azure security

Microsoft’s August Patch Tuesday is one of the heavier maintenance cycles of the year: the company released patches addressing well over a hundred vulnerabilities across Windows, Office, Exchange, SQL Server and Azure services, and security teams must triage a short list of immediate priorities...

Microsoft’s August Patch Tuesday closed a dangerous mix of high‑impact remote code execution (RCE) flaws and a publicly disclosed Kerberos elevation‑of‑privilege (EoP) vulnerability that together raise the operational urgency for domain controllers, document‑processing servers, and any service...

Microsoft has confirmed an elevation-of-privilege flaw in Azure File Sync that can allow an authenticated, local attacker to escalate privileges on systems running the service — a serious risk for hybrid infrastructures that bridge on‑premises Windows servers and Azure file storage. Public...

A critical security vulnerability, identified as CVE-2025-53792, has been disclosed in the Azure Portal, Microsoft's web-based application for managing Azure services. This elevation of privilege vulnerability allows authenticated attackers to gain unauthorized administrative access, posing...

Amid an escalating threat landscape where ransomware strikes have become the new norm for organizations across the globe, CrashPlan is positioning itself at the forefront of cyber resiliency and data protection. The acclaimed backup and cyber resiliency authority is set to showcase its latest...

Microsoft’s latest unveiling of Azure Storage Discovery in public preview has captured the attention of IT professionals and cloud architects alike. Promising an unprecedented approach to visibility over sprawling Blob Storage deployments, this tool, now available to all Azure users, marks a...

Major data breaches and relentless ransomware campaigns have elevated cyber resiliency to the top of every IT leader’s priority list, making next-generation data protection solutions more essential than ever. This growing need will take center stage at TechCon 365 Atlanta, as CrashPlan—a...

Phoenix Software’s recent re-certification as a Microsoft Azure Expert Managed Service Provider (MSP) signals a renewed era of excellence in managed cloud solutions, reinforcing the company’s place among the world’s elite when it comes to Microsoft cloud expertise. This achievement is more than...

As emergency services across the globe face a surge in operational demands and heightened expectations for rapid, reliable response, the race to modernize IT service management (ITSM) infrastructure is on. Against the backdrop of relentless workload fluctuations, budgetary constraints, and...

In a recent revelation, security consultant Haakon Gulbrandsrud of Binary Security uncovered a significant vulnerability within Microsoft Azure's API Connections functionality. This flaw potentially allowed users with minimal privileges to access sensitive data across various Azure services...

In an era where cyber threats evolve each day and security teams struggle to stay ahead of ever-morphing attack vectors, BitLyft’s latest release of its AIR® platform signals a fundamental shift in the very nature of incident response for Windows-centric environments. BitLyft AIR, now...

Optimal IdM has unveiled a groundbreaking multi-factor authentication (MFA) integration for Microsoft Azure tenants, marking a significant advancement in identity and access management solutions. This new offering enables any organization utilizing Microsoft Azure to implement Optimal IdM's...

Optimal IdM, a prominent provider of Identity and Access Management (IAM) solutions, has recently unveiled a universal Multi-Factor Authentication (MFA) integration tailored for Microsoft Azure tenants. This development signifies a substantial advancement in bolstering security measures for...

Britain’s cybersecurity landscape is once again in sharp focus after confirmation that the UK’s National Cyber Security Centre (NCSC) has detected a “limited number” of domestic victims in the recent Microsoft hack campaign. While not on the scale of some prior, sweeping incidents, the attack...

In the ever-evolving landscape of cloud transformation and digital modernization, attaining validation from leading technology giants has become a critical benchmark for enterprise IT partners. This reality was thrust into the spotlight with Protera’s recent announcement: the company has...

On April 30, 2025, Microsoft disclosed a critical security vulnerability identified as CVE-2025-30390, affecting Azure Machine Learning (Azure ML). This flaw allows authenticated attackers to escalate their privileges over a network, potentially compromising entire machine learning workloads...

In April 2025, Microsoft disclosed a critical security vulnerability identified as CVE-2025-47995, affecting Azure Machine Learning (Azure ML). This flaw, stemming from weak authentication mechanisms, allows authorized attackers to escalate their privileges over a network, posing significant...

Microsoft’s latest Patch Tuesday update triggered an unexpected and critical issue for Azure users relying on Virtualisation-Based Security (VBS)—a bug that ultimately prevented certain virtual machines (VMs) from launching at all. In a twist that stymied both IT administrators and cloud...

The Indian Computer Emergency Response Team (CERT-In) has recently issued a high-severity advisory concerning multiple vulnerabilities in Microsoft Windows and Office products. These security flaws could potentially allow attackers to gain elevated privileges, access sensitive data, execute...

If you rely on a Windows device—be it for productivity, education, or daily living in India—the latest guidance from the Indian Computer Emergency Response Team (CERT-In) delivers an urgent reminder: patch, update, and secure your Microsoft environment now. In July 2025, CERT-In, operating under...