Here is Homeland Security, black swans, and thwarted cyberattacks
Last week, I had the honor of addressing The Homeland Security Training Institute (HSTI) at the College of DuPage as part of the HSTI Live educational series.
Building a world without passwords
In this blog post, we will provide a brief insight into how we at Microsoft think about solving this problem, along with details on solutions that you can try out today.
Why Windows Defender Antivirus is the most deployed in the enterprise
The type of security solution needed has a complex job: It must protect users from hundreds of thousands of new threats every day – and then it must learn and grow to stay ahead of the next wave of attacks.
Sharing research and discoveries at PWN2OWN
The annual PWN2OWN exploit contest at the CanSecWest conference in Vancouver, British Columbia, Canada, brings together some of the top security talent from across the globe in a friendly competition. For the participants, these events are a platform to demonstrate world-class skills and vie for significant cash prizes.
A worthy upgrade: Next-gen security on Windows 10 proves resilient against ransomware outbreaks in 2017
Adopting reliable attack methods and techniques borrowed from more evolved threat types, ransomware attained new levels of reach and damage in 2017.
Understanding the performance impact of Spectre and Meltdown mitigations on Windows Systems
Currently three exploits have been demonstrated as technically possible. In partnership with our silicon partners, we have mitigated those through changes to Windows and silicon microcode.
Detecting reflective DLL loading with Windows Defender ATP
Today’s attacks put emphasis on leaving little, if any, forensic evidence to maintain stealth and achieve persistence. Attackers use methods that allow exploits to stay resident within an exploited process or migrate to a long-lived process without ever creating or relying on a file on disk.
Introducing Windows Defender Application Control
Application control is a crucial line of defense for protecting enterprises given today’s threat landscape, and it has an inherent advantage over traditional antivirus solutions.
New IIS functionality to help identify weak TLS usage
IIS logs can already be used to correlate client IP address, user agent string, and service URI. With the addition of the new custom logging fields detailed below, you will be able to quantify the usage of outdated security protocols and ciphers by clients connecting to your services.
TLS 1.2 Support added to Windows Server 2008
We are announcing that support for TLS1.1/TLS 1.2 on Windows Server 2008 is now available for download as of July 18th, 2017.