-
News
Security researchers are under attack from a group thought to be associated with North Korea, according to announcements this week by Google and Microsoft.
01/29/2021
-
News
Microsoft this week described a few security products that have reached "general availability" (GA) or commercial-release status, while also touting its overall security-market position.
01/28/2021
-
News
Potential phishing attacks were a top concern of most IT security professionals when organizations switched to remote-work conditions early last year.
01/26/2021
-
News
Microsoft on Wednesday published an analysis of the second-stage "Solorigate" attack methods used by an advanced persistent threat (APT) attack group.
01/20/2021
-
News
Security solutions company Malwarebytes affirmed on Monday that alternative methods besides tainted SolarWinds Orion software were used in the recent "Solorigate" advanced persistent threat (APT) attacks.
01/19/2021
-
News
Microsoft on Thursday issued a reminder to organizations to ensure that their systems are properly patched for a "Critical"-rated Windows Netlogon vulnerability before next month's "update Tuesday" patch distribution arrives.
01/15/2021
-
News
Microsoft issued yet another article with advice on how to use its Microsoft 365 Defender suite of tools to protect against "Solorigate" advanced persistent threat types of attacks in a Thursday announcement.
01/14/2021
-
News
Microsoft on Tuesday notified Windows Server Update Services (WSUS) users that it's no longer going to automatically support "user proxies" to get patches from Microsoft's content delivery networks (CDNs), starting with this month's cumulative update release.
01/13/2021
-
News
Microsoft released its January security patch bundle on Tuesday, delivering fixes for 83 common vulnerabilities and exposures (CVEs).
01/12/2021
-
News
Microsoft Defender for Endpoint now has an endpoint detection and response (EDR) capability for use with Linux servers that's deemed ready for use in production environments, Microsoft indicated on Monday.
01/11/2021
-
Security expert Sergey Chubarov on the current security landscape and how the SolarWinds attack can change cybersecurity for the better.
01/11/2021
-
News
An advanced persistent threat actor associated with the SolarWinds Orion attacks used their ability to create credentials to compromise a victim's Microsoft 365 and Azure services, but they didn't always tap the so-called "Solorigate" vulnerability to do so.
01/08/2021
-
News
The U.S. National Security Agency this month published an advisory on detecting and blocking old and insecure Transport Layer Security (TLS) protocol use by organizations.
01/08/2021
-
News
Microsoft this week announced the commercial release of a feature that simulates phishing attacks, which is now available to certain subscribers to the Microsoft Defender for Office 365 service.
01/07/2021
-
News
Microsoft is planning to turn on a one-time passcode feature in March that will grant temporary network access to business collaborators for organizations that use the Azure Active Directory B2B service.
01/05/2021
-
News
Microsoft described security measures for IT pros to consider in the wake of the SolarWinds Orion-based software attack.
01/05/2021
-
Posey's Tips & Tricks
To be fair, who could have predicted any of this?
12/21/2020
-
News
Microsoft this week announced a preview of a user name and password autofill capability in the Microsoft Authenticator app.
12/16/2020
-
News
The Cybersecurity and Infrastructure Security Agency (CISA) issued an emergency directive this week for federal agencies using SolarWinds Orion management software, which has been compromised in a sophisticated attack.
12/14/2020
-
News
Microsoft on Tuesday released its December security bundle of software fixes, consisting of just 58 patches, according to the counts of security researchers.
12/08/2020
-
News
Microsoft has introduced Pluton, a security solution aiming to make the current root of trust between the central processing unit and the trusted platform module in devices more resistant to physical tampering.
11/17/2020
-
News
Microsoft this week announced that the Windows 7 and Windows Server 2008 Extended Security Update (ESU) program is approaching Year 2.
11/13/2020
-
News
The Microsoft Endpoint Data Loss Prevention service, used to protect data accessed on devices, reached "general availability" commercial-release status, Microsoft announced this week.
11/12/2020
-
News
Microsoft released its November bundle of security patches on Tuesday, addressing 112 common vulnerabilities and exposures (CVEs).
11/10/2020
-
News
Microsoft on Monday described the format of its newly improved "Security Update Guide," which is used to see monthly security patch details.
11/09/2020