Security

Microsoft has addressed a new critical security vulnerability in its Azure Automation service. The exploit labeled “AutoWarp” was mitigated in December 2021, and the company confirmed that it could enable malicious actors to get access to the data and resources of other Azure customers. The cross-tenant vulnerability was first discovered by a researcher at Orca…

Microsoft has announced the public preview of Microsoft Defender for Azure Cosmos DB, a new database protection solution for enterprise customers. The latest security offering allows organizations to constantly monitor and protect their cloud workloads against the most common critical threats across databases. “The new cloud workload protection capabilities are designed as an Azure-native layer…

Microsoft has launched a new multi-stage access reviews feature for Azure AD customers. The new capability is currently available in public preview, and it enables organizations to configure access reviews in sequential stages for resource owners and auditors. Microsoft’s Azure Active Directory access reviews feature allows organizations to set up policies to review users’ access…

Microsoft has announced this morning some improvements for its Defender for Cloud suite. The company says that the Microsoft Defender for Cloud service will now provide native support for Google Cloud Platform (GCP) environments, and this capability is currently available in public preview for all enterprise customers. Microsoft Defender for Cloud (formerly known as Azure…

In this guide, we’re going to explain how IT admins can use adaptive scopes to make retention policies for Microsoft 365 more dynamic. Microsoft 365 provides retention capabilities to manage the data for your organization out of the box. These features allow you as an organization to control how long content is retained and then…

Microsoft has launched a streamlined submissions experience in the Microsoft 365 Defender portal. The new submissions page provides dedicated item tabs to help IT Admins track and analyze malicious emails, email attachments, URLs, and messages reported by end-users in their organization. To get started, IT Admins will need to head to the Microsoft 365 Defender…

Microsoft is getting ready to enable a new security feature in Microsoft Defender that should make it more difficult for threat actors to steal credentials from Windows PCs. The company says that the Attack Surface Reduction (ASR) security rule will help to prevent admin-level hackers from accessing the Local Security Authority Server Service (LSASS) process….

Microsoft is reportedly planning to acquire a US-based cyber security company Mandiant. According to a new report from Bloomberg, this new acquisition will help the Redmond giant to beef up its portfolio of security offerings to protect its customers from cybersecurity threats and data breaches. For those unfamiliar, Mandiant is a cybersecurity research firm that…

Microsoft has launched a new Microsoft Defender Preview app for Windows and Android devices. This is currently available to download in the United States, but the company plans to expand its availability to all users worldwide later this year. The new Microsoft Defender Preview app is a centralized security solution that allows users to control…

Last week, Microsoft announced that it has temporarily disabled the MSIX protocol handler to prevent malicious attacks on Windows 10 and 11. The company says this change aims to address a newly discovered Windows AppX Installer spoofing vulnerability, which was discovered in December 2021. For those unfamiliar with the Windows AppX Installer, it’s a Windows…