News
Microsoft Windows software
-
January 12, 2022
12
Jan'22
Microsoft fixes six zero-days in January Patch Tuesday update
A larger than of late Patch Tuesday update from Microsoft comes as defenders continue to grapple with Log4Shell
-
January 04, 2022
04
Jan'22
Admins warned that Exchange date fix will take time to roll out
At the start of the New Year, Exchange 2016 and 2019 email servers started queuing email messages due to a date bug
-
December 15, 2021
15
Dec'21
After Log4j, December Patch Tuesday piles on the pressure
December’s Patch Tuesday update from Microsoft contains several critical CVEs, but this month all attention is focused on the fall-out from Log4Shell, and burn-out is becoming a real issue
-
November 10, 2021
10
Nov'21
November Patch Tuesday drop fixes bugs in Excel, Exchange Server
Another relatively light Patch Tuesday drop from Microsoft addresses 55 vulnerabilities, two of them already being exploited
-
October 27, 2021
27
Oct'21
Microsoft’s latest results focus on combating inflation
With prices set to rise, CEO Satya Nadella used the Q1 2022 earnings call to discuss the deflationary effect of digitisation
-
October 19, 2021
19
Oct'21
What will the 2025 end of life mean for enterprise Windows 10?
Businesses have until 2025 to migrate to Windows 11, but older hardware may need updating and there’s a chip crisis
-
October 13, 2021
13
Oct'21
Microsoft warns of MysterySnail on October Patch Tuesday
Microsoft has fixed a zero-day that is being actively exploited to deliver a new remote access trojan dubbed MysterySnail to targets
-
September 29, 2021
29
Sep'21
Security boost in Windows 11 limits PC reuse
Microsoft has put a lot of emphasis on improving security in Windows 11, but this comes at a cost as old hardware is no longer supported
-
September 15, 2021
15
Sep'21
Microsoft patches 66 vulnerabilities in September update
Another lighter-than-usual Patch Tuesday update includes important fixes for recently disclosed vulnerabilities, including a dangerous zero-day, and an update in the PrintNightmare saga
-
September 09, 2021
09
Sep'21
Latest Microsoft zero-day being actively exploited
New Microsoft zero-day CVE-2021-40444 affects multiple versions of Windows and is probably being exploited through convincing phishing attacks
-
August 11, 2021
11
Aug'21
Microsoft fixes seven critical bugs on light Patch Tuesday
All seven critical vulnerabilities in Microsoft’s August Patch Tuesday were related to remote code execution, and there was one zero-day related to Windows Update Medic Service
-
August 03, 2021
03
Aug'21
Windows 365: Cloud PC pricing starts at £20
Will Microsoft change the way people buy PCs in much the same way that streaming services have revolutionised video subscription services?
-
July 14, 2021
14
Jul'21
Windows 365: Microsoft unveils the era of the cloud PC
Expanding its cloud offerings, Microsoft has simplified Azure Virtual Desktops with a new way to access Windows on any device
-
July 14, 2021
14
Jul'21
Multiple Microsoft bugs being actively exploited
Microsoft’s July Patch Tuesday update fixes 117 vulnerabilities, 13 rated as critical and four already being actively exploited
-
July 08, 2021
08
Jul'21
PrintNightmare haunts Microsoft as patch may miss mark
Microsoft dropped an out-of-band patch to fix PrintNightmare, but there are concerns it may not be totally effective. This does not mean it shouldn’t be applied
-
June 25, 2021
25
Jun'21
Windows 11: It’s more than a repositioned Start button
Microsoft has tried to grab the headlines with the latest incarnation of its desktop operating system, sporting a repositioned Start button and updated icons
-
June 09, 2021
09
Jun'21
Microsoft fixes seven zero-days on its Patch Tuesday rounds
Fixes for six actively-exploited – and one yet-to-be-exploited – zero-day bugs are released in the June 2021 Patch Tuesday update
-
May 26, 2021
26
May'21
Build 2021: Code abstraction and automatic code generation
Microsoft’s annual software developers’ event, Build, opened up with the company’s CEO painting a picture of opportunity for software developers
-
May 12, 2021
12
May'21
Microsoft fixes four critical bugs on lighter Patch Tuesday
Four critical RCE vulnerabilities put users of various Microsoft products at risk, and should be patched right away
-
April 30, 2021
30
Apr'21
End of support for Build 1909 leaves some Windows open to attack
Biannual Windows updates free IT staff from major updates, but some people prefer older builds of Windows, which leaves a gaping security hole
-
April 28, 2021
28
Apr'21
Microsoft results get a pandemic jab
Covid-19 has stimulated businesses to digitise more, and this is reflected in Microsoft’s latest results
-
April 27, 2021
27
Apr'21
Leaky Azure storage account puts software developer IP at risk
Source code for multiple products was left exposed in an unsecured Microsoft Azure cloud storage account, say researchers, but attributing responsibility for the error has proved difficult
-
April 15, 2021
15
Apr'21
How Windows patching leaves security exposed
Four years on since it devastated IT systems across the NHS, WannaCry remains a threat to organisations around the world
-
April 14, 2021
14
Apr'21
FBI accesses ProxyLogon target servers to disrupt cyber criminals
US Justice Department reveals successful court-authorised effort to clamp down on ProxyLogon exploitation
-
April 14, 2021
14
Apr'21
NSA unearths more MS Exchange vulnerabilities
Microsoft patches more critical vulnerabilities in Exchange Server a month after the ProxyLogon incident, after being warned by the US National Security Agency
-
April 08, 2021
08
Apr'21
Microsoft accused of stifling secondhand software market
In 2012, UsedSoft won a case for second user software, which has enabled the market to grow across Europe. But it is now under threat
-
March 25, 2021
25
Mar'21
Warning: AWS IAM behaves differently to directory services
IT admins use group policies to manage user access via Active Directory, but AWS takes a subtly different approach, which can be exploited
-
March 18, 2021
18
Mar'21
Coronavirus: How PCs in quarantine and intensive care units can be managed remotely
NHS IT staff generally have limited access to deployed devices, especially if that device is in an operating theatre or intensive care unit
-
March 16, 2021
16
Mar'21
Microsoft releases one-click ProxyLogon mitigation tool
Microsoft’s mitigation tool is designed to help customers without dedicated security or IT teams navigate fixing their vulnerable Exchange servers
-
March 15, 2021
15
Mar'21
Microsoft Exchange ProxyLogon attacks spike 10 times in four days
Exploitations of the Microsoft Exchange ProxyLogon vulnerabilities have increased tenfold in just four days
-
March 12, 2021
12
Mar'21
NCSC issues emergency alert on Microsoft Exchange patch
UK’s national cyber agency calls on organisations affected by the ProxyLogon vulnerabilities to patch their Microsoft Exchange Servers immediately
-
March 12, 2021
12
Mar'21
DearCry ransomware targets vulnerable Exchange servers
As predicted, ransomware gangs have started to target vulnerable instances of Microsoft Exchange Server, making patching an even greater priority
-
March 11, 2021
11
Mar'21
Norwegian government falls victim to Microsoft attacks
Norway’s parliament, the Storting, suffers second major cyber incident in a year as threat groups capitalise on vulnerable Microsoft Exchange Servers
-
March 10, 2021
10
Mar'21
Patch Tuesday overshadowed by Microsoft Exchange attacks
Microsoft’s March Patch Tuesday update drops amid ongoing fall-out from widespread Exchange attacks
-
March 05, 2021
05
Mar'21
Mandiant: MS Exchange bugs first exploited in January
Analysis from technical teams at FireEye’s Mandiant tracked activity exploiting newly disclosed vulnerabilities in Microsoft Exchange Server more than a month ago
-
March 04, 2021
04
Mar'21
Microsoft Exchange CVEs more widely exploited than thought
US CISA issues emergency guidance as impact of four newly disclosed Microsoft Exchange vulnerabilities becomes clearer
-
March 03, 2021
03
Mar'21
Emergency patch addresses MS Exchange Server zero-days
Microsoft releases an emergency patch to address multiple zero-day exploits directed at on-premise installations of Exchange Server
-
February 24, 2021
24
Feb'21
Microsoft builds industry-specific clouds for financial services and manufacturing firms
Software giant follows up launch of industry-specific cloud offerings for retail and healthcare organisations with a commitment to do the same for non-profits, manufacturing and financial services firms
-
February 10, 2021
10
Feb'21
Windows 10, Server 2019 users must patch serious zero-day
Another dangerous zero-day exploit is among 56 vulnerabilities patched by Microsoft in February’s Patch Tuesday update
-
February 04, 2021
04
Feb'21
SolarWinds chases multiple leads in breach investigation
Investigators at SolarWinds are exploring multiple theories as to how the company’s systems were compromised
-
January 20, 2021
20
Jan'21
Malwarebytes also hit by SolarWinds attackers
The nation state group that attacked SolarWinds in December got inside Malwarebytes by exploiting privileged access to its Microsoft Office 365 tenant, the firm reveals
-
January 13, 2021
13
Jan'21
Critical zero-day features in first Patch Tuesday of 2021
Microsoft releases fixes for 84 bugs on the first Patch Tuesday of 2021, including a critical zero-day vulnerability in Microsoft Defender
-
December 09, 2020
09
Dec'20
Patch Tuesday: Microsoft presents just 58 CVEs for Christmas
The final Patch Tuesday of 2020 contains 58 fixes, a minnow compared to some recent drops, but many are still of high importance
-
November 26, 2020
26
Nov'20
Robots taking jobs, but creating careers
Robotic process automation developers tell Computer Weekly about the job they never expected to be doing
-
November 11, 2020
11
Nov'20
Microsoft drops fix for serious zero-day among 112 Patch Tuesday updates
November’s Patch Tuesday contains fixes for 112 bugs, including a potentially serious zero-day exploit that malicious actors are already taking advantage of
-
October 14, 2020
14
Oct'20
Microsoft fixes 87 bugs in October 2020 Patch Tuesday
Smaller October Patch Tuesday update includes fixes for critical bugs in Windows 10 and Windows Server 2019
-
September 29, 2020
29
Sep'20
Organisations locked out by Azure AD crash
The Azure Active Directory was unavailable for a few hours in the evening of 28 September, preventing many from accessing MS online services
-
September 24, 2020
24
Sep'20
Race to patch as Microsoft confirms Zerologon attacks in the wild
Don’t be the organisation that made the headlines because it failed to patch. Microsoft says it is seeing cyber attacks ramping up around the Zerologon CVE-2020-1472 bug
-
September 09, 2020
09
Sep'20
September’s Patch Tuesday heavy on RCE vulnerabilities
Microsoft’s September update contains patches for 129 common vulnerabilities and exposures, including a high number of remote code execution issues
-
August 12, 2020
12
Aug'20
Microsoft patches two zero-days with active exploits
Microsoft drops another major Patch Tuesday update, including fixes for two zero-day exploits that are already being exploited by cyber criminals