Security News

Today's release of Windows 10 20H2 is the first release to automatically replace Microsoft Edge Legacy with the new Chromium-based Microsoft Edge regardless of any policies you have in place. When installed, Microsoft Edge Legacy will automatically be removed and be replaced with the new Microsoft Edge.

eSentire unveiled eSentire Cloud Automation Security Assistant, the company's automated detection and response solution for Microsoft Security products. CASA offers customers a single place within Microsoft Teams to actively manage alerts, engage eSentire experts on demand, and launch automated threat configurations for Microsoft Cloud Application Security, Microsoft 365, Microsoft Defender for Endpoint, Microsoft Azure, and Microsoft Graph Security API. CASA, delivered on the eSentire Atlas Extended Detection and Response platform, aggregates and enriches alerts to prioritize what matters and provides customers with the information needed to make security decisions, all within their existing Microsoft Teams app.

A new phishing campaign uses a Coinbase-themed email to install an Office 365 consent app that gives attackers access to a victim's email. Over the past year, hackers have increasingly used Microsoft Office 365 OAuth apps, otherwise known as consent apps, as part of their attacks.

New, sophisticated adversaries are switching up their tactics in exploiting enterprise-friendly platforms - most notably Microsoft Exchange, Outlook Web Access and Outlook on the Web - in order to steal business credentials and other sensitive data. APTs Flock Exchange, OWA. One advanced persistent threat group that has been targeting Exchange and OWA is what researchers dub "BELUGASTURGEON".

Just days after issuing fixes for scores of bugs in its products for this month's Patch Tuesday, Microsoft has issued two more patches for security holes that can be exploited by maliciously crafted files to run malware on victims' computers. The first, CVE-2020-17023, is a Visual Studio issue that allows for remote code execution after getting the target to click on a specially crafted package.

A Monday blog post from cyber threat intelligence provider Check Point Research found that Microsoft was the top impersonated brand in phishing attempts during the third quarter. For the quarter, email phishing was the most prevalent type of brand phishing, accounting for 44% of all attacks.

Microsoft removed a Windows 10, version 2004 compatibility hold blocking devices with certain WWAN LTE modems from upgrading to the latest Windows version. A fix for the issue was made available with the release of the Windows 10 2004 KB4577063 non-security preview cumulative update.

Microsoft is top of the heap when it comes to hacker impersonations - with Microsoft products and services featuring in nearly a fifth of all global brand phishing attacks in the third quarter of this year. The top three phishing brands exploited by email phishing attacks were Microsoft, DHL and Apple; on the web, it was Microsoft, Google and PayPal; and for mobile, WhatsApp, PayPal and Facebook took the top spots.

If your PC games are lagging or running slow, you can free up resources in Windows 10 using a new XBOX Game Bar task manager that overlays on top of running games. This week, Microsoft has started to rollout XBOX Game Bar version 5.420.9252.0 to all Windows 10 users via the Microsoft Store.

One flaw exists in Microsoft's Visual Studio Code is a free source-code editor made by Microsoft for Windows, Linux and macOS. The other is in the Microsoft Windows Codecs Library; the codecs module provides stream and file interfaces for transcoding data in Windows programs. According to Microsoft, one "Important" severity flaw stems from the way that Microsoft Windows Codecs Library handles objects in memory.