Security


Microsoft Ramps Ups Decentralized Identity Open Source Efforts

Microsoft this week provided an update on its years-long efforts to foster a decentralized identity approach to user authentications.

Microsoft Releases Hefty June Security Patch Bundle

Microsoft on Tuesday released a total of 129 security patches, with 11 rated "Critical" and 118 deemed "Important" in severity.

CISA Warns that Windows SMB 3 Exploit Code Now Published

Functional proof-of-concept code for a Server Message Block 3.1.1 vulnerability in newer Windows systems has been published, the U.S. Cybersecurity and Infrastructure Security Agency warned on Friday.

Azure Active Directory Conditional Access Session Management Policies Now Commercially Available

Microsoft announced on Friday that that ability to use the "authentication session management capabilities" of the Azure Active Directory Conditional Access service is now at the "generally available" commercial-release stage.

Automatic Classifications Commercially Released for Exchange, OneDrive and SharePoint

Microsoft this week announced that the ability to automatically classify documents using Microsoft Information Protection's sensitivity labels feature is now commercially released.

Encrypted DNS Can Now Be Tested in Windows 10 Preview

Microsoft is now enabling people to test Domain Name System (DNS) over HTTPS encryption, known as "DoH," via a recently released preview version of Windows 10.

Microsoft May Security Patch Bundle Addresses 111 Vulnerabilities

Microsoft released its May security patch bundle on Tuesday, addressing about 111 common vulnerabilities and exposures.

Microsoft Threat Protection Getting Turned on Next Month for Microsoft 365 Security Center Users

Microsoft on May 1 gave advance notice that it's planning to turn on certain Microsoft Threat Protection capabilities next month for eligible customers that "visit" or use the Microsoft 365 Security Center portal.

Microsoft Adds Help for Azure Active Directory Conditional Access Settings

Microsoft this week announced three new features for assessing Azure AD Conditional Access policy settings, which have all reached "general availability" (GA).

Sensitivity Labels Go Live for SharePoint and OneDrive Users

Microsoft announced on Monday that the ability to apply "sensitivity labels" to Office documents using the Microsoft Information Protection service is now at the "general availability" stage when labeling files stored in SharePoint and OneDrive.

Rocks

IT's Post-Pandemic Future: The Lasting Impact of the Remote Work Surge

As business restrictions slowly begin to lift, IT pros face a new landscape similar to the BYOD boom -- but instead of new devices, they'll be dealing with new logistics.

Microsoft Explains Windows Machine Password Resets for Remote Workers

Microsoft this week explained how the machine password mechanism for Windows systems works, and the effects when people have shifted to working remotely.

Microsoft Teams and Exchange Online Getting ID Protections via Continuous Access Evaluation

Microsoft on Tuesday explained that it is implementing its own version of Continuous Access Evaluation (CAE) identity and access protections for certain Office 365 and Azure Active Directory users.

CISA Warns Patched Pulse Secure VPNs Could Still Expose Passwords

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday issued an alert on a vulnerability in Pulse Secure virtual private network (VPN) products -- yet again.

Multifactor Authentication and Password Reset Registration Now Available for Azure AD Users

Microsoft on Thursday announced the commercial release of a more simplified Azure Active Directory registration process that adds multifactor authentication (MFA) and self-service password reset features for end users.

Microsoft Delivers Hefty April Security Patch Bundle

Microsoft has released its April security patches, addressing about 113 common vulnerabilities and exposures (CVEs).

SameSite Cookie Changes Rolled Back Until Summer

The Chromium Project announced on Friday that it's delaying enforcement of SameSite cookie changes, and is temporarily rolling back those changes, because of the COVID-19 turmoil.

Basic Authentication Extended to 2H 2021 for Exchange Online Users

Microsoft is now planning to disable Basic Authentication use with its Exchange Online service sometime in the "second half of 2021," according to a Friday announcement.

Microsoft Offers Endpoint Configuration Manager Advice for Keeping Remote Clients Patched

Microsoft this week offered advice for organizations using Microsoft Endpoint Configuration Manager with remote Windows systems that need to get patched, and it also announced Update 2002.

Microsoft Browser Support for TLS 1.0 and 1.1 Ending 2H 2020

Microsoft announced on Tuesday that its plans to drop support for Transport Layer Security (TLS) protocols 1.0 and 1.1 in its browsers will get delayed by a few months until the second half of this year.

Subscribe on YouTube

Upcoming Training Events