Microsoft Selects Shavlik Technologies to Provide Ongoing Vulnerability Assessment for Earlier Versions of Its Software

Business Wire, May 7, 2007

Microsoft Customers Can Go Directly to Shavlik for Uninterrupted Scanning and Detection of Security Vulnerabilities in Applications Not Supported by Microsoft Update

ST. PAUL, Minn. -- Shavlik Technologies announced today that Microsoft Corporation (Nasdaq:MSFT) has selected Shavlik to provide Microsoft's customers with vulnerability assessment capabilities for those Windows systems that have traditionally relied upon Microsoft Baseline Security Analyzer (MBSA) V1.2.1. Microsoft has retired MBSA V1.2.1 as of April 30, 2007, which currently provides vulnerability scanning and detection for several older Microsoft products not supported by Windows Server Update Services (WSUS).

Shavlik NetChk Protect Limited for MBSA is now available for immediate download at no cost to Microsoft customers, and just like MBSA today, will identify needed security updates. Customers will also be able to upgrade to Shavlik's enterprise versions of NetChk that offer more robust tools for full vulnerability management lifecycle needs such as automated remediation, intelligent patch targeting, and granular policy and compliance reporting.

"Shavlik Technologies was an easy choice for Microsoft to go to for providing continuity in supporting the complete detection for customers who are using some of the older products," said Stephen Toulouse, Group Program Manager at Microsoft. "Shavlik has an intimate knowledge of security detection requirements since they helped develop the first version of MBSA for Microsoft."

Shavlik and Microsoft have a history of working together to ensure a more secure computing environment, as Shavlik Technologies originally developed the core scanning and detection technology used as the basis for MBSA. First released by Microsoft as two separate tools back in 2001, as MBSA and HFNetChk, this capability was considered groundbreaking as Microsoft was the first OS vendor to offer network patch check tools.

"We are pleased to be able to continue our security relationship with Microsoft and offer customers solutions that complement and enhance the capabilities offered by Microsoft Update," said Mark Shavlik, CEO of Shavlik Technologies. "Microsoft and Shavlik have worked together to ensure that we provide users of older products a single, familiar and easy-to-use solution to assess their security state."

About Shavlik Technologies

Shavlik Technologies, LLC is the market leader in the simplification of complex enterprise network configuration, compliance and security. Shavlik's solutions support an organization's need for Active Vulnerability Management - the automated and continual process for preventing, detecting, and removing critical security threats from corporate networks while maintaining policy-driven security configurations.

Founded in 1993, Shavlik Technologies is the de facto industry standard for patch management solutions. With more than 10,000 customers worldwide, Shavlik is trusted to provide the most up-to-date security patch data and the most comprehensive discovery capability to maintain a customer's overall network security integrity. Company CEO Mark Shavlik is a founder of the patch management industry as he teamed with Microsoft in 1999 to create the patch engine for Microsoft Base Security Analyzer (MBSA). This technology is still used by an installed base of millions of users across the globe. Shavlik also licenses its technology to more than 20 leading security companies such as IBM, BMC, Symantec and iPass. Shavlik's products have won multiple awards from leading industry trade journals. For more information, contact Shavlik at www.shavlik.com or call 1-800-690-6911 or 1- 612-331-6737.

Shavlik Technologies is a registered trademark in the United States and certain other countries, of Shavlik Technologies. Additional Shavlik product names are either registered trademarks or trademarks of Shavlik Technologies. All other trademarks mentioned in this document are the property of their respective owners.