Security


Microsoft Issues Security Advisory on Solid-State Drive Hardware Encryption

Microsoft issued security advisory ADV180028 on Tuesday for computer users that have self-encrypting solid-state drives (SSDs) that are ostensibly protected by Microsoft's BitLocker encryption scheme.

Microsoft Revises October Deadline on Using TLS 1.0 and 1.1 in Office 365

Microsoft recently clarified its previously declared position that it had planned to drop support for Transport Layer Security (TLS) 1.0 and 1.1 protocols used with Office 365 services by the end of this month.

Microsoft Previews Hardware OATH Tokens with Azure Multifactor Authentication

Microsoft on Tuesday announced a preview of the ability to use hardware OATH tokens with the Azure multifactor authentication service.

Browser Makers To Drop Support for TLS 1.0 and 1.1 in 2020

Apple, Google, Microsoft and Mozilla are all moving to disable the use of the Transport Layer Security (TLS) protocols versions 1.0 and 1.1 in their browsers, giving notice that they'll be dropping support within the first half of 2020.

Chinese Spy Chip Scandal: Advice for Datacenter Managers

True or not, Bloomberg's report raises an obvious question: What can datacenter managers do to ensure the security of their organizations' hardware? The short answer is, nothing simple.

Microsoft Claims Azure Active Directory B2C Not Affected by Facebook Hack

Microsoft indicated on Thursday that its Azure Active Directory B2C service wasn't affected by the Facebook hack last month that potentially exposed the access tokens of about 50 million Facebook users.

Microsoft Edge and IE Browsers Dropping Symantec Security Certificate Support

Microsoft announced on Thursday that its Edge and Internet Explorer browsers will stop trusting certain SSL/TLS certificates that were issued by former certificate authority company Symantec.

Microsoft Threat Protection Bundles Multiple Enterprise Security Solutions

Microsoft Threat Protection, a newly assembled bundle of security solutions for enterprise organizations, was announced this week as part of the ongoing Microsoft Ignite event.

Microsoft To Issue Separate .NET Framework Patches for Newer Windows Systems

Microsoft is planning initiate a modified .NET Framework monthly patch delivery scheme for newer Windows systems, possibly starting next month, according to a Wednesday announcement.

Office 365 ProPlus Now Includes Macro Scanner To Block Malware

Microsoft has turned on a technology to protect against malicious macros for Office 365 ProPlus subscribers, the company announced last week.

Microsoft's September Security Updates Include Zero-Day Fix

Microsoft's September security updates, released on Tuesday, included a fix for a zero-day local privilege escalation flaw that was disclosed with lots of drama last month.

One Way Office 365 Phishing Attacks Are Getting Sneakier

A relatively new type of phishing attack is targeting Office 365 users while completely circumventing all of the usual security defenses.

Project VAST Security Tool Now Rolling Out to Microsoft Premier Customers

Microsoft's Project VAST is now a supported product that's offered to Microsoft Premier customers, Microsoft announced last week.

Microsoft Highlights Security SDN Capabilities in Windows Server 2019

Microsoft is touting software-defined networking security capabilities in the coming Windows Server 2019 product.

Zero-Day Local Privilege Escalation Flaw Confirmed in Window 10 Systems

A zero-day flaw was disclosed on Monday regarding the Windows Task Scheduler in 64-bit Windows 10 and Windows Server 2016 systems for which there are no known patches or specific workarounds.

Microsoft Previews Authenticator Companion App for Apple Watch

Microsoft on Monday announced a preview of the Microsoft Authenticator companion app for use on the Apple Watch.

Intel Issues Security Advisory on L1 Speculative Execution Attack Method

Intel, Microsoft and Red Hat issued security advisories on Tuesday for yet another speculative execution side-channel attack method, this time going by the "L1 Terminal Fault" name.

Microsoft Previews Password Alternative in Edge Browser

Microsoft announced on Monday that its Microsoft Edge browser now supports the Web Authentication spec at the preview stage.

Microsoft Admits July 10 Patches Caused Skype and Exchange Server Problems

Microsoft's July 10 "update Tuesday" patches negatively affected organizations using Lync Server 2013, Skype for Business Server 2015 and Exchange Server, Microsoft admitted this week.

Microsoft Suggests Its Software Not Affected by Latest Spectre Attack Method

Researchers disclosed a new variant 1-type Spectre attack method earlier this week, but Microsoft's software apparently isn't affected by it.

Subscribe on YouTube

Upcoming Training Events

0 AM
Live! 360 Orlando
November 17-22, 2024
TechMentor @ Microsoft HQ
August 11-15, 2025