At 2:00 A.M. on July 13, 2001, Microsoft’s then head of security response got a phone call about a computer worm named “Code Red” that was spreading across computers that connected to the Internet. When the worm quickly spread to hundreds of thousands of computers, Microsoft redoubled its security efforts. But the criminals weren’t going away anytime soon.
Some say that this was the defining moment that began Microsoft’s real battle against worms, viruses, and other malware and the people who create them.
Microsoft learned early on that if it wanted to succeed at building trust with its customers, it could not make security an afterthought when developing its products and services. Thus, the Security Development Lifecycle was born.
Read the full story at SDLstory.com.