-
Microsoft's August security updates won't install for users of Windows 7 SP1 or Windows Server 2008 R2 SP1 if those operating system lack certain March updates.
-
Microsoft addressed about 93 common vulnerabilities and exposures (CVEs) in its August security patch release, issued Tuesday.
-
Exploit code for the so-called "BlueKeep" vulnerability is now "widely available" for use by attackers, Microsoft recently warned.
-
Not even Microsoft itself has been able to completely eliminate the use of passwords in its facilities, a testament to the obstacles facing organizations that want a password-free future.
-
Microsoft's July security updates include patches for 16 vulnerabilities rated "Critical," along with 60 rated "Important" and one rated "Moderate."
-
July 9 marked the end of "extended support" for SQL Server 2008 and SQL Server 2008 R2, the last five-year phase of Microsoft's overall 10-year product lifecycle for these products.
-
Researchers have discovered a flaw in the Microsoft Excel spreadsheet program that, combined with its Power Query data-fetching component, can leave businesses open to so-called "Dynamic Data Exchange" attacks.
-
More storage options and a new secure "Personal Vault" feature are coming to the Microsoft OneDrive cloud storage service.
-
A newly discovered side-channel attack method called "RAMBleed" can expose information from memory chips, including encryption key information, according to academic researchers.
-
The June edition of Microsoft's monthly security patch rollout addresses 88 common vulnerabilities and disclosures (CVEs), the largest "in recent memory," according to a Trend Micro analyst.
-
Microsoft recently urged organizations to install its May security patches to prevent attackers from exploiting a "wormable" vulnerability in Remote Desktop Services.
-
Microsoft announced Attack Surface Analyzer 2.0 this week, describing changes in the updated -- and now open source -- software.
-
Tuesday marked several important security developments for IT pros.
-
With system administrators increasingly being targeted by hackers, Microsoft this week shared some security tips for organizations.
-
IT pros managing BitLocker-encrypted drives on devices will soon have access to some new capabilities, Microsoft announced this week.
-
A key component of Microsoft's new threat-hunting service for organizations is now ready for use in production environments.
-
A security breach that was discovered by Docker last week did not compromise Microsoft container images hosted on Docker Hub, Microsoft said recently.
-
Microsoft is making the case against security policies that enforce periodic password expirations for Windows users.
-
A newly reported zero-day vulnerability (CVE-2019-0859) discovered by Kaspersky Lab this week uses PowerShell to attack Windows systems.
-
A security breach that originated from the start of this year exposed some Microsoft e-mail users' accounts to "individuals outside Microsoft," the company admitted this past week.
-
Microsoft on Tuesday released its April security patch bundle, as well as one security advisory on Adobe Flash.
-
Microsoft this week announced the general availability of its new Azure Active Directory Password Protection feature, which aims to diminish the threat of password spray attacks.
-
Microsoft has announced the release of System Center Configuration Manager (SCCM) Update 1902, as well as the general availability of both Microsoft 365 Security Center and Microsoft 365 Compliance Center.
-
As many as 1 million Asus computer users were targeted last year in a "supply-chain attack," according to a report Monday by software security firm Kaspersky Lab.
-
Microsoft is rebranding its Windows Defender Advanced Threat Protection (ATP) product to "Microsoft Defender ATP" to reflect its newly added support for Mac clients.