Microsoft's Security Update Guide, which chronicles Microsoft's patch releases each month, is getting two relatively new additions.
Microsoft gave notice this week that it's planning to disable the use of the Transport Layer Security (TLS) 1.0 and TLS 1.1 security protocols for Exchange Online customers that use Post Office Protocol 3 (POP 3) and/or Internet Message Access Protocol 4 (IMAP 4) clients, starting next month.
Microsoft's Attack Simulation Training product now shows more information about how users interacted with simulated phishing attacks, per a Tuesday announcement.
What caused the issue and what, as customers, we can do to keep our data secure.
- By Joey D'Antoni
- 12/15/2022
Artificial intelligence (AI)-based cyberattacks on organizations could start to ramp up over the next five years, according to a recently published report.
Microsoft's final security update of the year arrived on Tuesday, featuring 6 bulletin items rated "critical," a flaw fix total of 49.
The Microsoft Authenticator app, used to assure secure authentications, won't be compatible with the Apple Watch, starting next month.
The Microsoft Authenticator app for iOS devices is now compliant with the U.S. government's "Federal Information Processing Standards (FIPS) 140" security standard, according to a Thursday Microsoft announcement.
Managed services provider Rackspace issued an announcement on Tuesday confirming that its hosted Microsoft Exchange e-mail service was disrupted by a ransomware attack.
Microsoft and Isovalent on Monday announced efforts to bring eBPF capabilities to Microsoft's Azure Kubernetes Service (AKS).
The new security feature does help to address the growing ransomware issue. But it's not perfect.
A preview of a Microsoft Sentinel "Incident Tasks" feature was announced on Tuesday by Microsoft.
The Microsoft Entra Workload Identities service is now available as a commercial product offering, having reached the "general availability" stage, Microsoft announced on Monday.
The Microsoft Defender Vulnerability Management service can now assess the firmware security of client devices, a new capability that's available at the public preview stage, per a Monday announcement.
The Open Source Security Foundation (OpenSSF) announced on Wednesday that it has adopted the Secure Supply Chain Consumption Framework (S2C2F) for ensuring the secure use of open source software (OSS) by developers.
Microsoft indicated last week that it'll be bringing a SANS Institute training series to Microsoft 365 Defender for Office 365 users of its Attack Simulation Training service.
Microsoft has chimed in on the highly visible OpenSSL security risks that emerged last week, and advises users start applying fixes based on OpenSSL's recent patches.
Microsoft on Wednesday announced a preview of Azure Active Directory Certificate-Based Authentication (CBA) support for Android and iOS devices using hardware security keys.
Exchange Server products are potential subject two newly disclosed "zero-day" vulnerabilities that are under exploit, Microsoft acknowledged, in a Thursday announcement.
Microsoft is urging organizations using the Microsoft Authenticator app to activate additional security functionality to protect against possible "multifactor authentication fatigue attacks," according to a Wednesday announcement.