Displaying items by tag: Redmond

Respected security practitioner Juan Andres Guerrero-Saade has criticised the manner in which Microsoft has reacted to the recent breach of its Azure cloud service, describing it as "enraging, duplicitous, disappointing, counter-productive and, most importantly, unnecessary".

Microsoft will charge a premium for software which includes its generative artificial intelligence, with the company saying the cost would be US$30 (A$44) per month for the Microsoft 365 business-grade service.

Microsoft is coming under increasing pressure from both the security community and the US Government after it was disclosed that the company's cloud platform was breached and emails stolen from a number of government agencies, allegedly by Chinese attackers.

Microsoft has released patches for four zero-day vulnerabilities among the 62 advisories which it released on Wednesday AEDT, in its monthly Patch Tuesday fixes. All of these zero-days have been exploited in the wild.

Microsoft has seen its profits drop 14% year-on-year in the first quarter of financial year 2023 as PC sales were affected by the slowing economy.

Microsoft has changed a portion of the advice it issued for mitigation of two bugs in its Exchange Server product, but made no mention of the change, well-known British security researcher Kevin Beaumont says, adding that it looked like the company needed to familiarise itself with the source code of this product.

Microsoft, the company that produces Windows which is the target of practically every ransomware attack, is now offering paid products to fight those very ransomware attacks.

Microsoft has issued patches for 117 CVEs in its April Patch Tuesday release, with nine rated critical and 108 as important, the most it has ever released for a single month since September 2020. Included among these were two zero-day vulnerabilities, one of which was exploited in the wild and reported to Microsoft by the NSA.

Microsoft is introducing a safety feature known as Smart App Control in Windows 11 that will prevent users from running malicious applications by blocking untrusted or unsigned applications.

A Microsoft announcement that the company would be disabling macros as a default feature in Excel 4.0 has been greeted as a step that "would really help defenders".

Microsoft has released Windows 11, with the company's chief product officer for Windows + Devices, Panos Panay, describing it as the start of a new era for the PC.

A researcher at a security firm that disclosed an issue with a protocol in the Microsoft Exchange mail server software has defended not having made contact with the company before releasing his findings, saying the issue had been known for seven years.

A protocol used by Microsoft Exchange, the popular email server software used by both individuals and businesses, has been found to be leaking credentials of users, who attempt to authenticate from clients like Microsoft Outlook, due to a defect in its design.

An 81-page document issued by a so-called Ransomware Task Force makes no mention of Windows or Microsoft, apart from the fact that one of the co-chairs who drafted this document is from this company.

Global security provider Sophos has discovered a Microsoft Exchange Server hosting a malicious monero cryptominer which is aimed at other Exchange servers.

Microsoft has taken a further step to mitigate attacks on its Exchange Server product by including a mitigation tool that it released a couple of days ago in its Defender Anti-Virus program.

Microsoft has offered users of Exchange Server a means of mitigating the so-called ProxyLogon attack, a one-click tool that it says has been tested across the 2013, 2016 and 2019 versions of Exchange Server.

Users of Microsoft's online services are continuing to face issues, with the company's Intune and Managed Desktop services still not working propery, the company said in a tweet on Tuesday US time.

Microsoft is rolling back an update to its authentication system after access issues surfaced affecting thousands of users worldwide.

Microsoft has issued an advisory stating that four zero-day exploits are being used to attack versions of Microsoft Exchange Server on-premise.