Security Topic Page -- Redmondmag.com

Security

News

Microsoft Bringing SMB Over QUIC to Windows

Microsoft is working on Server Message Block (SMB) over QUIC technology for use with "Windows, Windows Server, and Azure Files," according to a Monday announcement. 03/02/2020
News

New Edge Browser Getting Ability To Block Unwanted Apps

The new Chromium-based Microsoft Edge browser is getting the ability to block potentially unwanted applications (PUAs), Microsoft announced on Thursday. 02/28/2020
News

Microsoft Didn't Remove the SMB1 Protocol from Windows

Microsoft explained in a Wednesday announcement that it didn't actually remove Server Message Block 1 (SMB1) from Windows releases. 02/26/2020
News

Exchange Online Users Get More Caveats on Basic Authentication's End in October

Microsoft on Tuesday offered more details on its plans to end Basic Authentication in Exchange Online, which will cause pain for some organizations. 02/26/2020
News

Microsoft's Azure Sphere for IoT Devices Now Commercially Available

Microsoft announced that its Azure Sphere solutions for Internet of Things (IoT) devices have reached the "general availability" (GA) commercial-release stage. 02/24/2020
News

Dell Sells RSA Assets for $2 Billion

Dell's RSA security solutions businesses, including the RSA Conference, were bought by a consortium of companies for about $2 billion, according to Tuesday announcements. 02/21/2020
News

Microsoft Preps for RSA Conference with Multiple Security Product Announcements

The announcements included a few "general availability" announcements, product enhancements and some partner collaborations. 02/20/2020
News

Microsoft's February Security Patches Bring Lots of Problems

Microsoft's February security updates came with plenty of technical bumps. 02/18/2020
HTTPS the Culprit in Quarter of Malware Infections

A recent report documents how widespread the use of HTTPS connections is becoming in malware circles, especially for communicating back to command-and-control servers. 02/18/2020
News

Study Finds IT Inadequacies in Key and Certificate Management

Mismanaged security certificates have resulted in "unplanned downtime and outages," per 73 percent of respondents in a recently published Ponemon Institute study, which polled IT security personnel. 02/14/2020
News

Office 365 Safe Documents and Application Guard Previews Announced

Microsoft on Wednesday announced previews of two new Office document security protections for Office 365 E5 subscribers that aim to block malicious payloads. 02/13/2020
News

Microsoft's February Security Patches Bringing 12 Critical Fixes

All told, Microsoft is addressing 99 common vulnerabilities and exposures (CVEs) in this February security bundle. 02/11/2020
News

Microsoft Touts Coming Secure Score Public Preview Benefits

Coming changes to the Microsoft Secure Score security assessment service for organizations will make it a "killer productivity app for security administrators," Microsoft promised in a Monday announcement. 02/10/2020
News

Google Outlines Chrome Browser Schedule for Blocking Insecure Web Downloads

Google is planning to issue warnings to Chrome browser users about potentially insecure content that can get downloaded when visiting Web sites. 02/07/2020
News

Microsoft Outlines Early Progress on PowerShell Secrets Management

Microsoft described progress on its coming PowerShell Secrets Management Module in a Thursday announcement. 02/06/2020
News

In Wake of Azure Error, NSA Updates Cloud Security Guidance

The biggest cloud security issue plaguing organizations is misconfigurations, according to the National Security Agency (NSA), which recently published a security report titled "Mitigating Cloud Vulnerabilities." 02/05/2020
News

Microsoft Previews Conditional Access Policies for Office 365 Apps

Microsoft on Tuesday announced a preview of Azure Active Directory conditional access policies for Office 365 applications. 02/04/2020
News

Study Finds Low Confidence in Endpoint Anti-Virus Protections

A recent endpoint security survey of 671 IT pros suggested that most organizations have been attacked and their confidence in the effectiveness of anti-virus protections continues to be low. 02/03/2020
News

Microsoft Warns SameSite Cookie Changes Could Break Some Apps

IT pros could face Web application issues as early as next month with the implementation of a coming SameSite Web change, which will affect how cookies are used across sites. 01/28/2020
News

Microsoft Security Misconfiguration Exposed 250 Million Technical Support Accounts

Microsoft on Wednesday disclosed that some of its customer support case information was exposed last month due to misconfigured security settings in an Azure-hosted database. 01/22/2020
News

Industrial Control System Honeypot Illustrates Bad Security Practices

Security solutions provider Trend Micro has published results (PDF) from running an industrial control system (ICS) "honeypot." 01/21/2020
Ransomware: What It Means for Your Database Servers

Ransomware affects databases in very specific ways. Joey describes the mechanics of a SQL Server ransomware attack, what DBAs can do to protect their systems, and what security measures they should be advocating for. 01/21/2020
Posey's Tips & Tricks

How To Dynamically Lock Down an Unattended Windows 10 PC

One of the biggest security risks in any organization happens when a user walks away from their PC without logging out. Microsoft has the solution (and it's not a password-protected screensaver). 01/16/2020
News

Microsoft's January Security Updates Come with NSA Help

Microsoft released its January security updates with a partial assist from the U.S. National Security Agency (NSA). 01/15/2020
Microsoft Gets a Patch Tuesday Assist from...the NSA

For its first Patch Tuesday release of the year, Microsoft included a patch for a vulnerability affecting the latest versions of Windows that was discovered and reported to Microsoft by the U.S. National Security Agency. 01/14/2020