Security


Orca Security Discloses How It Breached Azure Synapse Customer Accounts

Orca Security on Tuesday published its findings on a security hole in Azure Synapse, as well as Azure Data Factory, that permitted access to customer tenancy accounts on Microsoft's shared "cloud" infrastructure.

'Follina' Fix Issued in Microsoft's June Patch Tuesday

Microsoft on Tuesday released 55 patches for its monthly security update release.

Microsoft Buying Foreign Attack Research Firm Miburo

Microsoft on Tuesday announced the acquisition of Miburo, a research firm that specializes in detecting and responding to foreign cyberattacks.

Three Microsoft Workload Identities Capabilities Now at Production Use Stage

Three capabilities in the Microsoft Entra Workload Identities service are "ready now for production use," according to a Thursday Microsoft announcement.

Cloud Security Top Concern at RSA Conference

Security experts attending this year's RSA Conference in San Francisco said their top concern for their enterprises is cloud security.

Microsoft Previews New Upgrade Readiness Reports in Microsoft Endpoint Manager

The Microsoft Endpoint Manager Admin Center portal now offers previews of reports designed to assess Windows client device feature update readiness, plus the risks associated with specific operating system upgrades, per this Wednesday announcement.

Microsoft Defender for Endpoint Can Now Block Bad Unmanaged Devices

Microsoft Defender for Endpoint users now have a new "Contain" feature for compromised devices, Microsoft announced on Thursday.

Microsoft Announces Security Compliance Product Improvements

A few Microsoft security governance and compliance improvements were announced this week.

Block Stack

Q&A with Sami Laiho on Implementing Privileged Access Workstations

A Windows security expert explains why PAW should be the default setup for all organizations -- and why IT pros neglect it at their peril.

Microsoft Releases Windows Autopatch Preview

Microsoft this week announced that its new Windows Autopatch service is now available as a preview release for organizations.

Microsoft's Identity Services Get Rebranded as 'Microsoft Entra'

Microsoft Entra is the newly announced product family name for Microsoft's existing identity and access management services, which also includes a newly renamed offering, plus a coming decentralized identity product offering.

Workaround Issued for Microsoft Office Zero-Day Flaw

Microsoft on Monday alerted users of an actively exploited vulnerability in Microsoft Office and has released a workaround.

Microsoft 'Critical' Flaw Total Drops 47 Percent

Last year saw a significant decrease in "critical" security flaws in Microsoft software and a drop in overall vulnerabilities, according to a report released Friday by security firm BeyondTust.

Q&A with Derek Melber on the Horrors of Active Directory Security

Your Active Directory isn't secure. Learn what to do to protect your users and be ready for the next attack.

Microsoft Bringing Inactive Account Removals and Default Security to Azure Active Directory Users

Microsoft announced a couple of Azure Active Directory security enhancements this week.

Microsoft Warns of Evolving Web Skimming Techniques

The Microsoft 365 Defender Research Team is warning that Web skimming attacks are becoming more sophisticated and are able to hide malicious scripts from traditional security defenses.

Microsoft Issues Updates To Fix Authentication Problems Caused by Its May Patches

Microsoft on Thursday declared that authentication problems associated with its May monthly updates have been resolved via newly released updates.

Report: Paying Ransomware Attackers Doesn't Ensure Data Recovery

Paying the demands of ransomware attackers for hijacked organizational data does not come with a guarantee that organizations will recover that data.

Microsoft Defender for Endpoint 'Troubleshooting Mode' Previewed

Microsoft on Tuesday announced a public preview of "troubleshooting mode" for Microsoft Defender for Endpoint, which is used to protect devices.

Simpler Policy Options Coming This Summer to Microsoft Defender for Office 365

Organizations using Microsoft Defender for Office 365 will be getting enhancements to preset security policy options, starting this summer, according to a Tuesday Microsoft announcement.

Subscribe on YouTube

Upcoming Training Events