The U.S. Cybersecurity and Infrastructure Security Agency, along with other government partners, issued a new alert this week about the compromise of some Ivanti virtual private network (VPN) technologies.
Health insurance provider UnitedHealth Group has confirmed that it and its network of partners have been attacked by a high-profile hacker group.
Microsoft this week announced a new policy for compelling reauthentications for organizations using the Microsoft Entra Conditional Access service.
After releasing the first version of its Cybersecurity Framework in 2014, the National Institute of Standards and Technology (NIST) has released its first update to the guidance document.
In the realm of IT security, the practice known as red teaming -- where a company's security personnel play the attacker to test system defenses -- has always been a challenging and resource-intensive task. Microsoft aims to streamline and enhance this process for generative AI systems with its latest offering.
Tech giants are coming together to combat misinformation that may arise during this year's election season.
Microsoft and OpenAI have shut down five state-sponsored hacking groups that were using OpenAI's large language models "in support of malicious cyber activities," per announcements this week.
Microsoft's February patch arrived on Tuesday with fixes for two zero-day vulnerabilities and an additional 70 flaws.
Microsoft, and its original equipment manufacturer partners, are planning to update Secure Boot on Windows Unified Extensible Firmware Interface PCs, starting this year, per a Tuesday Microsoft announcement.
This month, Microsoft gave public assurances to users of its Copilot generative artificial intelligence products by publishing "How Microsoft 365 Delivers Trustworthy AI."
The Attack Simulation Tool can help you and your organization better prepare and spot phishing attempts.
Microsoft on Tuesday announced a preview of Face Check in Microsoft Entra Verified ID, providing a means for organizations to verify the identities of individuals.
The Windows Update for Business Deployment Service now lets organizations check if an expedited Windows quality update would meet all device prerequisites before rolling it out, per a Wednesday announcement.
The Microsoft Entra ID Conditional Access service is now previewing more "granular" controls over certificate-based authentication methods, per a Tuesday announcement.
Microsoft this month gave renewed notice that it is soon plans to activate Microsoft Entra ID Conditional Access policies that it set in November for certain Microsoft 365 licensees.
Hewlett Packard Enterprise's company e-mail was tapped for several months last year by "the threat actor Midnight Blizzard, the state-sponsored actor also known as Cozy Bear," per its latest Form 8-K SEC filing.
With the growth of AI-based technologies, cybersecurity experts are warning about the upcoming increase in attack attempts and complexity, as cybercriminals increase their use of available tools.
Microsoft this week announced a preview of a new Vulnerable Components Inventory feature in its Microsoft Defender Vulnerability Management service.
Organizations are dragging their feet on zero trust, despite its benefits in today's cybersecurity landscape.
Microsoft on Friday announced that it was the victim of password spray attacks by "Midnight Blizzard," a Russian state-sponsored actor, formerly called "Nobelium."