This is not a Microsoft sponsored talk, and the term "webinar" makes me cringe, but it might be worth it for testers in the crowd:

"In this Webinar, the primary author of all three books of the "How to break.." series will take you on a journey through the set of techniques for breaking (from a security standpoint) web applications. This talk covers all the normal basics (SQL injection, XSS, etc.) but goes beyond that to more advanced and sinister attacks.
 
Title:   How to Break Web Software
Date/Time:   Tuesday, August 9th at 1:00 pm EDT
Presenter:    Dr. James A. Whittaker, Founder & CTO, Security Innovation
Register:    http://www.securityinnovation.com/webcasts/htbws/index.shtml "