Security


Tech Industry Tackles New CPU Attacks that Mimic Spectre and Meltdown

Two new speculative execution side-channel attacks disclosed this week share similarities to the "Meltdown" and "Spectre" attacks that were first reported in January.

Advanced Threat Protection Rolls Out for Azure SQL

Microsoft has expanded its sprawling Advanced Threat Protection product line with "a new security package" designed for Azure SQL Database.

Microsoft Releases Secure Score, Attack Simulator and More at RSA

Microsoft announced a raft of security improvements at the RSA security conference last week affecting its Security Graph, Advanced Threat Protection ATP, Information Protection and Conditional Access products -- and more.

Spring Windows 10 Release To Allow Password-Free Sign-Ins

Microsoft is previewing a new passwordless sign-in feature based on FIDO2 that's expected to arrive with the Windows 10 spring release.

CPU Fixes for Spectre Variant 2 Roll Out from AMD

Chipmaker AMD recently issued microcode updates to its OEM partners that protect Windows 10 systems against Spectre variant 2 attack methods.

Intel's Spectre Patch Rollout Will Skip Some Processors

Intel's guidance publication for April indicates that it isn't planning to release microcode updates for some of its processors to prevent Spectre attack methods.

Microsoft Takes Wraps Off 'Project VAST' for Security

Microsoft recently unveiled the newest addition to its security arsenal: Project VAST, a tool designed to surface security problems visually.

AMD Readies Patches for Its Own Processor Security Hole

Recently publicized processor security issues have chip maker AMD scrambling to develop firmware updates.

Microsoft Offers Bounty for Meltdown- and Spectre-Like Bugs

Microsoft is offering security researchers cash rewards in exchange for information on "speculative execution" side-channel CPU vulnerabilities via a new bug bounty program.

Microsoft Greenlights More 'Spectre' Microcode Updates for Windows 10

Microsoft last week expanded some Spectre microcode approvals, as well as lifted an anti-virus compatibility check for some Windows 10 version 1709 devices.

Microsoft Offers Active Directory Password Best Practices

Microsoft recently outlined some best practices to protect user identities in Windows Server Active Directory Federation Services or Azure Active Directory.

Microsoft Gives Some Intel 'Spectre' Security Updates the Go-Ahead

Microsoft has greenlit some Intel Skylake microcode updates for the Windows 10 Fall Creators Update (version 1709) that address Spectre variant 2 types of attacks.

Microsoft Launches Cloud-Based Security Analysis Tool

Azure Advanced Threat Protection, Microsoft's new cloud-based service for detecting and analyzing security incidents, is now production-ready for organizations.

Microsoft Integrates Intune with Pradeo Security for Android, iOS

Microsoft Intune users can expect some new security protections for their Android and iOS devices through a recently announced partnership between Microsoft and security firm Pradeo.

Intel's Meltdown Damage Control Continues with Microcode Updates

In its recently updated "Microcode Revision Guidance" document, Intel shared details about the progress of its firmware patches to address potential Meltdown and Spectre attack scenarios.

Microsoft Launches Compliance Manager, Azure Information Protection Scanner

Microsoft recently rolled out its Compliance Manager dashboard and the Azure Information Protection Scanner tool for Microsoft 365 product licensees.

Microsoft Releases Security Resources for Office, Intune

Microsoft this month announced final Office security baseline materials, advance notice of a coming Intune security change, and tips on combating e-mail name spoofing.

Microsoft Adds Meltdown and Spectre Features to Windows Analytics

IT pros can now check on the status of their client device Meltdown and Spectre protections using Windows Analytics, Microsoft announced this week.

Microsoft Axing TLS 1.0 Support in Office 365 This Fall

Starting Oct. 31, 2018, Microsoft will drop support for the Transport Layer Security (TLS) 1.0 and 1.1 protocols in Office 365.

Windows 7, Windows 8.1 To Get Windows Defender ATP Service

Windows 7 and Windows 8.1 clients will soon be able to take advantage of Windows Defender Advanced Threat Protection (ATP), a post-breach detection service originally associated with Windows 10 clients.

SharePoint Watch

Sign up for our newsletter.

I agree to this site's Privacy Policy.