Blog

A cybersecurity researcher has disclosed two new zero-day vulnerabilities affecting Windows and also released a proof-of-concept exploit for another flaw that Microsoft patched back in 2020. The disclosures have raised fresh concerns over Windows security, particularly because no official fixes were available for the newly revealed flaws at the time of publication. The researcher (known…

Microsoft is taking a major step toward phasing out on-premises Exchange servers with the public preview of writeback for cloud-managed remote mailboxes. The new capability resolves a long-standing issue in hybrid environments by automatically synchronizing Exchange Online changes back to on-premises Active Directory. In Exchange Online, cloud-managed remote mailboxes are a feature that lets organizations…

Hybrid IT has become the default operating model for most organizations. Not by design, but through years of incremental decisions driven by business needs. In a recent Petri Dish interview, Brad Cline, Vice President of IT Operations at SolarWinds, shared a frontline perspective on how infrastructure complexity emerged, why it continues to grow, and how…

Microsoft has announced new Intel-powered Surface devices aimed at business customers, bringing upgraded AI performance, enterprise-grade security, and premium hardware to its Surface Pro and Surface Laptop lineup. These new devices, which are powered by Intel’s latest Core Ultra Series 3 processors, expand Microsoft’s x86-based Surface portfolio for different organizational needs. Microsoft’s new Surface for…

Microsoft has confirmed that its May 2026 Windows 11 security update (KB5089549) may fail to install on some systems, triggering an error and rolling back changes during the process. The issue stems from the EFI System Partition (ESP) when it has 10 MB or less of free space available. The EFI System Partition (ESP) is…

Implementing passkeys in Microsoft Entra is far more than simply enabling a new authentication method. A successful passkey rollout requires careful planning and coordination. One of the most important aspects of a passkey deployment is using Conditional Access to enforce their use. This article isn’t about how to turn passkeys on but about what tends…

Cybercriminals are once again refining their tactics, as the Tycoon 2FA phishing kit evolves to target Microsoft 365 accounts. Instead of stealing passwords, attackers now manipulate users into granting access through device‑code techniques, which makes the attack harder to detect and block. Earlier this month, researchers reported that the Tycoon 2FA phishing kit had returned to full…

Microsoft has disclosed a critical vulnerability in on-premises Exchange Server that allows attackers to execute malicious code through specially crafted emails opened in Outlook Web Access. The company is urging administrators to apply emergency mitigations immediately while it works on a permanent security update for supported commercial customers. This security vulnerability (tracked as CVE‑2026‑42897) affects…

Microsoft has fixed a Windows Autopatch bug that was unintentionally deploying driver updates to certain managed Windows devices without proper approval controls. The issue impacted a limited number of systems running Windows 11 versions 25H2, 24H2, and 23H2, potentially causing unexpected restarts and stability problems. Windows Autopatch is a cloud-based service that automatically manages and…

Millions of organizations are unknowingly leaving doors open to cyberattacks by exposing sensitive systems to the Internet. This report finds that overlooked access points are driving real-world breaches and making security harder to control. According to Intruder’s 2026 Attack Surface Management Index, organizations face increasing risk because more systems and services are exposed to the…

Microsoft is tackling one of Windows’ most frustrating issues, broken driver updates, with a new cloud‑powered solution that fixes problems before users even notice. This new Cloud‑Initiated Driver Recovery feature can automatically roll back faulty drivers, turning what used to be a manual headache into a seamless, behind‑the‑scenes repair. Microsoft mentioned that faulty or low‑quality…

Microsoft has released the May 2026 Patch Tuesday updates for Windows 11. This month, Microsoft has fixed a total of 138 security flaws in Windows, Office, Microsoft Edge, Azure, .NET and Visual Studio, Copilot Chat, GitHub Copilot, and Microsoft 365 Copilot. On the quality and experience updates front, the KB5089548 update (26H1) brings enhancements to…