cloud security

As we navigate an era defined by remote and hybrid work environments, many organizations have hastily transitioned to solutions like Microsoft 365. However, this rush to adopt cloud technologies can leave critical security vulnerabilities in a business's digital infrastructure, highlighting the...

In a significant development for cybersecurity and cloud services, Trustwave has been elevated to Microsoft’s FastTrack Ready partner status within the Asia-Pacific (APAC) region. This recognition positions Trustwave not just as a partner but as a Microsoft Verified Managed Extended Detection...

Introduction Cybersecurity vulnerabilities continue to pose significant risks to organizations leveraging cloud services, with the latest being CVE-2024-38188, a critical security flaw within Microsoft Azure's Network Watcher VM Agent. Recently published information has shed light on this...

Understanding CVE-2024-38194: Elevation of Privilege Vulnerability in Azure Web Apps In the ever-evolving landscape of cybersecurity, vulnerabilities present a persistent threat that requires constant vigilance. Microsoft recently disclosed a significant vulnerability, designated as...

On August 13, 2024, Microsoft provided details regarding a new security vulnerability, designated as CVE-2024-38162, affecting the Azure Connected Machine Agent. This issue raises concerns regarding potential elevation of privilege within Azure services, thereby highlighting the necessity for...

The recent discovery concerning CVE-2024-38108 has brought significant attention to a potential spoofing vulnerability affecting Azure Stack Hub. The Microsoft Security Response Center (MSRC) has outlined details related to this vulnerability which poses risks to users of Azure Stack Hub, making...

Original release date: July 28, 2021 Summary This Joint Cybersecurity Advisory was coauthored by the U.S. Cybersecurity and Infrastructure Security Agency (CISA), the Australian Cyber Security Centre (ACSC), the United Kingdom’s National Cyber Security Centre (NCSC), and the U.S. Federal Bureau...

At Microsoft, we are committed to building products that add to your peace of mind by letting you securely access what you care about, wherever you are. Millions trust us daily to access documents, mails, chats and so much more both on phones and PCs. An area where customers reported they still...

Original release date: October 3, 2018 Systems Affected Network Systems Overview The National Cybersecurity and Communications Integration Center (NCCIC) is aware of ongoing APT actor activity attempting to infiltrate the networks of global managed service providers (MSPs). Since May 2016...

Today, a single breach, physical or virtual, can cause millions of dollars of damage to an organization and potentially billions in financial losses to the global economy. Each week seems to bring a new disclosure of a cybersecurity breach somewhere in the world. As we look at the current state...

For the last 20 years, the Microsoft Security Response Center has been an integral part of Microsoft’s commitment to customer security. We are often called on to talk about the work we do and how customers can apply the lessons we have learned over that period to better their security posture...

This solution seeks to provide end-to-end security that is resilient to today’s cyber-attacks so our industrial customers can operate their critical infrastructures with confidence and with no negative impact to their intellectual property and customer experience. As the Internet of Things...

Our mission is to empower every person and every organization on the planet to achieve more. A trusted and secure computing environment is a critical component of our approach. When we introduced Windows Defender Advanced Threat Protection (ATP) more than two years ago, our target was to...

Creativity has led the inspiration of our world’s greatest inventors, architects, educators, entrepreneurs, developers, and students, delivering advancements that move our world forward. Today, people value creativity more than ever, placing us on the cusp of a new wave of exploration...

Original release date: May 11, 2016 Systems Affected Outdated or misconfigured SAP systems Overview At least 36 organizations worldwide are affected by an SAP vulnerability Link Removed. Security researchers from Onapsis discovered indicators of exploitation against these organizations’ SAP...

We designed Windows 10 from the very beginning to be our most secure platform ever. With features like Credential Guard, Device Guard, Windows Hello, and Enterprise Data Protection, Windows 10 offers unique defenses from attacks. Windows Defender, our free anti-malware service, provides...

I am excited to announce significant expansions to the Link Removed. We are evolving the 'Online Services Bug Bounty, launching a new bounty for Project Spartan, and updating the Mitigation Bypass Bounty. This continued evolution includes additions to the Link Removed: Link Removed Azure...

Panda Security, the Cloud Security Company, today announced Panda Internet Security 2011 has been certified by prestigious, independent laboratory AV-Test in its Q1 2011 Product Review and Certification Report. More...

Graham Calladine, Security Architect with Microsoft Services partners with the Security Talk Series to describe the options for controlling access to information stored in Windows Azure Storage or in SQL Azure. Related resources: Whitepaper: Security Best Practices for Developing Windows...

Graham Calladine, Security Architect with Microsoft Services partners with the Security Talk Series to describe the security features of the Windows Azure platform, resources available to protect applications and data running on the Microsoft cloud and SQL Azure security and authentication...