Security Topic Page -- Redmondmag.com

Advanced Search

Security

Microsoft Unveils 'Azure Sentinel' and 'Threat Experts' for Security

Just days before the 2019 RSA Conference, Microsoft on Thursday announced the preview releases of two new cloud-based security services: Azure Sentinel and Threat Experts. 02/28/2019
Posey's Tips & Tricks

How To Control Your Microsoft Office Metadata

Metadata can say a lot about a given document -- as well as the document's creator. Here's how to manage what types metadata appear in your Office documents to protect your security while still giving useful information. 02/25/2019
News

Windows Defender ATP Support for Windows 7 and Windows 8.1 Reaches 'General Availability'

The Windows Defender Advanced Threat Protection service can now be used to help address security issues with Windows 7 and Windows 8.1 clients. 02/22/2019
News

Microsoft Issues Windows Server HTTP/2 Attack Advisory

Microsoft issued Security Advisory ADV190005 on Wednesday concerning a potential HTTP/2 settings issue for users of Internet Information Services (IIS) on Windows Server. 02/21/2019
News

Microsoft Publishes Windows Deadlines on Upgrading to SHA-2

Microsoft on Friday described its 2019 timeline for when it will start distrusting Secure Hash Algorithm-1 (SHA-1) in supported Windows systems, as well as in the Windows Server Update Services 3.0 Service Pack 2 management product. 02/19/2019
News

Vendors Issue Patches for Linux Container Runtime Flaw Enabling Host Attacks

This week, the National Institute of Standards and Technology (NIST) described a high-risk security vulnerability (CVE-2019-5736) for organizations using containers that could lead to compromised host systems. 02/15/2019
News

Windows 10 Version 1809 Users May Get Visual Studio Crashes

Microsoft on Friday issued an advisory for Windows 10 version 1809 users about possible Visual Studio crashes. 02/15/2019
News

Security Researchers Highlight Exchange and IE Zero-Day in February Microsoft Patches

Microsoft's February "update Tuesday" release was notable for delivering major security updates and architectural changes to all supported Exchange Server products, along with a "zero-day" IE patch. 02/13/2019
News

Microsoft Releases Quarterly Updates to Exchange Server, Delivers Security Fixes and Architectural Changes

Microsoft took the rare step of announcing the release of Exchange Server quarterly updates that will include "critical security" fixes, while also changing the architectures of all supported Exchange Server products. 02/12/2019
News

Azure Advanced Threat Protection Now Provides Alerts on NTLM Relay Issues

Microsoft on Monday touted its Azure Advanced Threat Protection (ATP) service as being capable of alerting organizations when they are subject to NT LAN Manager (NTLM) relay attacks. 02/11/2019
Posey's Tips & Tricks

Should You Rethink Your Office Patching Strategy?

Buggy patches are all but inevitable -- especially, it seems, if they're from Microsoft. Maybe the old wait-and-see approach to Office patching is worth a second look. 02/11/2019
News

Microsoft Previews SAML Token Encryption in Azure Active Directory

Microsoft has been adding to its Azure Active Directory capabilities in recent weeks. 02/08/2019
News

Microsoft Issues Yet Another Exchange Server Security Advisory

Microsoft on Monday issued Security Advisory ADV190007 concerning an elevation-of-privilege vulnerability that's present in most Exchange Server versions. 02/07/2019
News

Windows Update Classifications Can Cause Orgs To Miss Fixes to Bad Patches

Organizations using Microsoft's tools to manage Windows updates could be missing out on early fixes to problems because of the way Microsoft classifies its updates. 02/06/2019
News

NSA Offers Guide on Speculative Execution Side-Channel Attacks

The U.S. National Security Agency issued updated guidance late last month on the various speculative execution side-channel flaws that open up all systems using modern processors to potential attacks. 02/05/2019
News

Microsoft 365 Users Getting a Bunch of Security and Compliance Perks

Microsoft announced a number of security and compliance improvements that mostly apply to users of its Microsoft 365-licensed products. 02/01/2019
News

Information Disclosure Flaws Found in Cisco Small Business Routers

Cisco acknowledged vulnerabilities in two of its small business router products last week that could lead to information disclosures. 01/30/2019
News

US-CERT Highlights Exchange Server Flaw Enabling Escalation-of-Privilege Attacks

The U.S. Computer Emergency Readiness Team this week noted that Exchange Server versions from Exchange Server 2013 on up have a vulnerability that could permit the impersonation of any user, leading to "control of an affected system." 01/30/2019
News

Microsoft Previews One-Time Passcodes in Azure AD B2B Service

Microsoft added a preview feature to its Azure Active Directory Business to Business (B2B) service that makes it easier for business partners to gain access to an organization's network resources. 01/28/2019
News

Microsoft Drops 'Preview' Label from Week 4 .NET Framework Updates

Microsoft announced a subtle change to its .NET Framework patch labeling earlier this week that's notable for IT pros handling the monthly patching of Windows 10 and Windows Server 2019 environments. 01/25/2019
News

Windows 7 To Fall Out of Support in One Year

January 14 marks a one-year period before the end of support for Windows 7. 01/14/2019
News

Windows 7 File Share and Connection Problems Traced to January Patch KB4480970

Windows 7 was a notable victim of this month's "update Tuesday" security patch releases by Microsoft, according to various accounts. 01/10/2019
News

Microsoft Delivers Mild January Security Patch Bundle

Microsoft offered a relatively mild "update Tuesday" bundle of security fixes in its January release this month. 01/08/2019
News

Exchange Online Forensics Now Bolstered by Session ID Info

Organizations using the Exchange Online e-mail messaging service now are getting the ability to use session ID information in Exchange Online audit logs to better detect attacks. 01/04/2019
News

New Microsoft 365 Security and Compliance Offerings Arriving Next Month

Two new Microsoft 365 service bundles will be available next month, with one focused on security and the other on compliance. 01/02/2019

« previous
1
2
3
4
5
6
7
8
9
10
next »

Office 365 Watch

Sign up for our newsletter.

Email Address

Country

Terms and Privacy Policy consent

Yes, I agree No, I don't agree

I agree to this site's Privacy Policy.

The Data Breach Game: The 9 Worst IT Security Practices

Tamper Protection Now Available to Microsoft Defender ATP Subscribers

Updated Tools for Office 365 and Microsoft Azure Arriving Soon

Microsoft Touts Machine Learning Role in Assessing Windows 10 Upgrades

Microsoft Eases Windows 10 Previews for Windows Server Update Services Users

Free Whitepapers

More Tech Library

Free Webcasts