Resecurity announced its award-winning cybersecurity threat intelligence and risk monitoring platform is now available on Microsoft’s Azure Marketplace. Microsoft’s Azure Marketplace is the most comprehensive marketplace on the planet, offe…
Tag: Microsoft
Global Security News, North America
Agita Labs TrustForge now available in the Microsoft Azure cloud
by Industry News •
Agita Labs announced that its TrustForge secure computation capability is now available in the Microsoft Azure cloud. Based on Agita’s sequestered encryption technology, TrustForge enables users to upload data to the cloud while retaining complet…
Uncategorized
Smashing Security podcast #281: Debug ransomware and win $1,000,000, period-tracking apps, and AI gets emotional
by Graham Cluley •
A new version of the LockBit ransomware offers a bug bounty, women uninstall period-tracking apps in fear of how their data might be used against them, and Microsoft’s facial recognition tech no longer wants to know how you’re feeling.
All this and …
Global Security News, North America
FiveBy and Microsoft join forces to defend organizations against fraud related attacks
by Industry News •
FiveBy announced a new collaboration with Microsoft, which combines managed service offerings with the power of Microsoft Dynamics 365 Fraud Protection. Organizations across many industries are experiencing an increase in fraud incidents at speeds that…
Global Security News, North America
Photos: Cyber Week 2022
by Help Net Security •
Cyber Week is a large annual international cybersecurity event, hosted each year at Tel Aviv University in Israel. Cyber Week 2022 is held jointly by the Blavatnik Interdisciplinary Cyber Research Center (ICRC), The Yuval Ne’eman Workshop for Science, …
Global Security News, North America
Cybercriminals use Azure Front Door in phishing attacks
by Help Net Security •
Resecurity, Inc. (USA) has identified a spike in phishing content delivered via Azure Front Door (AFD), a cloud CDN service provided by Microsoft. The identified resources in one of the malicious campaigns impersonated various services appearing to be …
Global Security News, North America
Don’t Risk Losing Control Over Your Microsoft 365 to Ransomware!
by Security | TechRepublic •
Microsoft 365 provides powerful services within Office 365 — but a extensive backup of your Office 365 data is not one of them. Veeam® Backup for Microsoft 365 removes the risk of losing access and control over your Office 365 data, including OneDrive …
Global Security News, North America
Don’t Risk Losing Control Over Your Microsoft 365 to Ransomware!
by Security | TechRepublic •
Microsoft 365 provides powerful services within Office 365 — but a extensive backup of your Office 365 data is not one of them. Veeam® Backup for Microsoft 365 removes the risk of losing access and control over your Office 365 data, including OneDrive …
Global IT News
Russia running global cyber-influence operations to support war: Microsoft
by Howard Solomon •
Russian intelligence agencies have stepped up network penetration, espionage and online propaganda activities targeting countries supporting Ukraine, s
Exploits, Security Bloggers, Security Vendor News, Vulnerabilities
THREAT ALERT: Follina/MSDT Microsoft Office Vulnerability
by Cybereason Global SOC Team •
The Cybereason Global Security Operations Center (SOC) issues Cybereason Threat Alerts to inform customers of emerging impacting threats. The Alerts summarize these threats and provide practical recommendations for protecting against them.
Uncategorized
Voicemail-themed phishing attacks target organisations
by Graham Cluley •
Have you received an email notification that there is a voicemail waiting to be listened to by you?
Maybe you would be wise to think carefully before clicking on the attachment.
Global IT News
Cloudflare, Microsoft 365 suffer major outages
by Howard Solomon •
Two major IT providers suffered service problems this morning, causing CIOs and CISOs hours of grief. A huge outage affected more than a dozen of content provider Cloudflare’s data centers, which affected a large number of major websites. It began around 2:34 a.m. Eastern time and was reported by the company to be resolved about
Global Security News, North America
Infosecurity Europe 2022 video walkthrough
by Help Net Security •
Infosecurity Europe 2022 opened its doors today at the ExCeL in London, here’s a look inside the event. The featured vendors are: Akamai Technologies, AlgoSec, Appgate, AwareGO, Bridewell, CrowdStrike, Cybereason, Cymulate, Cympire, CyberVadis, D…
Security Bloggers, Security Vendor News
Defending Against Scheduled Task Attacks in Windows Environments
by Harshal Tupsamudre •
Scheduling tasks is one of the most popular attack techniques used by threat actors to establish persistence on a victim’s machine. The Qualys Research Team investigated different ways that attackers could use to conceal scheduled tasks. In this blog, we describe three new techniques to hide and delete scheduled tasks in a Microsoft Windows environment. […]
North America
Identity: Our Most Valuable Digital Asset
by Neil Sutton •
As more organizations shift to the cloud, identity has…
Global IT News
Microsoft announces Viva Sales to capture data for CRMs
by Tom Li •
Microsoft is expanding the capabilities of Viva, its employee experience platform, with Viva Sales, an application designed to complement customer relationship management systems (CRMs). What is Microsoft Viva Sales? Viva Sales’ marquee benefit is its ability to automatically capture customer data through its tagging feature and feed it into any CRM such as Salesforce CRM
Global Security News, North America
Review: System Mechanic Ultimate Defense
by Scott Matteson •
System Mechanic Ultimate Defense is a Windows utility intended to optimize system performance, secure the OS and user data/credentials and perform data recovery services. Learn more about how it works and how the features rate.
The post Review: System …
Security Vendor News
S3 Ep87: Follina, AirTags, ID theft and the Law of Big Numbers [Podcast]
by Paul Ducklin •
Lastest epsiode – listen now!
Global Security News, North America
‘Potentially dangerous’ Office 365 flaw discovered
by Esther Shein •
Proofpoint says the piece of functionality allows ransomware to encrypt files stored on Microsoft SharePoint and OneDrive.
The post ‘Potentially dangerous’ Office 365 flaw discovered appeared first on TechRepublic.
North America
Employee retention through automation
by Neil Sutton •
Using XDR solutions to combat fatigue and attract talent
Global Security News, North America
Ransomware gang publishes stolen victim data on the public Internet
by Zeljka Zorz •
The Alphv (aka BlackCat) ransomware group is trying out a new tactic to push companies to pay for their post-breach silence: a clearnet (public Internet) website with sensitive data about the employees and customers stolen from a victim organization. A…
Security Vendor News
Follina gets fixed – but it’s not listed in the Patch Tuesday patches!
by Paul Ducklin •
We tried it out to make sure, so you don’t have to.
Global Security News, North America
Microsoft fixes Follina and 55 other CVEs
by Zeljka Zorz •
June 2022 Patch Tuesday has been marked by Microsoft with the release of fixes for 55 new CVEs, as well as security updates that fix Follina (CVE-2022-30190), the Microsoft Windows Support Diagnostic Tool (MSDT) RCE that is being widely exploited by at…
Global Security News, North America
Is your organization ready for Internet Explorer retirement?
by Zeljka Zorz •
June 15, 2022, is the day that Microsoft will stop supporting most versions of Internet Explorer 11, and organizations should have ensured that they ready for its retirement. But are they? Internet Explorer retirement does not equal death Slowly but re…
Global Security News, North America
Microsoft helps prevent lateral movement from compromised unmanaged devices
by Zeljka Zorz •
A new feature in Microsoft Defender for Endpoint can make it more difficult for attackers to perform lateral movement within company networks, as it allows admins to prevent traffic flowing to and from unmanaged devices that have been compromised. Isol…
Uncategorized
DogWalk zero-day Windows bug receives patch – but not from Microsoft
by Graham Cluley •
A Windows zero-day vulnerability dubbed “DogWalk” has not received an official patch yet from Microsoft, but that hasn’t stopped others from offering free fixes to protect users.
Read more in my article on the Hot for Security blog.
Global Security News, North America
June 2022 Patch Tuesday forecast: Internet Explorer fades into the sunset
by Help Net Security •
May 2022 Patch Tuesday provided the final releases for several Windows 10 operating systems and this month we’ll see the final update for Internet Explorer 11. But don’t go on that family vacation thinking there will be less work to do when you come ba…
Uncategorized
Microsoft disrupts Bohrium spear-phishing ring by seizing 41 domains
by Graham Cluley •
An Iranian hacking gang called Bohrium has had its activities disrupted after Microsoft seized control of 41 domains used in spear-phishing attacks.
Read more in my article on the Hot for Security blog.
Global Security News, North America
Photos: RSA Conference 2022, part 2
by Help Net Security •
RSA Conference 2022 is underway at the Moscone Center in San Francisco. Check out our microsite for the conference for all the most important news. Part 1 of the photos is available here. Here are a few photos from the event, featured vendors include: …
Global Security News, North America
Kovrr partners with Microsoft to help enterprises mitigate their cyber risk exposure
by Industry News •
Kovrr announced its selection by Microsoft for Startups, a global program dedicated to accelerating the trajectory of high-potential startups to enable growth at scale. As a program member, Kovrr will have exclusive access to Microsoft technology, ment…
Global Security News, North America
Qbot – known channel for ransomware – delivered via phishing and Follina exploit
by Zeljka Zorz •
More than a week has passed since Microsoft acknowledged the existence of the “Follina” vulnerability (CVE-2022-30190), after reports of it being exploited in the wild began to crop up here and there. Since then, other state-backed threat a…
Europe, Global Security News, North America
Microsoft Suggests Work-Around For ‘Serious’ Follina Zero-Day
by Teri Robinson •
While malicious email attachments are nothing new, there’s reason to be particularly cautious when it comes to the new zero-day vulnerability, dubbed Follina, found in Microsoft Word, for which the tech giant almost immediately issued a workaround. Th…
Europe, Global Security News, North America
DuckDuckGo Browser Allows Microsoft Trackers, Stolen Verizon Employee Database, Attacking Powered Off iPhones
by Tom Eston •
The DuckDuckGo mobile browser allows Microsoft trackers due to an agreement in their syndicated search content contract, a database of contact details for hundreds of Verizon employees was compromised after an employee was social engineered to give the…
Global Security News, North America
Follina abuses Microsoft Office to execute remote code
by Cedric Pernet •
A vulnerability dubbed “Follina” could allow attackers to gain full system control of affected systems. Learn more about it and how to protect yourself from it,
The post Follina abuses Microsoft Office to execute remote code appeared first on TechRepub…
Security Vendor News
Yet another zero-day (sort of) in Windows “search URL” handling
by Paul Ducklin •
More trouble with special-purpose URLs on Windows.
Global Security News, North America
A closer look at the 2022 Microsoft Vulnerabilities Report
by Help Net Security •
BeyondTrust’s recent 2022 Microsoft Vulnerabilities Report includes the latest annual breakdown of Microsoft vulnerabilities by category and product, as well as a six-year trend analysis, providing a holistic understanding of the evolving threat …
Global IT News
5 new Microsoft certifications announced at Build 2022
by Tom Li •
Microsoft announced five new certifications at its Build 2022 event last week. These new certs focus on a diverse range of topics, including cybersecurity, automation, and data analysis, to prepare users for future roles. Microsoft Power Automate RPA Developer Associate certificate Prerequisite: None Required skills: JSON, cloud flows, and desktop flows; integrating solutions with REST […]
The post 5 new Microsoft certifications announced at Build 2022 first appeared on IT World Canada.
Global IT News
Microsoft announces Surface Laptop Go 2
by Tom Li •
Microsoft has refreshed its budget-friendly Surface Laptop Go to the second generation. The Surface Laptop Go 2 now comes with an upgraded processor and a slightly higher price. Some call it boring and some call it clean, but the Surface Laptop Go 2 skips all the fancy decals and delivers a down-to-earth clamshell design. Like […]
The post Microsoft announces Surface Laptop Go 2 first appeared on IT World Canada.
Global Security News, North America
Microsoft sets multi-factor authentication as default for all Azure AD customers
by Lance Whitney •
The latest move will enable MFA as the default security setting even for older Azure accounts.
The post Microsoft sets multi-factor authentication as default for all Azure AD customers appeared first on TechRepublic.
Global Security News, North America
Infosec products of the month: May 2022
by Helga Labus •
Here’s a look at the most interesting products from the past month, featuring releases from: AuditBoard, BIO-key, Cohesity, Corelight, Data Theorem, Deepfence, ForgeRock, Fortinet, Hunters, Enpass, iDenfy, Kasten by Veeam, Kingston Digital, Microsoft, …