Security


Microsoft Promises SOC Relief with Coming Security Copilot AI

The coming Security Copilot artificial intelligence implementation in Microsoft 365 Defender will ease routine tasks for Security Operations Center personnel, Microsoft suggested, in a Thursday announcement.

Microsoft Declares Death to NTLM with Coming Windows 11 Features

Microsoft this week indicated that it plans to eliminate the need to use the New Technology LAN Manager protocol in Windows 11, with Kerberos taking its place.

Microsoft October 2023 Patch Incudes Fix for Widespread DDoS Flaw

This month's security update addresses the widespread HTTP/2 issue and two other zero-day vulnerabilities.

Windows Server 2012 Loses Patch Support, but Orgs Could Pay for ESUs

Windows Server 2012 and Windows Server 2012 R2 are no longer supported products as of Oct. 10, 2023, meaning no more patches will be arriving.

Microsoft's Partners Now Selling ESUs for SQL Server 2014

Microsoft's partners are now selling Extended Security Updates for SQL Server 2014 as of this month, per this announcement.

Remote PowerShell for Exchange Online Ending This Month

Microsoft on Monday announced that it will turn off Remote PowerShell Protocol for Exchange Online, starting as early as Oct. 3, 2023 for its worldwide service customers.

Microsoft Entra ID Protection Eases Password Change Remediations

Microsoft has improved the remediation process when users authenticating via on-premises methods are deemed to be at risk by the Microsoft Entra ID Protection service, per a Thursday announcement.

Exchange Online Tamper Protections Arriving in 2024

Microsoft on Wednesday gave notice that its Exchange Online e-mail tamper protections are planned for completion in 2024, which may entail some backend changes by IT departments.

Cisco To Acquire Splunk for About $28 Billion

Cisco is acquiring security and IT solutions provider Splunk for about "$28 billion in equity value," per a Thursday announcement.

Windows Server 2012 ESUs via Azure Arc Now Commercially Available

Microsoft this week announced that Extended Security Updates for Windows Server 2012 and Windows Server 2012 R2, as managed using Azure Arc, reached the "general availability" commercial-release stage.

Microsoft Addresses Misconfigured Token Exposing 38TB of Microsoft Data

Microsoft indicated on Monday that it had revoked an overly permissioned Shared Access Signature (SAS) token, said to have exposed "38TB" of internal Microsoft data.

Kelp Illustration

It All Starts with a Plan

Throwing money at your network security without insight into the strengths and limitations of your network will put your enterprise users' data at risk.

Microsoft Adds SMB Security Controls for Windows Insider Program Testers

Microsoft has added Server Message Block security measures for IT pros, which are now available as part of an early Windows preview release.

SharePoint Server Subscription Edition Update 23H2 Released

Microsoft released "feature update" 23H2 for SharePoint Server Subscription Edition (SE), per a Tuesday announcement.

66 Vulnerabilities Squashed in Microsoft September Security Patch

This month also features two zero-day fixes for Word and Microsoft Streaming Service.

Cyber Security Education Never Ends

John O'Neill, Sr. stresses the importance of staying up to date with an ever-changing enterprise security landscape.

Phishing Group Targets Thousands of Microsoft 365 Accounts

A black market called "W3LL Store" provided threat actors with all the tools they needed to pull off targeted attacks.

Notebook

Yubico Shares Expertise on How To Get to Passwordless

This month, I chatted with Yubico experts Erik Parkkonen, solutions architect, and Derek Hanson, vice president of standards and alliances, on the passwordless goal for organizations and where we are at this point.

Microsoft Defender for Identity Adds More Certificate Abuse Detections

Microsoft Defender for Identity now has a new sensor to further detect certificate abuses by attackers, per a Wednesday announcement.

Building a CyberInsurance Compliant Security Infrastructure

When attackers strike and operations suffer, good CyberInsurance may make the difference between a few stressful days, or catastrophic monetary losses.

Subscribe on YouTube