You are using an out of date browser. It may not display this or other websites correctly. You should upgrade or use an alternative browser.
admin security
About this tag
The admin security tag on WindowsForum.com covers topics relevant to IT administrators managing security in Microsoft environments. Recent discussions include the VoidProxy AiTM phishing service that bypasses MFA by intercepting session cookies, new rules-based app management in the Microsoft Teams Admin Center for controlling third-party app access, and a vulnerability in Microsoft's inetpub folder introduced by a patch for a privilege escalation bug. These threads highlight real-time threats, administrative controls, and patch-related risks that admins must navigate to protect enterprise systems.
A new, industrialized phishing service called VoidProxy is being used by multiple criminal groups to intercept Google and Microsoft sign-ins in real time, harvest credentials, MFA responses and — critically — session cookies that let attackers impersonate users without needing passwords or...
Microsoft is set to introduce a significant update to the Teams Admin Center, focusing on the management of third-party applications. This new feature, known as "Rules-Based Enablement of Third-Party Teams Apps," empowers Microsoft 365 (M365) administrators to establish specific criteria for...
adminsecurityadmin tools
app approval workflow
app management
application control
deployment
feature rollout
frontline workers
microsoft 365
microsoft licensing
microsoft teams
org-wide settings
productivity
securitysecurity compliance
teams admin center
teams updates
third-party apps
workplace security
Microsoft’s Mystery inetpub Folder: When the Fix Becomes a Flaw
At the heart of the latest chapter in Windows patching is a familiar folder with an unfamiliar twist—c:\inetpub. The recent kerfuffle that has swept Windows administrators into a maelstrom of head-scratching and risk analysis...
adminsecurity
cve-2025-21204
denial of service
exploit prevention
file security
iis
inetpub
junctions
malicious redirects
microsoft
ntfs
patch failures
patch management
privilege escalation
security best practices
security research
symlinks
vulnerability
windows security
windows update