS feeds or other mechanisms.  

Title: Microsoft Security Notifications
Issued: June 27, 2014

Notice to IT professionals:

As of July 1, 2014, due to changing governmental policies concerning the issuance of automated electronic messaging, Microsoft is suspending the use of email notifications that announce the following:

* Security bulletin advance notifications
* Security bulletin summaries
* New security advisories and bulletins
* Major and minor revisions to security advisories and bulletins

In lieu of email notifications, you can subscribe to one or more of the RSS feeds described on the Security TechCenter website. 

For more information, or to sign up for an RSS feed, visit the Microsoft Technical Security Notifications webpage at

Not quite sure what legislation changes they might be referring to (haven't seen anything yet). Either way if like me you used to receive these emails, you may no longer and you'll have to subscribe to the RSS feed.  

I couldn't find anything on the Microsoft website (let me know if you can), but when following the links for "sign up for email notification" every page visited only has an RSS or web option, no email.  


Mark H  - Shearwater

9 comment(s)


Hm, the only legislation I can think of going into effect July 1st is the Canadian spam act: which basically requires mandatory consent of all recipients…
There's a new anti-spam law going into effect on July 1 in Canada. See for my story on it
Yea that's what we were discussing as well. However recipient of the message was not in Canada also I would have thought that signing up for a notification service would count as consent.
The (indirect) word I have is that it is indeed an (over)reaction to the Canadian law. What I don't understand is why they couldn't simply say "We're resetting the distribution list, everybody has to opt in again". Or create a Twitter feed specific to security bulletins instead of a news aggregation protocol that seems to be falling out of favor. All around odd...
[quote=comment#31303]However recipient of the message was not in Canada[/quote]
One reason why many people are excited about the CASL is that it will likely be impossible for senders to distinguish between recipients in the US and those in Canada. So they will have to make sure their emails comply to CASL even for their US recipients.
One note for those dinosaurs out there like me. I finally got around to figuring out how to solve my issues with RSS (I don't want to have to remember to use an RSS reader, and since I still use mutt as a mail reader, I don't really have RSS support). My solution is that I finally discovered rss2email.
[quote=comment#31305]What I don't understand is why they couldn't simply say "We're resetting the distribution list, everybody has to opt in again"..[/quote]

Really?! When was the last time you had the option to "OPT IN"?!
This might have more to do with Bogus security bulletin emails purporting to be from Microsoft, but actually containing links to Malware infected sites or payloads.

Either way the RSS feeds of interest can be found here:
And now...Microsoft is apprarently reversing course and will reinstate the email notifications:

"In an apparent reversal of its decision, Microsoft now says it will be re-starting its security notifications via email early next month. From a Microsoft’s spokesperson: “On June 27, 2014, Microsoft notified customers that we were suspending Microsoft Security Notifications due to changing governmental policies concerning the issuance of automated electronic messaging. We have reviewed our processes and will resume these security notifications with our monthly Advanced Notification Service (ANS) on July 3, 2014.”"

Diary Archives