Microsoft took more than two years after disclosure to patch a vulnerability in the Windows Support Diagnostic Tool, dubbed "Dogwalk," which was described this week as being under active exploit.
Microsoft has created a new "guided hunting notebook" for Microsoft Sentinel users that's designed to detect so-called "low and slow" password spray attacks, according to a Thursday announcement.
After a lighter-than-usual past few months, Microsoft is back in the triple digits for its monthly security update, with 121 common vulnerabilities and exposures (CVE) fixes.
Microsoft Entra Verified ID, a new service that promises a more deliberate way for individuals and organizations to share identity information, is now released at the "general availability" stage, Microsoft announced on Monday.
Microsoft recently rolled out a new security policy for Windows 11 that aims to curb the growing ransomware threat by blocking some brute-force attacks.
From cloud security to multicloud management, this IT industry expert provides great insights into where the cloud is and where it's headed.
- By John K. Waters, Chris Paoli
- 08/08/2022
Microsoft this week described an Azure Threat Research Matrix for documenting tactics, techniques or procedures (TTPs) used against Azure services, including the Azure Active Directory service.
Microsoft this week began further explaining its Windows Update for Business Deployment Service, with a focus on Safeguard Holds.
Microsoft on Wednesday announced the "general availability" commercial release of the Microsoft Defender Experts for Hunting service.
Microsoft on Tuesday announced three new enterprise-grade security products, which are now commercially released.
Threat actors are adjusting their tactics and moving away from macro-based attacks after Microsoft's policy of blocking VBA macros in Office, according to a report released this week.
Microsoft on Thursday announced the gradual end of its Windows Information Protection (WIP) service, which is designed to keep users of Microsoft 365 apps from inadvertently disclosing organizational information.
Microsoft this week indicated that fixes for Microsoft Access problems, which were caused by a botched July 12 "patch Tuesday" security patch release, will be arriving soon.
Microsoft this week said they are once again reverting back to blocking Visual Basic Application (VBA) macros in Office.
Microsoft announced on Tuesday that its HyperClear technology used with its Hyper-V hypervisor offers protections against new speculative execution side-channel attack methods that were disclosed last week by AMD and Intel.
The nonprofit World Wide Web Consortium (W3C) on Tuesday announced that its collaborative work on Decentralized Identifiers (DIDs) is now a W3C Recommendation, which is at version 1.0.
Microsoft disclosed details this week of a large-scale phishing campaign that has targeted more than 10,000 organizations since September 2021.
Microsoft on Wednesday announced features in Windows 11, build 25158, for its Windows Insider Program testers that includes a new Domain Name System (DNS) over Transport Layer Security (TLS) encryption option.
Microsoft Defender for Business now has the ability to protect servers, which is at the preview stage, according to a Wednesday Microsoft announcement.
Microsoft's monthly security patches for July are here and, despite the 86 flaws fixed, it might go smoother for some thanks to Windows Autopatch.