Displaying items by tag: Microsoft

COMPANY NEWS:  New AI-powered tool Hotwire Spark designed to optimise brand discovery in AI search

Company rounds out product leadership team with Bala Kumaresan, EVP, Head of Engineering

Aryaka, a provider of software defined wide area network (SDWAN) and secure access service edge (SASE) services, has ramped up its presence in the Asia Pacific and Japan regions with the appointment of partners in Japan and Australia and of several senior regional executives.

Solutions integrator Insight Enterprises has secured a "significant Licensing Reseller and Support Services (LRSS)' contract with the South Australian government.

GUEST OPINION:  The workplace is undergoing a profound transformation driven by the rapid adoption of AI. We are on the brink of one of the largest change management exercises in history, and every business leader and professional needs to embrace this shift to unlock AI's full potential and ensure organisations and employees aren’t left behind.

Cybersecurity and compliance company Proofpoint Inc. today has expanded its global partnership with Microsoft that leverages Microsoft Azure’s robust AI capabilities and “trusted cloud infrastructure to host Proofpoint’s future innovations and scale AI-powered threat and data protection”.

GUEST OPINION:  Microsoft is addressing 57 vulnerabilities this March 2025 Patch Tuesday, which is a similar volume to last month. However, Microsoft has evidence of in-the-wild exploitation for as many as six of the vulnerabilities published today, and CISA KEV already lists all of them.

CyberArk (NASDAQ: CYBR) and  Device Authority, in collaboration with Microsoft, have launched a solution that strengthens and scales connected device authentication to enterprise applications with Zero Trust principles. It helps manufacturers reduce cyber risk from connected devices in factory floors and edge environments with robust identity security, automated access management and device lifecycle protection.

GUEST OPINION:  Derek Hanson, Vice President of Standards and Alliances at Yubico :  In today’s digital landscape, cyber threats are evolving at an unprecedented pace: every second, a phishing attack takes place. In fact, over 80% of these attacks are the result of stolen login credentials and almost 70% of phishing attacks relied on AI last year alone.

• Snowflake strengthens strategic partnership with Microsoft to deliver OpenAI’s state-of-the-art models directly to customers in Snowflake Cortex AI on Microsoft Azure AI Foundry
• Snowflake also launches new native integration enabling thousands of customers to seamlessly leverage Snowflake Cortex Agents within their Microsoft 365 Copilot and Microsoft 365 apps

According to new research by the cybersecurity company NordVPN, over 351 million malware incidents have been recorded, emphasising the “growing cybersecurity threat” in Australia. 

ASUS is surely on a winner with the fusion of its iconic Zenbook ultraportable line and the Copilot+ AI spec. Now you can enjoy built-in AI smarts in a super-stylish package that performs great and lasts all day.

On day two of his second term, USA President Donald Trump has announced the Stargate Project - a massive half-trillion-dollar investment in artificial intelligence instrastructure in the United States.

GUEST RESEACH:  Microsoft patched a whopping 157 CVEs in its inaugural Patch Tuesday for 2025. Not only is this the largest number of CVEs patched in January, it is the largest number of CVEs patched across any Patch Tuesday release since 2017. Microsoft set a record in April 2024, patching 147 CVEs. Since 2017, the average number of CVEs patched in January was 60. Prior to 2025, the largest January Patch Tuesday release was 2023, which saw Microsoft patch 98 CVEs. In 2024, Microsoft opened the year with 48 CVEs patched. Please find below a comment from Satnam Narang, sr. staff research engineer at Tenable and a full analysis in this blog.

Microsoft has evidence of in-the-wild exploitation and/or public disclosure for eight of the vulnerabilities published today, with three listed on CISA KEV. This is now the fourth consecutive month where Microsoft has published zero-day vulnerabilities on Patch Tuesday without evaluating any of them as critical severity at time of publication. It also sees the publication of nine critical remote code execution (RCE) vulnerabilities. Unusually, no browser vulnerabilities have yet been published this month.

Leverages the same platform that already delivers comprehensive protection of critical workloads – ushering in a new level of cyber resilience for customers and partners

On Wednesday, January 8, 2025, Ivanti disclosed two CVEs affecting Ivanti Connect Secure, Policy Secure, and Neurons for ZTA gateways. CVE-2025-0282 is a stack-based buffer overflow vulnerability that allows remote, unauthenticated attackers to execute code on the target device. CVE-2025-0283 is a stack-based buffer overflow that allows local authenticated attackers to escalate privileges on the device.

2025 new year is here, it’s time to rethink your work and home productivity tools.

GUEST OPINION:  Microsoft is addressing 70 vulnerabilities this December 2024 Patch Tuesday, with evidence of in-the-wild exploitation and public disclosure for one of the vulnerabilities published today, and this is reflected in a CISA KEV entry.

GUEST OPINION:  Semperis Cyber Predictions -  Focusing on the rise of attacks against Active Directory, critical infrastructure and more.