Microsoft News, Articles and Updates
After some users noted issues with this month's update, Microsoft opted to remove the links while it investigates the problems further.
Microsoft will start complying with Europe's "right to be forgotten" ruling by offering its Bing users a form to request links be deleted.
Microsoft is now using Transport Layer Security (TLS) encryption for both outbound and inbound email on Outlook.com.
As far back as 2010, Microsoft began warning customers about a ruse where telemarketers tricked people into buying unneeded anti-virus tools.
After taking control of a domain that hosted the Nitol botnet and other malicious subdomains, Microsoft has reached a settlement with the site operator.
Leading news concerning Microsoft's sharing program, CISPA passed by the U.S. House, the Global Payments data breach debacle, and more.
Debate: Anti-virus is essential.
Microsoft next week plans to release six patches, including one for a "critical" vulnerability affecting all supported versions of the software giant's operating system.
Microsoft on Tuesday patched one "critical" vulnerability, plus three other less-severe flaws. Not patched, as expected, is a bug related to the Duqu trojan.
Microsoft issued a temporary fix for a vulnerability in the Windows kernel used to spread Duqu, the so-called "son of Stuxnet" trojan.
Microsoft is prepping four security bulletins for its November update, though it is not expected to provide a fix for the zero-day flaw used to spread Duqu.
The Patch Tuesday bulletins, of which two are rated "critical" and six deemed "important," are due Oct. 11 at about 2 p.m. EST.
Microsoft may face challenges from anti-virus rivals after announcing this week that the next version of Windows will come with built-in AV protection.
Microsoft released five important bulletins addressing 15 flaws, along with an update revoking six more DigiNotar certificates, while Adobe issued critical updates for Reader and Acrobat.
As part of its monthly Patch Tuesday upgrades, Microsoft on Tuesday released fixes for 22 vulnerabilities discovered in Internet Explorer, Windows, Visio and Visual Studio.
Microsoft on Tuesday delivered two patches to address three vulnerabilities, but because of default settings, built-in protections and unaffected newer versions, experts don't anticipate widespread attacks ensuing.
Following a record-breaking security update last month, Microsoft is planning just two fixes for its June update, plus a revamped exploitability index.
Microsoft's planned security update for next week likely will include a fix for a vulnerability that is being actively exploited.
Adobe on Monday warned of a "critical" zero-day vulnerability in Flash Player that attackers currently are exploiting through Microsoft Excel files.
Microsoft confirmed the existence of an unpatched vulnerability affecting all versions of Windows, but said it is unlikely the flaw could be exploited remotely.
Tuesday's security update is comprised of two fixes for three vulnerabilities, but it does not address two publicly known flaws.
Microsoft on Tuesday announced that it has added new protection capabilities to its Malicious Software Removal Tool to help organizations fight the insidious data-stealing malware Zeus. The removal tool, released Tuesday as part of Microsoft's monthly security update, detects and cleans the malware. Microsoft researchers said Tuesday in blog post that Zeus, also known as Zbot, is "quite complex and varied" but distributing it does not take much technical sophistication since toolkits to create the malware are easily obtainable on underground forums. The new detection capability comes in the wake of a series of attests disrupting an international cybercrime operation linked to Zeus.— AM
Internet Explorer suffers from a similar auto-fill feature that Apple is grappling with, a well-known web researcher said Thursday at the Black Hat conference in Las Vegas.
Microsoft has issued a new "Fix It" temporary remedy for a Windows vulnerability that is permitting targeted malware to spread via removable media.
Microsoft on Tuesday pushed out 10 patches to address a whopping 34 vulnerabilities as part of its June security update.
Google is planning to migrate its end-users away from the use of Windows in the wake of Chinese-led targeted attacks that raided its corporate infrastructure of intellectual property, a Monday report in the Financial Times said.
A recent Microsoft security patch silently fixed two severe vulnerabilities that were not disclosed, leading to criticism that the software giant downplayed the severity of the patch.
The Microsoft Office name is being leveraged by cybercriminals in two new campaigns meant to infect users' machines. Email security firm Red Condor on Thursday warned of a spear phishing run in which messages appear to be invitations for recipients to update their Microsoft Office Outlook Web Access settings. Following the link, however, leads to the pernicious, data-stealing Zeus trojan. In another scam, searches for "office.microsoft.com" is leading to malicious websites hawking rogue anti-virus programs, internet security vendor Websense said Friday in a blog post. — DK
Windows 7 builds on the security of the Vista operating system, including a refashioned way to control administrator access.
Microsoft is back in the courts, this time suing alleged purveyors of malicious advertisements.
SC Magazine Articles
- Updated: Gmail, Yahoo email credentials among millions found on the dark web
- Pwnedlist vulnerability exposed 866M accounts
- Some U.S. Bancorp workers' W-2 info exposed in ADP data breach
- Turkish fascists claim responsibility for Qatar bank data breach
- Spearphishing attack nets $495K from investment firm
- DōTERRA breach exposes customer info; including SS, DOB, and addresses
- Some U.S. Bancorp workers' W-2 info exposed in ADP data breach
- Federal court bucks trend, rules general liability insurance covers data breach
- The anatomy of a spearphishing scam, or how to steal $100M with a fake email
- Report: Ransomware feeds off poor endpoint security
- Organizations, business, tech leaders urge Congress to pass OPEN Government Data Act
- 2,800 St. Agnes Medical Center workers compromised in W-2 attack
- Organizations need formal vendor risk management programs, study
- Educating C-suites and corporate boards on security risks
- Android/Clicker.G malware found in Google Play apps