Microsoft updated an August security advisory this week to urge organizations using the Lightweight Directory Access Protocol in supported Windows systems to implement some configuration changes manually.
Microsoft released security patches for multiple vulnerabilities in Windows and various applications in its September "update Tuesday" release.
A new Confidential Computing Consortium was announced on Wednesday by the Linux Foundation to boost the security of processed data.
Microsoft warned this week in a Twitter post that its August security updates won't install for users of Windows 7 Service Pack 1 or Windows Server 2008 R2 SP1 if those operating system lack certain March updates.
Microsoft's August security updates address about 93 common vulnerabilities and exposures, several of which are associated with Remote Desktop Protocol (RDP).
Microsoft indicated recently that "BlueKeep" exploit code for Windows systems is now "widely available" for use by attackers.
The new Sandbox feature in Windows 10 lets organizations run potentially risky executables in isolation, without having to set up a virtual machine.
Remote Desktop Protocol is an easy-to-find and popular target for remote attackers, according to a recent study conducted by Sophos.
Organizations wanting a future without passwords will likely face some hurdles getting there, Microsoft admitted in an announcement this week.
Of the many security improvements Microsoft made to the latest Windows 10 release, the ability to wall-off the Edge browser against malware attacks is one of the most critical.
Microsoft on Wednesday announced the availability of a public preview of Azure Active Directory's FIDO2 support, which enables user authentications without passwords.
Microsoft on Tuesday released its July security patch bundle, which addresses about 77 common vulnerabilities and exposures across various Microsoft products.
Microsoft issued some reminders this week that July 9, 2019, is the last day of patch support for SQL Server 2008 and SQL Server 2008 R2.
The Microsoft Excel spreadsheet program, in combination with its Power Query data-fetching component, can be leveraged in so-called "Dynamic Data Exchange" (DDE) types of attacks.
A recently published industry report suggested that use of public cloud services by organizations may nearly double in the next two years.
Microsoft announced a few OneDrive enhancements, including storage-option additions, plus a new "Personal Vault" feature for added security assurance.
Exchange Server 2019 with Cumulative Update 2 (CU2) can help organizations rid themselves of old authentication protocols, which constitute a potential security risk.
Microsoft on Tuesday announced a preview of the Azure Bastion service, which lets a user connect to an Azure virtual machine (VM) using a private Internet connection.
Academic researchers this week published information about another side-channel attack method, called "RAMBleed," that can expose information from memory chips, including encryption key information.
Microsoft added its conditional access security service to Microsoft 365 Business subscriptions, according to a Wednesday announcement, and it also added new trouble-ticket features for Microsoft 365 administrators.