Microsoft this week published a blog post about how the IT giant is helping U.S. federal agencies adopt a Zero Trust architecture and comply with President Joe Biden’s executive order on cybersecurity, and the company’s guidelines should be a framework for any organization to strive towards. The blog comes amid a heightened awareness of cybersecurity […]
Much has been made of the vulnerabilities recently discovered in the Windows Print Spooler Service and Microsoft’s patches for the issue. Now, systems that remain unpatched are being attacked by ransomware operators. In a new report, Cisco Talos says a threat actor is exploiting those vulnerabilities – dubbed PrintNightmare – to spread laterally across a […]
Microsoft’s August security patches include fixes for 44 vulnerabilities, including three zero days and one that is being actively exploited. The most important patches fix issues related to the Windows Print Spooler remote code execution vulnerability and the Windows LSA spoofing vulnerability and an actively exploited vulnerability in Windows Update Medic Service. Because of the […]
Microsoft is warning of an active phishing campaign that uses a combination of techniques to evade detection and trick users into giving up their credentials. In a series of Tweets and updates on GitHub, Microsoft’s security team says the active phishing campaign uses a “craft combination” of legitimate-looking original sender email addresses, spoofed display sender […]
Microsoft has announced that the latest build of Windows 11, Insider Preview Build 22000.100, has hit the Beta channel for Windows Insiders, and it includes a ton of new features that the rest of us are waiting for when the new version of Windows hits the shelves later this year. However, the Teams Chat integration […]
Microsoft has shared instructions on how to mitigate PetitPotam, an NT Lan Manager (NTLM) relay attack used against Windows domain controllers or servers. The company did not say if the vulnerability is currently being exploited. Microsoft called it a “classic” NTLM relay attack that allows an attacker to take over a domain controller or other […]
Microsoft strengthens its cloud security by acquiring Cloudknox to help prevent today’s alarming number of security breaches.
Microsoft has been making plenty of news over the last few weeks with its announcement of Windows 11, Windows 365 and now Windows 10 21H2, the second major update for 2021. Since both Windows 10 21H2 and Windows 11 will come out later this year, how organizations proceed with upgrading to Windows 11 largely depends […]
In case you missed it, the U.S. government has taken several actions of late aimed at stopping foreign cybercriminals and nation state actors from attacking the networks of government entities and private organizations, including charging four Chinese nationals with stealing intellectual property, attributing the Microsoft Exchange Server attacks to China and launching anti-ransomware initiatives. If […]
Just when we thought the Windows Print Spooler vulnerability was addressed, Microsoft has released information about another vulnerability in the service that could allow an attacker to run arbitrary code with SYSTEM privileges. The company is currently developing a security update to address this vulnerability, which is tracked as CVE-2021-34481. This comes after Microsoft previously […]
FREE Downloadable resources from TechDecisions provide timely insight into the issues that IT, A/V, and Security end-users, managers, and decision makers are facing in commercial, corporate, education, institutional, and other vertical markets
View all Guides
Get your latest project featured on TechDecisions Project of the Week. Submit your work once and it will be eligible for all upcoming weeks.
Enter Today!