-
Posey's Tips & Tricks
Backups aren't just the last line of defense against ransomware. If you know the signs, your backups can also help you stop a ransomware attack that is currently in progress.
03/29/2021
-
News
Microsoft on Thursday published a comprehensive description of the Exchange Server attack methods currently taking advantage of four zero-day flaws in those products, and offered extensive advice.
03/26/2021
-
News
Microsoft on Thursday highlighted a few additions this month for users of Microsoft Endpoint Manager, which is used for configuring and managing devices and servers.
03/26/2021
-
News
Microsoft on Tuesday announced a preview of an enhancement to Microsoft Defender for Endpoint on Linux's anti-virus solution, adding behavior monitoring, deep scanning and blocking capabilities.
03/24/2021
-
News
A couple of industry-sponsored studies on security practices associated with supporting remote workforces were recently published this week.
03/23/2021
-
News
Microsoft on Thursday clarified that organizations running Exchange Server can get automatic security mitigations against Hafnium attacks via Microsoft Defender Antivirus.
03/19/2021
-
News
The Microsoft Security Response Center team on Tuesday issued "Guidance for Responders," which provides more advice on how organizations can respond to the recent attacks that are leveraging Exchange Server zero-day flaws.
03/18/2021
-
Posey's Tips & Tricks
Once universally loathed, UAC is now a very useful tool for blocking Windows security threats. Here's how to make sure you're using it appropriately.
03/17/2021
-
News
Microsoft on Tuesday announced the release of a one-click tool to apply temporary security protections against the recent Exchange Server attacks from the "Hafnium" advanced persistent threat group and other attackers.
03/16/2021
-
Microsoft announced a lot of Azure SQL news at Ignite this month, but few as critical to application development security than the public preview of Always Encrypted with secure enclaves. Here's how to get started with this new feature.
03/15/2021
-
News
Exchange Servers are getting attacked to install ransomware, dubbed "DearCry," Microsoft warned on Thursday.
03/12/2021
-
Another reason to patch early and patch often: The Exchange Server zero-day vulnerabilities Microsoft first disclosed earlier this month are now being used in ransomware.
03/12/2021
-
News
The U.S. Cybersecurity and Infrastructure Security Agency and the Federal Bureau of Investigation announced a Microsoft Exchange Server joint advisory that offers consolidated advice for Exchange Server users on detecting Hafnium attacks.
03/10/2021
-
News
Microsoft has released software security updates addressing 89 common vulnerabilities and exposures (CVEs), according to security researchers.
03/10/2021
-
Posey's Tips & Tricks
Those with a business or enterprise subscription to Microsoft 365 have the option to create a policy that will greatly reduce the chances of a user becoming infected from a malicious e-mail.
03/10/2021
-
News
Microsoft's Exchange team on Monday announced additional help for organizations having trouble trying to patch Exchange Server products quickly in response to the Hafnium attacks.
03/09/2021
-
News
Microsoft has updated its recommendations to organizations running Exchange Server, targeted in Hafnium nation-state attacks, by describing some new resources.
03/08/2021
-
Posey's Tips & Tricks
Microsoft's go-to solution for anti-phishing protection is an anti-phishing policy. Here's how to create one in Microsoft 365.
03/08/2021
-
News
Microsoft this week described "three new pieces" of malware that were used in the SolarWinds Orion espionage attacks dubbed "Solorigate," although Microsoft security researches are now calling it "Nobelium."
03/05/2021
-
Posey's Tips & Tricks
These are the top four privacy settings to check in your Windows device to make sure Microsoft doesn't collect any data you don't want it to.
03/03/2021
-
News
Microsoft on Tuesday released out-of-band security patches for Exchange Server to address multiple zero-day flaws that are currently being exploited in active attacks.
03/02/2021
-
Posey's Tips & Tricks
To audit all of the personal data that Microsoft has collected from your PC usage habits, look no further than Windows 10's Privacy Dashboard.
03/01/2021
-
News
Microsoft's Active Directory authentication solution got notably skewered during a Feb. 23 U.S. Senate hearing on the SolarWinds Orion software hack.
02/26/2021
-
News
Microsoft announced on Thursday that its CodeQL queries, which were used to detect possible compromise in its source code after the Solorigate attacks, are now publicly available at the GitHub repository.
02/25/2021
-
News
Microsoft last week announced plans to increase the price of "standalone" subscriptions to its Microsoft Intune and Microsoft Enterprise Mobility plus Security (EMS) products starting in July.
02/22/2021