Security


Microsoft Tool for Scanning Third-Party Software Gets Update

Microsoft announced Attack Surface Analyzer 2.0 this week, describing changes in the updated -- and now open source -- software.

Security Roundup: Mircrosoft Patches Arrive as New Intel CPU Flaw Surfaces

Tuesday marked several important security developments for IT pros.

Microsoft Shares Security Tips, Earns FIDO2 Nod for Windows Hello

With system administrators increasingly being targeted by hackers, Microsoft this week shared some security tips for organizations.

Microsoft Readies BitLocker Management Features for SCCM, Intune

IT pros managing BitLocker-encrypted drives on devices will soon have access to some new capabilities, Microsoft announced this week.

Microsoft (Partially) Releases Threat Experts Security Service

A key component of Microsoft's new threat-hunting service for organizations is now ready for use in production environments.

Microsoft, Docker Tout Security Measures After Breach

A security breach that was discovered by Docker last week did not compromise Microsoft container images hosted on Docker Hub, Microsoft said recently.

Microsoft Advising Against Password Expirations for Securing Windows

Microsoft is making the case against security policies that enforce periodic password expirations for Windows users.

Windows Zero-Day Flaw Exploits PowerShell

A newly reported zero-day vulnerability (CVE-2019-0859) discovered by Kaspersky Lab this week uses PowerShell to attack Windows systems.

Microsoft E-Mail Customers Exposed in 3-Month-Long Breach

A security breach that originated from the start of this year exposed some Microsoft e-mail users' accounts to "individuals outside Microsoft," the company admitted this past week.

Microsoft Addresses 74 Vulnerabilities in April Patch Rollout

Microsoft on Tuesday released its April security patch bundle, as well as one security advisory on Adobe Flash.

Microsoft Boosts Azure AD Security, Introduces 'Identity Hub'

Microsoft this week announced the general availability of its new Azure Active Directory Password Protection feature, which aims to diminish the threat of password spray attacks.

Microsoft Issues SCCM Update Alongside Security and Compliance Tools

Microsoft has announced the release of System Center Configuration Manager (SCCM) Update 1902, as well as the general availability of both Microsoft 365 Security Center and Microsoft 365 Compliance Center.

Report: Numerous Asus Computers Targeted in 'Supply-Chain Attack'

As many as 1 million Asus computer users were targeted last year in a "supply-chain attack," according to a report Monday by software security firm Kaspersky Lab.

Windows Defender ATP Gets New Name, Added Mac Support

Microsoft is rebranding its Windows Defender Advanced Threat Protection (ATP) product to "Microsoft Defender ATP" to reflect its newly added support for Mac clients.

March Patch Tuesday Releases Tackles Zero-Day Security Holes

Microsoft addressed 64 common vulnerabilities and exposures (CVEs) in its March security patch bundle, released this week on "update Tuesday."

Azure Firewall Gets Threat Intelligence Perks

Azure Firewall, Microsoft's firewall-as-a-service security offering for organizations using Azure virtual machines, is getting several improvements that tap the company's Threat Intelligence service.

Password-Free Logins Get W3C Backing with WebAuthn Approval

The move toward passwordless Web authentications took another step this week, with the World Wide Web Consortium (W3C) announcing that it now considers the Web Authentication (WebAuthn) specification to be an official standard.

Microsoft Brings Windows Defender ATP to Windows 7 and 8.1

Windows Defender ATP for Windows 7 and Windows 8.1 is now generally available, Microsoft announced last week, after being in preview since last spring.

Microsoft Spells Out Timeline for SHA-2 Upgrades

Microsoft recently described its timeline for phasing out Secure Hash Algorithm-1 (SHA-1) in supported Windows systems, and for upgrading to SHA-2.

Microsoft's Update Classifications Opens IT to Missed Fixes

A Microsoft Tech Community post is urging organizations to use caution when using Microsoft's tools to manage Windows updates.

SharePoint Watch

Sign up for our newsletter.

Terms and Privacy Policy consent

I agree to this site's Privacy Policy.