Security News

Microsoft releases Windows 11 23H2 as an enablement package
2023-10-31 17:00

Windows 11 23H2 started rolling out in September to Insiders enrolled in the Release Preview Channel for enterprise testing, and it has the same servicing branch and code base as Windows 11 22H2. "As Windows 11, version 23H2 shares the same code base and servicing branch as Windows 11, version 22H2, we will deliver this feature update using servicing technology, providing a fast installation experience," said John Cable, Microsoft VP for Windows Servicing and Delivery.Windows 11 23H2 was expected to ship with numerous new features, but Microsoft decided to instead release them as part of the Windows 11 22H2 'Moment 4' update.

From Windows 9x to 11: Tracing Microsoft’s security evolution
2023-10-31 06:00

Over its journey from Windows 9x to Windows 11, Microsoft has implemented multiple security overhauls, each addressing the challenges of its time and setting the stage for future developments. In this Help Net Security interview, we feature security researcher Alex Ionescu, the co-author of Windows Internals, one of the founding employees of CrowdStrike, now running his consulting company, Winsider Seminars & Solutions, where he continues to do security research focusing on platform security.

Microsoft Exposes Octo Tempest, One of the Most Dangerous Financial Threat Actors to Date
2023-10-30 15:31

Microsoft exposes Octo Tempest, an English-speaking threat actor that runs extortion, encryption and destruction campaigns at a wide variety of industries. A new report from Microsoft Incident Response and Microsoft Threat Intelligence teams exposed the activities and constant evolution of a financially oriented threat actor named Octo Tempest, who deploys advanced social engineering techniques to target companies, steal data and run ransomware campaigns.

Microsoft 365 users get workaround for ‘Something Went Wrong’ errors
2023-10-27 17:46

Microsoft shared a workaround for a known Microsoft 365 issue triggering 'Something Went Wrong ' sign-in errors and making desktop applications unusable for many customers. The login issues affect those using Excel, Word, Outlook, and PowerPoint for Microsoft 365, Microsoft 365 Apps for business, and Office apps for iOS and Android.

Microsoft unveils shady shenanigans of Octo Tempest and their cyber-trickery toolkit
2023-10-27 12:43

The "Unique" native English-speaking group is tracked by Microsoft as Octo Tempest and in the space of a year has demonstrated a consistent and rapid evolution to become one of the most well-equipped cybercrime groups in existence. After initially exploring ransomware as part of its toolset, Octo Tempest originally conducted attacks without dropping an encryption payload, sticking with the data extortion tactics it had adopted starting in late 2022.

Microsoft: Octo Tempest is one of the most dangerous financial hacking groups
2023-10-26 22:55

Microsoft has published a detailed profile of a native English-speaking threat actor with advanced social engineering capabilities it tracks as Octo Tempest, that targets companies in data extortion and ransomware attacks. Microsoft says that Octo Tempest also used direct physical threats in some cases to obtain logins that would advance their attack.

Microsoft: Octo Tempest one of the most dangerous financial hacking groups
2023-10-26 22:55

Microsoft has published a detailed profile of a native English-speaking threat actor with advanced social engineering capabilities it tracks as Octo Tempest, that targets companies in data extortion and ransomware attacks. Microsoft says that Octo Tempest also used direct physical threats in some cases to obtain logins that would advance their attack.

Everything You Need to Know About Microsoft’s New $5 Billion Investment in Australia
2023-10-26 16:02

Microsoft plans to more than double its cloud computing capacity in Australia over the next two years and expand its support for critical national cyber security and technology skills priorities. Fast-growing demand for cloud computing services across Australia has seen Microsoft announce the injection of AU $5 billion into the market, in a move it says will support Australia's ability to seize the economic and productivity advantages of artificial intelligence.

Microsoft Warns as Scattered Spider Expands from SIM Swaps to Ransomware
2023-10-26 13:56

The prolific threat actor known as Scattered Spider has been observed impersonating newly hired employees in targeted firms as a ploy to blend into normal on-hire processes and takeover accounts...

Microsoft tests Windows 11 encrypted DNS server auto-discovery
2023-10-25 20:45

Microsoft is testing support for the Discovery of Network-designated Resolvers internet standard, which enables automated client-side discovery of encrypted DNS servers on local area networks. Without DNR support, users must manually enter the info of encrypted DNS servers on their local area network within the network settings.