Security News
Microsoft believes there have been extensive "Cyberattacks targeting people and organizations involved in the upcoming presidential election," and that foreign government hackers responsible for attacks ahead of the 2016 vote are back with new and nastier tactics. The Windows giant's corporate veep for Customer Security & Trust Tom Burt said both sides of US politics are being attacked, that China, Russia and Iran are all active, and that the spies are also actively targeting UK political parties and other international institutions.
Data Intensity announced the launch of Safe-Switch, a life-cycle approach to migrating and managing Oracle applications and database platforms on Microsoft Azure. In response to the Oracle and Microsoft Cloud Interoperability Partnership announcement, Safe-Switch was created to help customers accelerate their consumption of heterogenous cloud adoption, with freedom of choice and seamless integration for Oracle and Microsoft workloads.
The U.S. election campaigns of both Donald Trump and Joe Biden have been targeted in a slew of recent cyberattacks, Microsoft said on Thursday. With the U.S. presidential election a mere two months away, in recent weeks cyberattacks targeting people and organizations involved in it have ramped up - including numerous attempts against Trump and Biden staffers, Microsoft said.
"What we've seen is consistent with previous attack patterns that not only target candidates and campaign staffers but also those who they consult on key issues," Tom Burt, a Microsoft vice president, said in a blog post. Although U.S. intelligence officials said last month that the Russians favor President Donald Trump and the Chinese prefer former Vice President Joe Biden, the Democratic challenger, Microsoft noted Thursday that Chinese state-backed hackers have targeted "High profile individuals associated with the election," including people associated with the Biden campaign.
Microsoft this week announced the public preview of new functionality to automatically deliver security patches to Windows virtual machines in Azure. Called automatic VM guest patching, the feature is meant to improve the update management of Windows VMs to ensure security compliance through the automatic delivery of necessary patches.
Nutanix announced a new partnership with Microsoft that will enable both companies to deliver a hybrid solution with seamless application, data, and license mobility as well as unified management across on-premises and Azure environments, using Nutanix Clusters on Azure. Scott Guthrie, Executive Vice President, Cloud and AI, at Microsoft Corporation, said, "Many companies face complexities when managing hybrid cloud environments across private and public clouds. We are excited to collaborate with Nutanix to give customers flexibility and a seamless experience with hybrid Nutanix and Azure solutions."
This month's patch Tuesday includes patches for 15 Microsoft products, including 23 critical CVEs. Microsoft has addressed 129 security issues as part of its September 2020 Patch Tuesday update.
Microsoft's Patch Tuesday updates for September 2020 fix 129 vulnerabilities, but the company says none of them has been exploited in attacks or made public before patches were released. Several industry professionals have shared some thoughts on this month's patches and what they believe to be the most interesting vulnerabilities.
Microsoft today released updates to remedy nearly 130 security vulnerabilities in its Windows operating system and supported software. Todd Schell at Ivanti reminds us that Patch Tuesday isn't just about Windows updates: Google has shipped a critical update for its Chrome browser that resolves at least five security flaws that are rated high severity.
Microsoft has released patches for 129 security bugs in its September Patch Tuesday update. Another critical RCE vulnerability that should be prioritized for patching is CVE-2020-1210, which exists in SharePoint due to a failure to check an application package's source markup.