Security News

Microsoft is urging Azure users to update the PowerShell command-line tool as soon as possible to protect against a critical remote code execution vulnerability impacting. The issue, tracked as CVE-2021-26701, affects PowerShell versions 7.0 and 7.1 and have been remediated in versions 7.0.6 and 7.1.3, respectively.

Microsoft is working to fix a known issue blocking Azure Virtual Desktops devices from downloading downloading and installing recent security updates via Windows Server Update Services. "We are investigating an issue where devices running Windows 10 Enterprise multi-session, version 1909 might not be able to download updates later than May 2021," Microsoft says in the Windows Health Dashboard.

Microsoft has told Azure users to update PowerShell - if they are using versions 7.0 or 7.1 - to address a remote code execution vulnerability patched earlier this year. The tech giant has advised customers who manage their Azure resources using affected versions of the PowerShell task automation solution to update to versions 7.0.6 or 7.1.3.

Microsoft and SES, in partnership with GovSat and UK-based solutions provider GRC, came together to demonstrate how Microsoft Azure Machine Learning and Artificial Intelligence capabilities can be brought directly to end-users deployed globally in a highly secure, reliable way while maintaining network sovereignty - allowing users to exploit key Azure workloads regardless of location and drastically boosting the efficiency of critical missions. In these demonstrations the Azure Stack Mini R device was connected to a quick deployable tactical satcom terminal from GRC through the secure SATCOM connection on GovSat-1 satellite, and sent directly to Azure UK via the SES Cloud Direct service, giving connected and disconnected access to Azure services.

MITRE's Centre for Threat-Informed Defence and Microsoft have jointly rolled out Security Stack Mappings for Azure, aimed at bringing the former's Adversarial Tactics, Techniques, and Common Knowledge framework into the latter's cloud platform - with rival platforms to follow. The deal made Azure the first cloud platform to actively link to ATT&CK by mapping in-built security controls to the framework.

DataDx announced the availability of its dashboard with real-time analytics reporting in the Microsoft Azure Marketplace, an online store providing applications and services for use on Azure. DataDx customers can now take advantage of the productive and trusted Azure cloud platform, with streamlined deployment and management.

Dataiku announced that it is now available through the Microsoft Azure Marketplace, an online store providing applications and services for use on Azure. Azure customers can now purchase Dataiku - a leader in AI and support for elastic cloud computing - using their Azure cloud budget and relationship, removing the barrier of new contracts or legal hassles when starting their journey to enterprise AI at scale.

Elastic announces new features and updates across the Elastic Observability solution in its 7.13 release to streamline workflows in Microsoft Azure, simplify data integrations, and accelerate root cause analysis. Expanded capabilities include native integration in the Microsoft Azure console, the beta release of Fleet Server, and new troubleshooting views in Elastic APM. Elastic is announcing an enhanced partnership with Microsoft, enabling users to find and deploy Elastic directly from the Azure console and natively integrate observability and security data from Azure services.

Red Hat announced Red Hat JBoss Enterprise Application Platform on Microsoft Azure, enabling organizations to tap into the benefits of a cloud-based architecture for modernizing their existing Jakarta EE applications and building new ones on Azure. Customers can bring existing applications to Azure-including JBoss EAP applications running on-premises or other Jakarta EE applications running on different application servers-choosing how they want to manage business critical, Java-based applications in the cloud.

Microsoft has added another 9 to its availability guarantee for Azure Key Vault, taking the service to 99.99 per cent availability. The previous level had been backed by a 99.9 per cent Service Level Agreement and the company claimed that extra 9 represented it "Taking the next step in our commitment to the resilience and availability" of the service.