Microsoft explained last week that it is seeing multiphase phishing attacks getting tried that could be successful against organizations that haven't implemented multifactor authentication (MFA).
Exchange Online users soon will be getting some security enhancements that will enforce the use of Transport Layer Security (TLS) encryption for e-mails and ward off so-called "man-in-the-middle" attacks.
Microsoft announced on Wednesday that it's now possible to use Microsoft Sentinel to continuously monitor GitHub developer repositories for possible adverse activities.
A recent security report found that the threat of ransomware attacks aimed at organizations resulting in critical operational technology (OT) information being leaked is on the rise.
Microsoft last week informed IT pros that Windows machines need to be powered up for at least two continuous hours, and connected to the Internet, to be maintained in a properly updated state.
Microsoft recently made a few Teams announcements of note.
Take a look back at the best columns from our experts that broke down some of the bigger Microsoft stories and provided invaluable IT tips and advice.
- By Redmondmag.com Editors
- 12/28/2021
Even during a year where Microsoft dropped a new OS, security issues, highlighted by the "PrintNightmare" spooler vulnerability, dominated the conversation.
- By Redmondmag.com Editors
- 12/21/2021
Let's take a look back at our year of vulnerability exposures, reactionary patches and losing sleep over what security hole would emerge tomorrow.
- By Redmondmag.com Editors
- 12/20/2021
Microsoft added a preview solution in Microsoft Sentinel that helps IT pros find signs of Log4j exploits, according to a Thursday announcement and Twitter post.
Microsoft indicated plans to make its open source Windows Terminal app the default command-line console in Windows 11, along with opening the operating system up to using other consoles by default.
CrowdStrike on Thursday presented advice for organizations attempting to address a security vulnerability in the Log4j Java logging framework used in Apache Web servers, currently undergoing widespread exploitation.
Log4j, a widely used open-source Java logging library, has a critical-remote code execution (RCE) vulnerability that is currently being leveraged in malicious attacks.
- By John K. Waters, Kurt Mackie
- 12/15/2021
Microsoft on Tuesday released security patches for 67 common vulnerabilities and exploits, even as organizations are scrambling to address a Log4j flaw in Apache servers that's under active exploit.
A CrowdStrike survey, announced last week, depicted organizations struggling with security issues, and losing trust in "legacy" software vendors such as Microsoft.
More Microsoft Defender product news arrived this week, including the availability of a Microsoft Defender for Business preview, plus the introduction a newly formed product called "Microsoft Defender for Containers."
Microsoft on Tuesday announced a new tool for IT pros that lets organizations keep using Internet Explorer (IE) technologies for their Web sites and Web apps via the Microsoft Edge browser.
Microsoft on Thursday announced a public preview of Azure Orbital, its groundstation-as-a-service offering for communicating with satellites and processing satellite data using Azure resources.
Microsoft on Wednesday announced the availability of a new "Vulnerable and Malicious Driver Reporting Center," which lets anyone direct Microsoft's attention toward drivers with suspect behaviors.
Certified Secured-core server hardware products are now available for running Azure Stack HCI and Windows Server 2022 software implementations, according to an announcement on Tuesday.