Cybersecurity company Proofpoint on Tuesday described attacks that lulled users into authorizing permissions for malicious cloud apps because they may have trusted Microsoft's "Verified Publisher" screening.
Microsoft this week announced that its Microsoft Defender Vulnerability Management solution can now scan Windows devices that are lacking certain agent support.
The U.S. Department of Justice announced on Thursday that the Hive ransomware group's international network has been "dismantled."
Microsoft this week ended its patch support for Windows 7 and other venerable Windows products, but one company, 0patch, is saying that it'll provide fixes for "Critical" security issues for another two years.
The first Patch Tuesday arrived this week, featuring 98 fixes for security issues across Microsoft's wide line of products and services.
Microsoft's Security Update Guide, which chronicles Microsoft's patch releases each month, is getting two relatively new additions.
Microsoft gave notice this week that it's planning to disable the use of the Transport Layer Security (TLS) 1.0 and TLS 1.1 security protocols for Exchange Online customers that use Post Office Protocol 3 (POP 3) and/or Internet Message Access Protocol 4 (IMAP 4) clients, starting next month.
Microsoft's Attack Simulation Training product now shows more information about how users interacted with simulated phishing attacks, per a Tuesday announcement.
What caused the issue and what, as customers, we can do to keep our data secure.
- By Joey D'Antoni
- 12/15/2022
Artificial intelligence (AI)-based cyberattacks on organizations could start to ramp up over the next five years, according to a recently published report.
Microsoft's final security update of the year arrived on Tuesday, featuring 6 bulletin items rated "critical," a flaw fix total of 49.
The Microsoft Authenticator app, used to assure secure authentications, won't be compatible with the Apple Watch, starting next month.
The Microsoft Authenticator app for iOS devices is now compliant with the U.S. government's "Federal Information Processing Standards (FIPS) 140" security standard, according to a Thursday Microsoft announcement.
Managed services provider Rackspace issued an announcement on Tuesday confirming that its hosted Microsoft Exchange e-mail service was disrupted by a ransomware attack.
Microsoft and Isovalent on Monday announced efforts to bring eBPF capabilities to Microsoft's Azure Kubernetes Service (AKS).
The new security feature does help to address the growing ransomware issue. But it's not perfect.
A preview of a Microsoft Sentinel "Incident Tasks" feature was announced on Tuesday by Microsoft.
The Microsoft Entra Workload Identities service is now available as a commercial product offering, having reached the "general availability" stage, Microsoft announced on Monday.
The Microsoft Defender Vulnerability Management service can now assess the firmware security of client devices, a new capability that's available at the public preview stage, per a Monday announcement.
The Open Source Security Foundation (OpenSSF) announced on Wednesday that it has adopted the Secure Supply Chain Consumption Framework (S2C2F) for ensuring the secure use of open source software (OSS) by developers.