Microsoft Archives - Help Net Security

Microsoft

CISA releases free tool for detecting malicious activity in Microsoft cloud environments

March 24, 2023

Network defenders searching for malicious activity in their Microsoft Azure, Azure Active Directory (AAD), and Microsoft 365 (M365) cloud environments have a new free solution …

HYPR launches Enterprise Passkeys for Microsoft Azure

March 17, 2023

HYPR announced its newest offering, Enterprise Passkeys for Microsoft Azure, which is integrated with Microsoft Entra. This new technology turns any smartphone into a FIDO2 …

Cloudflare integrates with Atlassian, Microsoft, and Sumo Logic to boost zero trust security

March 15, 2023

Cloudflare announced new integrations with Atlassian, Microsoft, and Sumo Logic to help businesses of any size secure the tools and applications they rely on with …

Microsoft to boost protection against malicious OneNote documents

March 10, 2023

Microsoft has announced that, starting in April 2023, they will be adding enhanced protection when users open or download a file embedded in a OneNote document – a known …

March 2023 Patch Tuesday forecast: It’s not about luck

March 10, 2023

Every month I touch on a few hot topics related to security around patching and some important updates to look out for on the upcoming Patch Tuesday. Diligence to this ongoing …

Microsoft and MITRE developed a tool to prepare security teams for attacks on ML systems

March 3, 2023

A new plug-in, created by Microsoft and MITRE, integrates various open-source software tools to aid cybersecurity professionals in bolstering their defenses against attacks on …

Contrast Security adds Microsoft Azure Functions support to evaluate serverless risks

February 27, 2023

Contrast Security expands Contrast Serverless Application Security offering to support Microsoft Azure Functions and enable customers to scan for security vulnerabilities on …

Microsoft announces automatic BEC, ransomware attack disruption capabilities

February 24, 2023

Last year, Microsoft announced automatic attack disruption capabilities in Microsoft 365 Defender, its enterprise defense suite. On Wednesday, it announced that these …

Microsoft patches three exploited zero-days (CVE-2023-21715, CVE-2023-23376, CVE-2023-21823)

February 14, 2023

The February 2023 Patch Tuesday is upon us, with Microsoft releasing patches for 75 CVE-numbered vulnerabilities, including three actively exploited zero-day flaws …

February 2023 Patch Tuesday forecast: A Valentine’s date

February 10, 2023

Patch Tuesday falls on Valentine’s Day this year but will it be a special date? While there have been ongoing cyber-attacks of all kinds, it has been relatively quiet on the …

SentryBay protects business data at the endpoint with Armored Client for AVD & W365

February 10, 2023

SentryBay adds to its family of Armored Client products with a solution specifically designed to address the client-side security gaps of Microsoft Azure Virtual Desktop and …

Attackers used malicious “verified” OAuth apps to infiltrate organizations’ O365 email accounts

January 31, 2023

Malicious third-party OAuth apps with an evident “Publisher identity verified” badge have been used by unknown attackers to target organizations in the UK and …

Microsoft

CISA releases free tool for detecting malicious activity in Microsoft cloud environments

HYPR launches Enterprise Passkeys for Microsoft Azure

Cloudflare integrates with Atlassian, Microsoft, and Sumo Logic to boost zero trust security

Microsoft to boost protection against malicious OneNote documents

March 2023 Patch Tuesday forecast: It’s not about luck

Microsoft and MITRE developed a tool to prepare security teams for attacks on ML systems

Contrast Security adds Microsoft Azure Functions support to evaluate serverless risks

Microsoft announces automatic BEC, ransomware attack disruption capabilities

Microsoft patches three exploited zero-days (CVE-2023-21715, CVE-2023-23376, CVE-2023-21823)

February 2023 Patch Tuesday forecast: A Valentine’s date

SentryBay protects business data at the endpoint with Armored Client for AVD & W365

Attackers used malicious “verified” OAuth apps to infiltrate organizations’ O365 email accounts

Don't miss

CISA releases free tool for detecting malicious activity in Microsoft cloud environments

Top ways attackers are targeting your endpoints

Why organizations shouldn’t fold to cybercriminal requests

Fake ChatGPT for Google extension hijacks Facebook accounts

A common user mistake can lead to compromised Okta login credentials