Blog

Russian-hackers are exploiting a high-severity vulnerability that is affecting multiple versions of Microsoft Office. This security flaw could allow hackers to steal emails and deploy malicious payloads against organizations in Central and Eastern Europe. Specifically, CVE‑2026‑21509 is a security feature bypass vulnerability in Microsoft Office, which is triggered when victims open specially crafted RTF documents….

Microsoft has dropped support for Transport Layer Security (TLS) versions 1.0 and 1.1 for Azure Blob Storage. The company has published a guide to help organizations in migrating clients to newer, more secure encryption standards. TLS is a widely used security protocol that encrypts data in transit between clients and servers, and ensures confidentiality, integrity,…

Designing a sound Organizational Unit (OU) structure in Active Directory is crucial for an efficient and secure IT environment. A well-planned OU hierarchy makes it easier to find objects, assign administrative permissions, and apply Group Policy Objects (GPOs) consistently. But there’s no one-size-fits-all design. Following best practices from Microsoft and experienced Active Directory admins will…

Microsoft is preparing to retire its standalone SharePoint Online and OneDrive for Business subscriptions (Plan 1 and Plan 2). Commercial customers using these plans will be required to migrate to alternative Microsoft offerings over the coming years as part of a phased transition. What SharePoint Online and OneDrive for Business plans offer? SharePoint Online Plan…

As enterprise AI adoption accelerates, organizations are increasingly turning to platforms designed for their own regions rather than global, one-size-fits-all solutions. Gartner predicts this shift will be dramatic, with the share of businesses using region-specific AI expected to surge from a small minority today to more than a third by 2027. According to new research…

Last month, Microsoft rolled out an out-of-band update to fix a bug that prevented some Windows devices from shutting down or hibernating properly. The company has now acknowledged that this issue also affects Secure Launch-capable PCs with Virtual Secure Mode (VSM) enabled. Secure Launch and Virtual Secure Mode (VSM) are Windows security technologies designed to…

Microsoft is moving to a more secure authentication posture by disabling New Technology LAN Manager (NTLM) by default and shifting to stronger, Kerberos-based authentication. The company has published a phased roadmap to give organizations time to identify dependencies and prepare for NTLM’s disablement in future Windows client releases and the next major Windows Server version….

On this episode of First Ring Daily, Brad Sams and Paul Thurrott take a deep look at Microsoft’s latest earnings report and discuss what is growing, who is leading, and how this changes things going forward.

Microsoft has announced the general availability of centralized Remote Desktop Protocol (RDP) Shortpath configuration through Group Policy Objects (GPO) and Microsoft Intune. The update enables IT teams to centrally enforce and fine-tune RDP Shortpath behavior across Azure Virtual Desktop (AVD) session hosts and Windows 365 Cloud PCs. RDP Shortpath is a Remote Desktop feature that…

Microsoft has announced a major update to Conditional Access (CA) enforcement in Microsoft Entra ID. This upcoming change closes a long-standing loophole and ensures security measures are applied consistently across all sign-ins. Currently, Microsoft Entra ID Conditional Access policies set to apply to “All resources” may not always be enforced in certain situations. This can…

Microsoft has quietly patched multiple flaws in Windows 11’s Administrator Protection feature after Google researchers showed the original design could be bypassed. These flaws could have allowed attackers to obtain administrator privileges on affected systems without user interaction. What is Windows 11 Administrator Protection? Administrator Protection is a security feature in Windows 11 designed to…

Microsoft has rolled out Message Trace support via the Microsoft Graph API in public preview for commercial customers. The update delivers a modern, RESTful interface that lets administrators trace email messages end-to-end across Exchange Online with greater consistency and control. In Exchange Online, the Message Trace feature provides administrators with a way to follow the…