Rabia Noureen

Microsoft will soon begin enforcing Multi-Factor Authentication (MFA) for all Azure resource management actions. The company has announced that this change will go into effect on October 1, 2025. In a support document, Microsoft detailed that the mandatory MFA enforcement will apply to Azure CLI, PowerShell, SDKs, REST APIs, Infrastructure as Code (IaC) tools, and…

Cybersecurity researchers have discovered a new watering hole campaign orchestrated by a Russian state-sponsored hacking group. The operation exploits Microsoft’s device code authentication flow to trick users into authorizing attacker-controlled devices, granting them unauthorized access to Microsoft 365 accounts. How did Russian hackers exploit Microsoft authentication? According to Amazon’s threat intelligence team, the Russian threat…

Microsoft has rolled out a range of new Intune capabilities for August 2025, including smarter app control, multi-admin approvals for sensitive actions, enhanced Apple update visibility, and more. These updates are designed to streamline IT management while strengthening security across organizations. App Control targeting Microsoft has made App Control for Business generally available to commercial…

Cybercriminal group Storm-0501 recently carried out a ransomware-style attack that breached both on-premises and cloud environments of an enterprise victim. The campaign highlights the group’s shift from traditional endpoint-focused tactics to more sophisticated cloud-based ransomware operations. Storm-0501 is a financially driven cybercriminal group that has been active since 2021. It’s known for launching ransomware attacks…

Windows Backup for Organizations, a new tool that launched in limited public preview, is now generally available for commercial customers. This new feature allows organizations to take a backup of their Windows PC settings and preferences and then restore them on a Microsoft Entra-joined device. Microsoft first announced Windows Backup for Organizations at its Ignite…

Security researchers have warned about a new attack campaign that targets Microsoft’s Remote Desktop Protocol (RDP) services. Nearly 2,000 malicious IPs have specifically hit RD Web Access and RDP Web Client authentication portals in recent days. Threat intelligence firm GreyNoise detected a significant increase in RDP scans from around 2,000 IP addresses on August 21….

Microsoft will soon introduce a new policy that will let administrators enable Windows quality updates by default during the Out-of-Box Experience (OOBE) on Windows 11 devices. Starting in September, this feature will be available on eligible Microsoft Entra-joined and hybrid-joined devices running Windows 11 version 22H2 or later. With this update, Windows 11 devices will…

Despite regular secure coding training, nearly 74% of enterprises experienced breaches or serious vulnerabilities in the past year. The findings from SecureFlag’s latest research expose a troubling gap between education efforts and real-world security outcomes. SecureFlag researchers found that insecure code continues to be a major challenge for organizations. In the past year, about 74%…

Microsoft is making virtual machine migration easier with the public preview of its new VM Conversion tool in Windows Admin Center. This free agentless tool automates the process of converting VMware VMs to Windows Server with Hyper-V, saving IT admins time and effort. Microsoft highlighted the difficulty and manual effort required to convert virtual machines…

Microsoft has introduced a new feature called Token Protection in Microsoft Entra Conditional Access. This new security feature binds authentication tokens to trusted devices to protect organizations against one of the most dangerous attack vectors—token theft. How does Token Protection prevent token theft attacks? Specifically, Token Protection is a security feature that ties authentication tokens…

Microsoft is enforcing stricter controls on the use of onmicrosoft.com domains in Exchange Online. Starting on October 15, the company will start throttling outgoing emails to reduce misuse and improve trust. The default onmicrosoft.com domains are mainly used for setting up and testing Microsoft 365 tenants. However, these Microsoft Online Email Routing Address (MOERA) domains…

Microsoft has quietly patched a critical flaw in Microsoft 365 Copilot that could allow hackers to access and summarize enterprise files without generating any record in the audit log. This loophole meant attackers could steal sensitive data while leaving no trace for security teams to detect. In a blog post, Zack Korman, CTO of cybersecurity…