Because sometimes (a lot of the time), Protected View isn't enough to guard against potentially malicious Office documents.
The Cybersecurity and Infrastructure Security Agency (CISA) affirmed in a Monday announcement that code is publicly accessible that could be used to exploit a "Critical"-rated Netlogon vulnerability in newer Windows Server versions.
Microsoft announced that the installation of its September security updates could stop future software updates from arriving if organizations using its Windows Server Update Services (WSUS) solution for patch management are connecting using the HTTP protocol rather than HTTPS.
Microsoft on Tuesday released security patches to address 129 common vulnerabilities and exposures (CVEs) this month in its software products.
Microsoft last week announced a preview of using Microsoft Endpoint Manager (MEM) with update 2006 to manage Microsoft Defender Antivirus policies.
Microsoft this week announced a more simplified way to add security baseline settings for Windows 10 PCs used by Microsoft 365 Business Premium subscribers.
Microsoft engineers outlined a way to find vulnerable Netlogon channel connections for organizations using newer Windows Server systems.
Microsoft announced on Monday that Microsoft Defender Application Guard for Office is now at the public preview stage.
Microsoft has turned on Transport Layer Security (TLS) 1.3 in Windows client operating systems by default in its Windows Insider Program preview releases, the company explained on Thursday.
Microsoft this week talked about how it has been improving communications for IT pros dealing with software patch and Azure service issues.
Microsoft this week described a few perks and best practices for IT pros to follow when managing and deploying Windows 10 updates.
Microsoft released August security patches on Tuesday, addressing 120 common vulnerabilities and exposures.
Microsoft announced a couple of Azure Active Directory-based security enhancements this week, which are now available for end users.
Microsoft on Monday announced that it has joined the newly created Open Source Security Foundation, along with other industry partners, to improve the security of open source software.
Microsoft announced this week that it's possible to use the Azure Active Directory Application Proxy service with Remote Desktop Services (RDS)-based Web clients to add additional security for remote connections.
Microsoft on Wednesday issued Security Advisory ADV200011 concerning a security bypass vulnerability for the Secure Boot protection scheme in machines using the Grand Unified Boot Loader (GRUB).
Microsoft this week announced some policy enhancements to the Insider Risk Management service for Microsoft 365 that soon will be arriving at the preview level.
Microsoft this week announced a preview of Double Key Encryption for data created with Microsoft 365 applications.
Microsoft announced on Tuesday that a preview of its new Endpoint Data Loss Prevention (DLP) service is getting distributed to Microsoft 365 E5/A5 subscribers.
The Cybersecurity and Infrastructure Security Agency (CISA) on Thursday announced the release of an emergency directive on patching a Windows Server Domain Name System (DNS) vulnerability (CVE-2020-1350).