Security News

Earlier this year, Microsoft announced that it's enabling support for sleeping tabs and now Microsoft is rolling out two new features - vertical tabs and startup boost. Vertical tabs feature was first introduced last year and this feature has been designed to move the tabs bar from the top to the left side in a vertical layout and you can switch between old and new layout with one click.

Earlier this year, Microsoft announced that it's enabling support for sleeping tabs and now Microsoft is rolling out two new features - vertical tabs and startup boost. Vertical tabs feature was first introduced last year and this feature has been designed to move the tabs bar from the top to the left side in a vertical layout and you can switch between old and new layout with one click.

The exploitation of bitsquatted domains tends to be automatic when a DNS request is being made from a computer impacted by a hardware error, solar flare, or cosmic rays, thereby flipping one of the bits of the legitimate domain names. Researacher sees real windows.com traffic coming to his domains!

The exploitation of bitsquatted domains tends to be automatic when a DNS request is being made from a computer impacted by a hardware error, solar flare, or cosmic rays, thereby flipping one of the bits of the legitimate domain names. Researacher sees real windows.com traffic coming to his domains!

Security researchers warn that multiple cyber-espionage groups are targeting the recently addressed zero-day vulnerabilities in Microsoft Exchange Server and say that more than 300 web shells have been identified on the compromised servers. Managed detection and response solutions provider Huntress says it has already observed more than 200 compromised Exchange Servers that received payloads within the "C:inetpubwwwrootaspnet clientsystem web" directory, and claims to have identified more than 350 web shells to date.

A security researcher says Microsoft has awarded him a $50,000 bounty reward for reporting a vulnerability that could have potentially allowed for the takeover of any Microsoft account. The attack, the researcher explains, targets the password recovery process that Microsoft has in place, which typically requires the user to enter their email or phone number to receive a security code, and then enter that code.

This solution quickly inspects, hardens and monitors Microsoft 365 environments for mid-market customers and Infocyte partners. As a result of this, Infocyte aimed to provide a simple solution for Microsoft 365 to combat these highly successful attack vectors.

Aruba, a Hewlett Packard Enterprise company in collaboration with Microsoft, announced two new solutions that enable organizations to accelerate their digital transformation from edge-to-cloud by delivering deeper integration between Aruba ESP and Microsoft Azure. Announced at Microsoft Ignite 2021, the first solution is Aruba IoT Transport for Azure, a service that enables IoT devices connected to Aruba access points and controllers to bi-directionally communicate with the Azure IoT Hub.

Microsoft has shared details on Known Issue Rollback, a Windows 10 capability used to revert buggy non-security fixes delivered through Windows Update. As a Windows 10 servicing improvement, Known Issue Rollback allows Microsoft to revert single and targeted bug fixes once critical regressions are detected.

Microsoft has spotted multiple zero-day exploits in the wild being used to attack on-premises versions of Microsoft Exchange Server. An exploit allows remote attackers with administrator permissions to run code as SYSTEM on the Exchange server.