Just one day after Microsoft released its monthly security patch, attackers had already reverse-engineered one of the bulletins and have been using it in active attacks.
This month's Security Update includes a fix for a 0-day issue in Microsoft Office.
Security firm Cylance has reportedly uncovered a Windows security issue that could lead to attackers stealing user credentials.
Microsoft on Wednesday announced new security tools for Office 365 users that aim to harden e-mail from phishing and malware attacks.
Researchers at IBM have discovered an active attack campaign using a variation of the Dyre Trojan that has already stolen millions from organizations.
Vulnerability management vendor Secunia last week released its annual "Secunia Vulnerability Review," with findings pointing an overall rise to vulnerabilities in 2014 by 18 percent compared to 2013.
- By Scott Bekker
Encrypting ransomware is an annoying persistent threat that many IT admins unfortunately write off as an ID10T error they can't do much about. End-user training and targeted backup strategies can serve as effective enterprise countermeasures.
- By Scott Bekker
Microsoft announced today that it is adding three mobile device management capabilities to certain Office 365 subscription plans at no extra cost.
The company has warned that the bogus Internet certs could be used in man-in-the-middle attacks.
As the proliferation of breaches continues to put more user data into the wrong hands, the causes are often insufficient IT security and lax policies.
Also, the company announced a new security tool that will use Windows 10 device authentication over user passwords.
Microsoft has enabled encryption and information rights management protections for its Office 2016 for Mac suite of applications as an extra service.
Also included is a fix for the widespread FREAK bug.
Microsoft and Samsung may be getting ready to announce a mobile management deal associated with Android-based devices.
Microsoft has added OneNote and privacy options in an update for its Office "Sway" app.
Microsoft described the layered security approach it's taking in its last "Success with Enterprise Mobility" Web broadcast on Tuesday.
Microsoft's next Windows Server may include a new "Nano Server" element, according to reports.
IT auditing software provider Netwrix released a free tool to help security teams reduce risk of inside jobs by reporting permissions in Active Directory and file shares.
- By Jeffrey Schwartz
Both Apple and Linux finished the year with more security flaws than Microsoft's OSes.
Microsoft's Azure Active Directory team released a "preview" this week of an automatic password rollover feature for organizations that use shared social media accounts.