Security


Microsoft Previews Hardware OATH Tokens with Azure Multifactor Authentication

Microsoft on Tuesday announced a preview of the ability to use hardware OATH tokens with the Azure multifactor authentication service.

Browser Makers To Drop Support for TLS 1.0 and 1.1 in 2020

Apple, Google, Microsoft and Mozilla are all moving to disable the use of the Transport Layer Security (TLS) protocols versions 1.0 and 1.1 in their browsers, giving notice that they'll be dropping support within the first half of 2020.

Chinese Spy Chip Scandal: Advice for Datacenter Managers

True or not, Bloomberg's report raises an obvious question: What can datacenter managers do to ensure the security of their organizations' hardware? The short answer is, nothing simple.

Microsoft Claims Azure Active Directory B2C Not Affected by Facebook Hack

Microsoft indicated on Thursday that its Azure Active Directory B2C service wasn't affected by the Facebook hack last month that potentially exposed the access tokens of about 50 million Facebook users.

Microsoft Edge and IE Browsers Dropping Symantec Security Certificate Support

Microsoft announced on Thursday that its Edge and Internet Explorer browsers will stop trusting certain SSL/TLS certificates that were issued by former certificate authority company Symantec.

Microsoft Threat Protection Bundles Multiple Enterprise Security Solutions

Microsoft Threat Protection, a newly assembled bundle of security solutions for enterprise organizations, was announced this week as part of the ongoing Microsoft Ignite event.

Microsoft To Issue Separate .NET Framework Patches for Newer Windows Systems

Microsoft is planning initiate a modified .NET Framework monthly patch delivery scheme for newer Windows systems, possibly starting next month, according to a Wednesday announcement.

Office 365 ProPlus Now Includes Macro Scanner To Block Malware

Microsoft has turned on a technology to protect against malicious macros for Office 365 ProPlus subscribers, the company announced last week.

Microsoft's September Security Updates Include Zero-Day Fix

Microsoft's September security updates, released on Tuesday, included a fix for a zero-day local privilege escalation flaw that was disclosed with lots of drama last month.

One Way Office 365 Phishing Attacks Are Getting Sneakier

A relatively new type of phishing attack is targeting Office 365 users while completely circumventing all of the usual security defenses.

Project VAST Security Tool Now Rolling Out to Microsoft Premier Customers

Microsoft's Project VAST is now a supported product that's offered to Microsoft Premier customers, Microsoft announced last week.

Microsoft Highlights Security SDN Capabilities in Windows Server 2019

Microsoft is touting software-defined networking security capabilities in the coming Windows Server 2019 product.

Zero-Day Local Privilege Escalation Flaw Confirmed in Window 10 Systems

A zero-day flaw was disclosed on Monday regarding the Windows Task Scheduler in 64-bit Windows 10 and Windows Server 2016 systems for which there are no known patches or specific workarounds.

Microsoft Previews Authenticator Companion App for Apple Watch

Microsoft on Monday announced a preview of the Microsoft Authenticator companion app for use on the Apple Watch.

Intel Issues Security Advisory on L1 Speculative Execution Attack Method

Intel, Microsoft and Red Hat issued security advisories on Tuesday for yet another speculative execution side-channel attack method, this time going by the "L1 Terminal Fault" name.

Microsoft Previews Password Alternative in Edge Browser

Microsoft announced on Monday that its Microsoft Edge browser now supports the Web Authentication spec at the preview stage.

Microsoft Admits July 10 Patches Caused Skype and Exchange Server Problems

Microsoft's July 10 "update Tuesday" patches negatively affected organizations using Lync Server 2013, Skype for Business Server 2015 and Exchange Server, Microsoft admitted this week.

Microsoft Suggests Its Software Not Affected by Latest Spectre Attack Method

Researchers disclosed a new variant 1-type Spectre attack method earlier this week, but Microsoft's software apparently isn't affected by it.

Microsoft Issues Advisory on Lazy Floating Point State Restore Security Issue

Microsoft earlier this month issued an advisory for the "lazy floating point state restore" security problem (CVE-2018-3665) that potentially could affect users of Windows and Intel Core processors.

Azure AD Admins To Get Multifactor Authentication by Default

Microsoft is bringing multifactor authentication (MFA) to organizations that manage Azure Active Directory tenancies.

Subscribe on YouTube

Upcoming Training Events