Topic: microsoft security
-
Senator Accuses Microsoft of "Gross Cybersecurity Negligence"
Senator Ron Wyden has called for a federal investigation into Microsoft's cybersecurity practices, citing negligence that has left critical infrastructure vulnerable to attacks. Wyden specifically highlighted a ransomware attack on Ascension Health, where hackers exploited a vulnerability via a m...
Read More » -
Vectra AI Delivers Unified Threat Visibility for Microsoft
Vectra AI Shield for Microsoft is a unified security platform that provides comprehensive protection for Microsoft environments, including Entra ID, Microsoft 365, Copilot, and Azure, through a single AI-driven interface. The platform addresses visibility gaps and inconsistent alerts by using AI-...
Read More » -
Tanium Boosts Microsoft Security Copilot with AI Triage & Identity Insights
Tanium has launched its Security Triage Agent and an enhanced version with Identity Insights for Microsoft Security Copilot, combining endpoint visibility with AI to speed up threat investigation and response. The agents operate autonomously within Security Copilot, gathering endpoint artifacts a...
Read More » -
PQC Adoption, Android Spyware, and FEMA Data Breach: Key Updates
Microsoft has enhanced its security products with AI-ready Sentinel and Security Copilot, enabling automated threat response and easier deployment through the Microsoft Security Store. Insider threats and data breaches were highlighted, including a bribery attempt on a BBC journalist and breaches...
Read More » -
Microsoft Retires Decades-Old Security Threat
Microsoft is removing the deprecated and cryptographically broken RC4 encryption cipher from Windows, ending a major security vulnerability exploited in high-profile attacks like Kerberoasting. The RC4 cipher, integrated into Active Directory in 2000, remained a default fallback for decades despi...
Read More » -
Urgent WSUS Vulnerability: Patch Windows Server Now
A critical security flaw (CVE-2025-59287) in Microsoft's WSUS allows unauthorized remote code execution with system-level privileges, affecting multiple Windows Server versions. The vulnerability stems from the deserialization of untrusted data, enabling attackers to fully compromise servers, pro...
Read More »