Security


Real-World Ransomware Recovery

Here's how I was (mostly) successful in recovering a family PC infected with malware.

Cisco Warns of Brute Force Attacks Targeting VPNs and Firewalls

Cisco has revealed that a global increase in brute force attacks targeting Virtual Private Networks (VPNs) and other devices is currently taking place.

Open toolbox

What's Inside Microsoft 365's Security Toolbox?

Microsoft provides plenty of native tools to secure Microsoft 365. IT pros just have to know where to look.

Fallout from Microsoft's 'Midnight Blizzard' Saga Hits Feds

When the Russian attack group Midnight Blizzard successfully breached Microsoft corporate e-mail accounts late last year, it apparently managed to steal U.S. government agency e-mails, too.

PowerShell Script Used in Phishing Attack May Be AI-Generated

A PowerShell script being used in a novel malware campaign may have been created by AI, according to security researchers at Proofpoint.

Microsoft Drops 147 Fixes for April Patch Tuesday

In what is the largest security patch of the year, Microsoft has released 147 CVEs (Common Vulnerabilities and Exposures) for April.

Microsoft Reveals Pricing for Windows 10 Extended Security Updates

Microsoft this week announced that those looking for extended support for Windows 10 after its end of life date of Oct. 14, 2025 will pay $61 per device for the first year, for some enterprise customers.

Microsoft Accused of 'Cascade of Errors' in 2023 Chinese Outlook Attack

A federal review board concluded that lax security practices by Microsoft contributed to the Outlook hack by a Chinese hacker group last year in a comprehensive 34-page report.

A futuristic brain surrounded by locks

Microsoft Copilot for Security Becomes Generally Available

As previously reported, Microsoft Copilot for Security reached general availability on Monday.

Azure AI Gets Security, Anti-Hallucination Features

Microsoft this week gave a nod to Azure developers looking for more scalable ways to build accurate and secure generative AI applications on its cloud.

Microsoft To Commercially Release Copilot for Security on April 1

Microsoft on Wednesday announced that the Microsoft Copilot for Security artificial intelligence-enhanced security tool will reach the "general availability" commercial-release stage on April 1.

Microsoft March Patch: 2 'Critical' Hyper-V Security Holes Fixed

Microsoft's monthly security patch has arrived with just two items rated "critical" out of the total 60 bulletins for March.

A Windows logo fading at the edges

Commercial Windows 10 Version 21H2 Support Ending June 11

Microsoft has announced that Enterprise and Education versions of Windows 10 version 21H2 will lose support on June 11, 2024.

Microsoft Source Code Was Accessed by Midnight Blizzard Attackers

Microsoft this week provided an update on the "Midnight Blizzard" purported nation-state attack that had compromised its corporate e-mails late last year.

Microsoft Beefs Up Secure Software Development Initiative

Microsoft on Wednesday offered a progress report on its "Secure Future Initiative."

CISA Issues Alert on Exploits of Ivanti Connect Secure and Policy Secure VPN Solutions

The U.S. Cybersecurity and Infrastructure Security Agency, along with other government partners, issued a new alert this week about the compromise of some Ivanti virtual private network (VPN) technologies.

Blackcat Blamed in Massive Health Insurance Hack

Health insurance provider UnitedHealth Group has confirmed that it and its network of partners have been attacked by a high-profile hacker group.

Microsoft Previews Conditional Access Policy To Compel Reauthentications

Microsoft this week announced a new policy for compelling reauthentications for organizations using the Microsoft Entra Conditional Access service.

NIST Releases First Update of its Cybersecurity Framework

After releasing the first version of its Cybersecurity Framework in 2014, the National Institute of Standards and Technology (NIST) has released its first update to the guidance document.

Microsoft Unveils Open Source AI Security Tool PyRIT

In the realm of IT security, the practice known as red teaming -- where a company's security personnel play the attacker to test system defenses -- has always been a challenging and resource-intensive task. Microsoft aims to streamline and enhance this process for generative AI systems with its latest offering.

Subscribe on YouTube