Windows Security
Windows Security | News, how-tos, features, reviews, and videos
Chinese APT group IronHusky exploits zero-day Windows Server privilege escalation
The attackers used the exploit to deploy a new remote shell Trojan called MysterySnail.
Time to check software and security settings for Windows network vulnerabilities
October is Cybersecurity Awareness Month, and that's a good excuse to review what's running on your network to identify security risks.
video
Reviewing software risks on your Windows network
Set aside some time to inventory and analyze the software and settings on your network to identify risks.
Microsoft Exchange Emergency Mitigation: What admins need to know
The Emergency Mitigation service adds protections to Exchange Server in the wake of recent zero-day compromises.
How to mitigate the Microsoft Office zero-day attack
Follow this advice to block malicious Office files from doing harm to your network even if you've implemented Microsoft's recommended actions.
video
How to mitigate the Microsoft MSHTML remote code execution zero-day
A new zero-day vulnerability allows attackers to gain network access through Microsoft 365 documents. Here’s how to stop it.
video
How SMBs should select a security-savvy managed service provider
SMBs typically outsource some or all their IT services to an MSP. Here’s how to find one that takes security seriously.
NTLM relay attacks explained, and why PetitPotam is the most dangerous
Attackers can intercept legitimate Active Directory authentication requests to gain access to systems. A PetitPotam attack could allow takeover of entire Windows domains.
5 steps to improve security on network PCs that can’t run Windows 11
Many networked systems will not be compatible with Windows 11 and its advanced security features. Here's how to keep Windows 10 devices from being a weak link.
How Windows admins can get started with computer forensics
Analyzing forensics logs requires a unique approach. Here are the basics of what you need to know and the tools to use.
video
What Windows admins need to know about computer forensics
Understand these basic elements of computer forensics before you have to review log data for suspicious activity.
Wave of native IIS malware hits Windows servers
IIS malware presents diverse, persistent, and growing threats from old and new threat actors.
6 vulnerabilities Microsoft hasn't patched (or can't)
Your IT and security admins need to be aware of these unpatched Microsoft vulnerabilities so that they can mitigate them in other ways.
The most dangerous (and interesting) Microsoft 365 attacks
APT groups are developing new techniques that allow them to avoid detection and exfiltrate hundreds of gigabytes of data from emails, SharePoint, OneDrive, and other applications.
How to prepare your Windows network for a ransomware attack
Removing barriers to hardening your Windows network and planning your response will minimize disruption from a ransomware attack.
Best Mitre D3FEND advice to harden Windows networks
Mitre's recently released D3FEND matrix offers sound guidance for any security admin or CISO looking to harden a Windows network against attack.
video
Best Windows network hardening advice from MITRE D3FEND
The new MITRE D3FEND knowledge graph of cybersecurity countermeasures offers solid guidance for Windows admins.
