News


Microsoft Guide Describes Exchange Server Indicator of Compromise Testing Tools

The Microsoft Security Response Center team on Tuesday issued "Guidance for Responders," which provides more advice on how organizations can respond to the recent attacks that are leveraging Exchange Server zero-day flaws.

Microsoft Buys The Marsden Group To Enhance Azure IoT Industry Support

Microsoft on Wednesday announced the acquisition of The Marsden Group, a Houston-based Microsoft partner that helps with industrial automation and safety processes.

Microsoft Offers Preliminary Explanation for March 15 Azure AD Outage

Microsoft on Monday apologized for an Azure Active Directory issue that disrupted access to Office 365 applications and the Azure Admin Portal for two hours or more for some users.

Microsoft Releases Exchange On-Premises Mitigation Tool to Address Hafnium Attacks Quickly

Microsoft on Tuesday announced the release of a one-click tool to apply temporary security protections against the recent Exchange Server attacks from the "Hafnium" advanced persistent threat group and other attackers.

New Edge Browser Option Lets Orgs Slow Feature Updates

The Microsoft Edge browser will be getting a new "Extended Stable" feature update option later this year for organizations that need more testing time, Microsoft announced on Friday.

Microsoft Warns Unpatched Exchange Servers Subject to 'DearCry' Ransomware

Exchange Servers are getting attacked to install ransomware, dubbed "DearCry," Microsoft warned on Thursday.

Azure Active Directory External Identities Commercially Released

Microsoft this week announced the "general availability" (GA) commercial release of its External Identities capability in the Azure Active Directory service.

CISA and FBI Issue Joint Advisory on Exchange Server Hafnium Attacks

The U.S. Cybersecurity and Infrastructure Security Agency and the Federal Bureau of Investigation announced a Microsoft Exchange Server joint advisory that offers consolidated advice for Exchange Server users on detecting Hafnium attacks.

Microsoft Delivers Patches for 89 Vulnerabilities in March Security Release

Microsoft has released software security updates addressing 89 common vulnerabilities and exposures (CVEs), according to security researchers.

Microsoft Issues Hafnium Security Fixes that Don't Require Latest Exchange Server Cumulative Updates

Microsoft's Exchange team on Monday announced additional help for organizations having trouble trying to patch Exchange Server products quickly in response to the Hafnium attacks.

Microsoft and Security Researchers Describe Tips and Tools for Detecting Exchange Server Hafnium Attacks

Microsoft has updated its recommendations to organizations running Exchange Server, targeted in Hafnium nation-state attacks, by describing some new resources.

Microsoft Drops 'Solorigate' for 'Nobelium' in Ongoing SolarWinds Attack Investigations

Microsoft this week described "three new pieces" of malware that were used in the SolarWinds Orion espionage attacks dubbed "Solorigate," although Microsoft security researches are now calling it "Nobelium."

Microsoft Universal Print Service Commercially Released

Microsoft announced on Tuesday that its Universal Print service is now commercially released at the "general availability" stage worldwide.

Black Box

Microsoft Releases Windows Server 2022 Preview

Microsoft announced during its Ignite event that Window Server 2022 is currently available at the preview stage.

Azure Networking Enhancements Announced at Ignite

Azure networking improvements were announced by Microsoft as part of its Ignite Conference.

Microsoft Releases Out-of-Band Security Patches for Exchange Server

Microsoft on Tuesday released out-of-band security patches for Exchange Server to address multiple zero-day flaws that are currently being exploited in active attacks.

Microsoft Mesh for Building Mixed Reality Apps Highlighted at Ignite

The Microsoft Ignite Day 1 keynote presentations were heavy with talk about Microsoft Mesh, a new Microsoft Azure-based platform for building "cross-platform mixed reality apps" for multiple participants.

CrowdStrike Exec Points to Active Directory 'Structural Problems' in Senate Solorigate Hearing

Microsoft's Active Directory authentication solution got notably skewered during a Feb. 23 U.S. Senate hearing on the SolarWinds Orion software hack.

Microsoft Releases CodeQL for Detecting Solorigate Tampering

Microsoft announced on Thursday that its CodeQL queries, which were used to detect possible compromise in its source code after the Solorigate attacks, are now publicly available at the GitHub repository.

Microsoft Bumping Up SLA Support for Azure Active Directory B2C Service

Microsoft had lots to say this month about its Azure Active Directory service.

Subscribe on YouTube