News


Weird Blue Tunnel Graphic

Microsoft Goes Deep on 'Solorigate' Secondary Attack Methods

Microsoft on Wednesday published an analysis of the second-stage "Solorigate" attack methods used by an advanced persistent threat (APT) attack group.

Malwarebytes Affirms Other APT Attack Methods Used Besides 'Solorigate'

Security solutions company Malwarebytes affirmed on Monday that alternative methods besides tainted SolarWinds Orion software were used in the recent "Solorigate" advanced persistent threat (APT) attacks.

Microsoft Nudging Skype for Business Users to Teams

Microsoft on Thursday announced some perks and prods for Skype for Business unified communications users, with the aim of moving them to the Microsoft Teams collaboration service instead.

Microsoft Warns IT Pros on Windows Netlogon Fix Coming Next Month

Microsoft on Thursday issued a reminder to organizations to ensure that their systems are properly patched for a "Critical"-rated Windows Netlogon vulnerability before next month's "update Tuesday" patch distribution arrives.

Microsoft Offers More 'Solorigate' Advice Using Microsoft 365 Defender Tools

Microsoft issued yet another article with advice on how to use its Microsoft 365 Defender suite of tools to protect against "Solorigate" advanced persistent threat types of attacks in a Thursday announcement.

Microsoft FastTrack Support Extended to Microsoft 365 Defender Solutions

The Microsoft FastTrack support program has been extended to Microsoft 365 Defender products for certain qualified subscribers, Microsoft indicated this week.

Windows Server Update Services Users Getting Proxy-Use Change This Month

Microsoft on Tuesday notified Windows Server Update Services (WSUS) users that it's no longer going to automatically support "user proxies" to get patches from Microsoft's content delivery networks (CDNs), starting with this month's cumulative update release.

Microsoft 365 File-Size Support Expanding to 250GB

Microsoft 365 users will be getting expanded file-size support, allowing files to be shared that are 250GB maximum in size, per a Microsoft announcement this week.

Microsoft Delivers Fixes for 83 Vulnerabilities in January Security Patch Bundle

Microsoft released its January security patch bundle on Tuesday, delivering fixes for 83 common vulnerabilities and exposures (CVEs).

Microsoft Defender for Endpoint Gets Linux Server Forensics Capabilities

Microsoft Defender for Endpoint now has an endpoint detection and response (EDR) capability for use with Linux servers that's deemed ready for use in production environments, Microsoft indicated on Monday.

U.S. National Security Agency Offers Advice on Blocking Obsolete TLS

The U.S. National Security Agency this month published an advisory on detecting and blocking old and insecure Transport Layer Security (TLS) protocol use by organizations.

CISA Points to APT Attack Methods Besides 'Solorigate' that Affected Microsoft 365, Azure Services

An advanced persistent threat actor associated with the SolarWinds Orion attacks used their ability to create credentials to compromise a victim's Microsoft 365 and Azure services, but they didn't always tap the so-called "Solorigate" vulnerability to do so.

Office 365 Attack Simulation Training Capability Now Commercially Available

Microsoft this week announced the commercial release of a feature that simulates phishing attacks, which is now available to certain subscribers to the Microsoft Defender for Office 365 service.

Microsoft Activating One-Time Passcode Feature in March for Azure Users

Microsoft is planning to turn on a one-time passcode feature in March that will grant temporary network access to business collaborators for organizations that use the Azure Active Directory B2B service.

Microsoft Offers Security Advice After 'Solorigate' Attacks

Microsoft described security measures for IT pros to consider in the wake of the SolarWinds Orion-based software attack.

Microsoft Upping Service Level Agreement for Azure AD in April

Microsoft is planning to bump up its service-level agreement (SLA) uptime assurance for users of the Azure Active Directory service to "four nines" per month, or 99.99 percent, starting on April 1.

Top 10 Microsoft IT Headlines of 2020: IE 11 End-of-Support, SameSite Cookie Issues and More

Microsoft support timelines, deadlines and delays were big news over the past year.

Top 10 Microsoft Tips and Analyses of 2020: Windows Phone Lives, Cloud Outage Lessons and More

The most popular how-to and commentary articles of the year (plus a few honorable mentions).

Microsoft Previews Password Storage via the Microsoft Authenticator App

Microsoft this week announced a preview of a user name and password autofill capability in the Microsoft Authenticator app.

Microsoft 365 and Office 2019 Apps Now Supported on Apple M1 Silicon

Microsoft 365 applications can now run on Mac machines using Apple's M1 system-on-chip technology, Microsoft announced on Tuesday.