Exchange Server 2019 with Cumulative Update 2 (CU2) can help organizations rid themselves of old authentication protocols, which constitute a potential security risk.
Microsoft on Tuesday announced a preview of the Azure Bastion service, which lets a user connect to an Azure virtual machine (VM) using a private Internet connection.
Academic researchers this week published information about another side-channel attack method, called "RAMBleed," that can expose information from memory chips, including encryption key information.
Microsoft added its conditional access security service to Microsoft 365 Business subscriptions, according to a Wednesday announcement, and it also added new trouble-ticket features for Microsoft 365 administrators.
Microsoft has released its monthly bunch of security patches for June, addressing 88 common vulnerabilities and disclosures (CVEs).
The U.S. National Security Agency (NSA) has issued an advisory urging individuals and organizations to install Microsoft's May security patches.
Microsoft again issued advice that its May security patches should be installed to prevent a "wormable" vulnerability in Remote Desktop Services from getting exploited by attackers.
With hackers infiltrating one in three Office 365 customers, an IT pro's best bet is to be suspicious of almost everything.
Microsoft announced a couple of Azure Active Directory enhancements this week regarding password lengths and new conditional access controls for IT pros.
Microsoft this week described Attack Surface Analyzer 2.0, an updated tool for checking software installations that's now built using open source code.
Microsoft is again promoting its HyperClear Hyper-V hypervisor technology as a potential balm for organizations trying to come to grips with Intel's latest speculative execution side-channel attack disclosures.
Microsoft released its May security updates on "update Tuesday," but a patching vortex also opened up as Intel disclosed new processor vulnerabilities.
A "Critical"-rated vulnerability in SharePoint Server versions that Microsoft issued a patch for back in March is now getting actively targeted, according to some security authorities.
Microsoft this week laid out security advice for organizations, which included some best-practice guidelines for IT pros.
A recent report suggests that Microsoft's own e-mail security protections have trouble differentiating between real and fraudulent messages from itself.
Microsoft announced this week that part of its new threat-hunting service for organizations has reached the "general availability" (GA) commercial release stage.
Microsoft announced this week that it will be reorganizing its Office 365 ProPlus privacy controls with an aim toward becoming more "transparent" about the information it collects.
Microsoft on Tuesday announced various Office 365 security and compliance improvements, mostly for Microsoft 365 subscribers.
Microsoft indicated that its container images hosted on Docker Hub weren't compromised by a security breach that was discovered by Docker last week.
Microsoft wants to drop recommending policies that enforce periodic password expirations on users of Windows systems.