Security


Microsoft Defender ATP Evaluation Lab Released

Microsoft announced on Wednesday that its Microsoft Defender Advanced Threat Protection (ATP) Evaluation Lab is now production-ready.

Microsoft Patching 85 Vulnerabilities in September Security Bundle

Microsoft issued a "light" bundle of patches for security vulnerabilities in Windows and applications in its September "update Tuesday" release.

Windows 7, Windows Server 2008 Open to Microsoft Patch Issues

Microsoft's August security updates won't install for users of Windows 7 SP1 or Windows Server 2008 R2 SP1 if those operating system lack certain March updates.

RDP Flaws in Spotlight with Microsoft's August Patch Rollout

Microsoft addressed about 93 common vulnerabilities and exposures (CVEs) in its August security patch release, issued Tuesday.

Microsoft: BlueKeep Exploit Code Now 'Widely Available'

Exploit code for the so-called "BlueKeep" vulnerability is now "widely available" for use by attackers, Microsoft recently warned.

Microsoft Describes Roadblocks To Going Password-Free

Not even Microsoft itself has been able to completely eliminate the use of passwords in its facilities, a testament to the obstacles facing organizations that want a password-free future.

Microsoft Targets 16 Critical Flaws with July Patch Rollout

Microsoft's July security updates include patches for 16 vulnerabilities rated "Critical," along with 60 rated "Important" and one rated "Moderate."

Security Patch Support Ends for SQL Server 2008/R2

July 9 marked the end of "extended support" for SQL Server 2008 and SQL Server 2008 R2, the last five-year phase of Microsoft's overall 10-year product lifecycle for these products.

Microsoft Leaves Excel DDE Security Flaw Unpatched

Researchers have discovered a flaw in the Microsoft Excel spreadsheet program that, combined with its Power Query data-fetching component, can leave businesses open to so-called "Dynamic Data Exchange" attacks.

Microsoft Readies OneDrive 'Personal Vault' Feature and Other Improvements

More storage options and a new secure "Personal Vault" feature are coming to the Microsoft OneDrive cloud storage service.

Researchers Warn of RAMBleed Side-Channel Attacks

A newly discovered side-channel attack method called "RAMBleed" can expose information from memory chips, including encryption key information, according to academic researchers.

Microsoft's June Patch Release the Largest 'In Recent Memory'

The June edition of Microsoft's monthly security patch rollout addresses 88 common vulnerabilities and disclosures (CVEs), the largest "in recent memory," according to a Trend Micro analyst.

Microsoft Pushes Its May Patches To Stop RDS Worm

Microsoft recently urged organizations to install its May security patches to prevent attackers from exploiting a "wormable" vulnerability in Remote Desktop Services.

Microsoft Tool for Scanning Third-Party Software Gets Update

Microsoft announced Attack Surface Analyzer 2.0 this week, describing changes in the updated -- and now open source -- software.

Security Roundup: Mircrosoft Patches Arrive as New Intel CPU Flaw Surfaces

Tuesday marked several important security developments for IT pros.

Microsoft Shares Security Tips, Earns FIDO2 Nod for Windows Hello

With system administrators increasingly being targeted by hackers, Microsoft this week shared some security tips for organizations.

Microsoft Readies BitLocker Management Features for SCCM, Intune

IT pros managing BitLocker-encrypted drives on devices will soon have access to some new capabilities, Microsoft announced this week.

Microsoft (Partially) Releases Threat Experts Security Service

A key component of Microsoft's new threat-hunting service for organizations is now ready for use in production environments.

Microsoft, Docker Tout Security Measures After Breach

A security breach that was discovered by Docker last week did not compromise Microsoft container images hosted on Docker Hub, Microsoft said recently.

Microsoft Advising Against Password Expirations for Securing Windows

Microsoft is making the case against security policies that enforce periodic password expirations for Windows users.

SharePoint Watch

Sign up for our newsletter.

Terms and Privacy Policy consent

I agree to this site's Privacy Policy.