KRBTGT Account Password Reset Scripts now available for customers
Although pass-the-hash credential theft and reuse attacks aren’t new, more recently security researchers have been focusing on attack methods for Kerberos authentication.
MAPS in the cloud: How can it help your enterprise?
(Note: Microsoft Active Protection Service is now called Windows Defender Antivirus cloud protection service. Read about it in this blog entry: Windows Defender Antivirus cloud protection service: Advanced real-time defense against never-before-seen malware.) Malware can easily send a huge enterprise infrastructure into a tailspin.
Your Antivirus protection has expired. So what? You might be surprised. Microsoft’s new cybersecurity report explains.
When you buy a new computer, often times it will come pre-installed with software provided by the manufacturer. This is commonly done by software providers as way to entice people to try their products before they buy.
Hundreds of Millions of Microsoft Customers Now Benefit from Best-in-Class Encryption
Last month, we shared some important encryption advancements as part of our ongoing commitment to increase data protection for customers using our network and services. Today, we are pleased to share that Microsoft is bringing encryption technologies currently available in Windows 8.1 and Windows Server 2012 R2, to older versions of our platforms.
Microsoft Antimalware for Azure Cloud Services and Virtual Machines now Available for Free
Microsoft Antimalware for Azure Cloud Services and Virtual Machines is now generally available for Microsoft Azure customers. This new security extension for Microsoft Azure provides an additional layer of security by helping to identify, block and remove malicious software on virtual machines managed by Azure customers.
Looking Forward: Trustworthy Computing
When Bill Gates announced the Trustworthy Computing Initiative in 2002, he recognized that we needed to change both our processes and culture if we were to make fundamental changes in our products. To ensure that occurred, a centralized group was given responsibility to drive the initiative forward.
Measure Twice, Cut Once, With RMA Methodology
I’ve been beating our drum for a while now about the inevitability of failure in cloud-based systems. Simply put, the complexities and interdependencies of the cloud make it nearly impossible to avoid service failure, so instead we have to go against our instincts and actually design for this eventuality.
Strengthening encryption for Microsoft Azure customers
In July, we published a blog post which talked about the advancements Microsoft had made in encryption for Outlook.com and OneDrive to further increase the security of our customers data. Today, Microsoft Azure has taken additional steps toward our commitment to protecting customer data with the announcement of encryption improvements for Microsoft Azure guest OS.
Is that call from Microsoft a scam?
Neither Microsoft nor our partners make unsolicited phone calls (also known as cold calls) about your computer security or software fixes.
Microsoft Interflow: a new Security and Threat Information Exchange Platform
Today, the Microsoft Security Response Center (MSRC) announced the private preview of Microsoft Interflow. This is a security and threat information exchange platform for cybersecurity analysts and researchers. Interflow provides an automated machine-readable feed of threat and security information that can be shared across industries and community groups in near real-time.
Microsoft is building a global online safety community, one tweet at a time
Some say, “It takes a village to raise a child.” Extending this notion, it takes an entire global community to make the Internet a safer and better place. Microsoft is committed to fostering digital citizenship—the safer, responsible, and more appropriate use of devices and technology.
New Guidance for Securing Public Key Infrastructure
Public Key Infrastructure (PKI) is used as a building block to provide key security controls, such as data protection and authentication for organizations. Many organizations operate their own PKI to support things like remote access, network authentication and securing communications. The threat of compromise to IT infrastructures from attacks is evolving.