Microsoft issued security advisory ADV180028 on Tuesday for computer users that have self-encrypting solid-state drives (SSDs) that are ostensibly protected by Microsoft's BitLocker encryption scheme.
Microsoft recently clarified its previously declared position that it had planned to drop support for Transport Layer Security (TLS) 1.0 and 1.1 protocols used with Office 365 services by the end of this month.
Microsoft on Tuesday announced a preview of the ability to use hardware OATH tokens with the Azure multifactor authentication service.
Apple, Google, Microsoft and Mozilla are all moving to disable the use of the Transport Layer Security (TLS) protocols versions 1.0 and 1.1 in their browsers, giving notice that they'll be dropping support within the first half of 2020.
True or not, Bloomberg's report raises an obvious question: What can datacenter managers do to ensure the security of their organizations' hardware? The short answer is, nothing simple.
- By John K. Waters
- 10/09/2018
Microsoft indicated on Thursday that its Azure Active Directory B2C service wasn't affected by the Facebook hack last month that potentially exposed the access tokens of about 50 million Facebook users.
Microsoft announced on Thursday that its Edge and Internet Explorer browsers will stop trusting certain SSL/TLS certificates that were issued by former certificate authority company Symantec.
Microsoft Threat Protection, a newly assembled bundle of security solutions for enterprise organizations, was announced this week as part of the ongoing Microsoft Ignite event.
Microsoft is planning initiate a modified .NET Framework monthly patch delivery scheme for newer Windows systems, possibly starting next month, according to a Wednesday announcement.
Microsoft has turned on a technology to protect against malicious macros for Office 365 ProPlus subscribers, the company announced last week.
Microsoft's September security updates, released on Tuesday, included a fix for a zero-day local privilege escalation flaw that was disclosed with lots of drama last month.
A relatively new type of phishing attack is targeting Office 365 users while completely circumventing all of the usual security defenses.
Microsoft's Project VAST is now a supported product that's offered to Microsoft Premier customers, Microsoft announced last week.
Microsoft is touting software-defined networking security capabilities in the coming Windows Server 2019 product.
A zero-day flaw was disclosed on Monday regarding the Windows Task Scheduler in 64-bit Windows 10 and Windows Server 2016 systems for which there are no known patches or specific workarounds.
Microsoft on Monday announced a preview of the Microsoft Authenticator companion app for use on the Apple Watch.
Intel, Microsoft and Red Hat issued security advisories on Tuesday for yet another speculative execution side-channel attack method, this time going by the "L1 Terminal Fault" name.
Microsoft announced on Monday that its Microsoft Edge browser now supports the Web Authentication spec at the preview stage.
Microsoft's July 10 "update Tuesday" patches negatively affected organizations using Lync Server 2013, Skype for Business Server 2015 and Exchange Server, Microsoft admitted this week.
Researchers disclosed a new variant 1-type Spectre attack method earlier this week, but Microsoft's software apparently isn't affected by it.