While security experts must keep an eye out on evolving threats, old vectors of attacks should not be forgotten or ignored.
- By Gladys Rama, Chris Paoli
- 09/17/2024
Let's start with that disastrous opt-in MFA policy.
- By Joey D'Antoni
- 09/17/2024
Microsoft recently met with executives from some of its biggest security partners, including beleaguered CrowdStrike, to discuss ways to protect their mutual customers from another disaster.
Microsoft's latest security patch update addresses 79 vulnerabilities, including four that are already being actively exploited in the wild.
PowerShell can be wielded for both good and evil, and knowing both sides can help you keep your organization protected.
- By Gladys Rama, Chris Paoli
- 09/05/2024
Microsoft has launched Prompt Shields, a new security feature now generally available, aimed at safeguarding applications powered by Foundation Models (large language models) for its Azure OpenAI Service.
Microsoft last week disclosed a sophisticated cyber campaign by a North Korean threat actor exploiting a zero-day vulnerability in the Chromium browser.
ChatGPT creator OpenAI, Microsoft, Gartner and other tech companies are giving their support for a proposed California bill that would require tech companies to label content generated by AI in the form of a digital "watermark."
- By John K. Waters
- 08/27/2024
The Cloud Security Alliance (CSA) has released new guidance on securing systems that leverage Large Language Models (LLMs) to address business challenges.
Microsoft's Recall AI feature, which has been on a bumpy road with public sentiment since it was announced at this year's Build conference in May, is back and with a new release window of October.
Starting in October, Microsoft will require multifactor authentication (MFA) for all Azure sign ins.
Data security's biggest threat might not come from outside attackers, but from management getting in the way.
- By Gladys Rama, Chris Paoli
- 08/14/2024
Microsoft's monthly security update is here with 88 fixes spread across the company's products and services.
Face Check with Microsoft Entra Verified ID, a consent-based method used to confirm a person's identity, is now generally available.
OpenVPN, a popular open source virtual private network (VPN) system integrated into millions of routers, firmware, PCs, mobile devices and other smart devices, is leaving users open to a growing list of threats, according to Microsoft.
Security researchers are warning that attackers can bypass Microsoft 365's phishing alert feature through the use of specially crafted emails.
Being proactive is key to keeping your enterprise safe and your data secure. Learn more about Continuous Threat Exposure Management, and what it can do for your network.
- By Gladys Rama, Chris Paoli
- 08/06/2024
The Microsoft 365 Backup Storage platform, which includes Microsoft 365 Backup and its partner-focused Microsoft 365 Backup Storage, is now generally available.
Israel-based security firm Perception Point has uncovered an increase in phishing activity using Microsoft Office Forms to execute a two-step phishing attack.
As security biometrics continue to sophisticate, many organizations are still using flawed passwords to safeguard their data. That needs to change. Now.
- By Gladys Rama, Chris Paoli
- 07/25/2024