Microsoft has released its monthly bunch of security patches for June, addressing 88 common vulnerabilities and disclosures (CVEs).
The U.S. National Security Agency (NSA) has issued an advisory urging individuals and organizations to install Microsoft's May security patches.
Microsoft again issued advice that its May security patches should be installed to prevent a "wormable" vulnerability in Remote Desktop Services from getting exploited by attackers.
With hackers infiltrating one in three Office 365 customers, an IT pro's best bet is to be suspicious of almost everything.
Microsoft announced a couple of Azure Active Directory enhancements this week regarding password lengths and new conditional access controls for IT pros.
Microsoft this week described Attack Surface Analyzer 2.0, an updated tool for checking software installations that's now built using open source code.
Microsoft is again promoting its HyperClear Hyper-V hypervisor technology as a potential balm for organizations trying to come to grips with Intel's latest speculative execution side-channel attack disclosures.
Microsoft released its May security updates on "update Tuesday," but a patching vortex also opened up as Intel disclosed new processor vulnerabilities.
A "Critical"-rated vulnerability in SharePoint Server versions that Microsoft issued a patch for back in March is now getting actively targeted, according to some security authorities.
Microsoft this week laid out security advice for organizations, which included some best-practice guidelines for IT pros.
A recent report suggests that Microsoft's own e-mail security protections have trouble differentiating between real and fraudulent messages from itself.
Microsoft announced this week that part of its new threat-hunting service for organizations has reached the "general availability" (GA) commercial release stage.
Microsoft announced this week that it will be reorganizing its Office 365 ProPlus privacy controls with an aim toward becoming more "transparent" about the information it collects.
Microsoft on Tuesday announced various Office 365 security and compliance improvements, mostly for Microsoft 365 subscribers.
Microsoft indicated that its container images hosted on Docker Hub weren't compromised by a security breach that was discovered by Docker last week.
Microsoft wants to drop recommending policies that enforce periodic password expirations on users of Windows systems.
Kaspersky Lab this week described more about a zero-day Windows vulnerability (CVE-2019-0859) that its researchers recently discovered, and how PowerShell was used by the exploit.
Microsoft on Friday sent letters to some of its e-mail users that their accounts may have been accessed by "individuals outside Microsoft" over the past three months.
The United States Computer Emergency Readiness Team issued an alert this week about the improper storage of session data by virtual private network applications.
Microsoft published a notice on Wednesday that System Center Configuration Manager 2007 (SCCM) and Forefront Endpoint Protection 2010 (FEP) both will fall out of support on July 9, 2019.