CrowdStrike on Thursday presented advice for organizations attempting to address a security vulnerability in the Log4j Java logging framework used in Apache Web servers, currently undergoing widespread exploitation.
Log4j, a widely used open-source Java logging library, has a critical-remote code execution (RCE) vulnerability that is currently being leveraged in malicious attacks.
- By John K. Waters, Kurt Mackie
- 12/15/2021
Microsoft on Tuesday released security patches for 67 common vulnerabilities and exploits, even as organizations are scrambling to address a Log4j flaw in Apache servers that's under active exploit.
A CrowdStrike survey, announced last week, depicted organizations struggling with security issues, and losing trust in "legacy" software vendors such as Microsoft.
More Microsoft Defender product news arrived this week, including the availability of a Microsoft Defender for Business preview, plus the introduction a newly formed product called "Microsoft Defender for Containers."
Microsoft on Wednesday announced the availability of a new "Vulnerable and Malicious Driver Reporting Center," which lets anyone direct Microsoft's attention toward drivers with suspect behaviors.
Microsoft on Monday announced that it has seized control of multiple Web sites used by the Chinese hacking group NICKEL.
Microsoft will finally better respect IT pro decisions about macros, ActiveX content and Office add-ins in e-mailed Office documents, according to a new security policy that'll be arriving in "early February 2022."
Keep your accounts and data secure before discarding your old machine.
Microsoft is rolling out a somewhat more streamlined approach for managing devices that use Microsoft Defender for Endpoint, according to a Thursday announcement.
Microsoft this week announced four new security features for the Microsoft Authenticator app that can be used for confirming mobile device user identities.
Microsoft announced on Wednesday that it fixed an Azure Active Directory private key data storage gaffe that affects Azure application subscribers, but affected organizations nonetheless should carry out specific assessment and remediation tasks.
Microsoft announced on Monday that its new Microsoft Defender for Endpoint Plan 1 (P1) reached the "general availability" commercial-release stage.
Microsoft has released its November security patch bundle, addressing 55 common vulnerabilities and disclosures (CVEs).
According to a newly released salary report by employment firm Dice, cybersecurity analysts saw an average growth in salary of 16.3 percent (for an average annual salary of $103,106) between 2019 and 2020.
The security software firm McAfee announced on Monday that it is going private once an acquisition deal with a group led by equity firm Advent International is finalized.
It's been a year since the last Microsoft Defender product name changes, so brace yourself for more.
Microsoft announced a range of new Azure features at this week's virtual Ignite conference, with several services moving out of public preview and into general availability.
- By Joey D'Antoni
- 11/03/2021
The Microsoft Ignite online event kicked off on Tuesday, and it brings a bunch of product updates for IT pros that are now reaching "general availability" (GA, or commercial release).
Microsoft on Thursday announced a new campaign with community colleges to help prepare tomorrow's cybersecurity workforce.