Windows Security
Windows Security | News, how-tos, features, reviews, and videos
Microsoft announces new security, privacy features at Ignite
Microsoft has consolidated some security tools under the Defender brand and added security and privacy features and products. Here's a look at what's new.
How to prevent sideloading attacks in Windows and Office 365
A few settings in Windows or Office 365 can help stop users from installing malicious apps on their devices.
Why small businesses should consider Microsoft Defender for Business
Defender for Business brings EDR and threat monitoring features found in more expensive Windows licenses to smaller organizations.
How to configure Microsoft Defender for cloud-based attacks
Malware delivered through cloud services such as OneDrive or SharePoint will try to disable and evade Defender. These simple settings will help prevent that.
New Windows browser security options and guidance: What you need to know
Microsoft has added new Edge update options and enhanced browser security modes, including a beta Super Duper Secure Mode.
Microsoft's very bad year for security: A timeline
Microsoft has had a horrible 2021, with vulnerabilities impacting its biggest services.
Chinese APT group IronHusky exploits zero-day Windows Server privilege escalation
The attackers used the exploit to deploy a new remote shell Trojan called MysterySnail.
Time to check software and security settings for Windows network vulnerabilities
October is Cybersecurity Awareness Month, and that's a good excuse to review what's running on your network to identify security risks.
Microsoft Exchange Emergency Mitigation: What admins need to know
The Emergency Mitigation service adds protections to Exchange Server in the wake of recent zero-day compromises.
How to mitigate the Microsoft Office zero-day attack
Follow this advice to block malicious Office files from doing harm to your network even if you've implemented Microsoft's recommended actions.
NTLM relay attacks explained, and why PetitPotam is the most dangerous
Attackers can intercept legitimate Active Directory authentication requests to gain access to systems. A PetitPotam attack could allow takeover of entire Windows domains.
5 steps to improve security on network PCs that can’t run Windows 11
Many networked systems will not be compatible with Windows 11 and its advanced security features. Here's how to keep Windows 10 devices from being a weak link.
How Windows admins can get started with computer forensics
Analyzing forensics logs requires a unique approach. Here are the basics of what you need to know and the tools to use.
Wave of native IIS malware hits Windows servers
IIS malware presents diverse, persistent, and growing threats from old and new threat actors.
6 vulnerabilities Microsoft hasn't patched (or can't)
Your IT and security admins need to be aware of these unpatched Microsoft vulnerabilities so that they can mitigate them in other ways.
The most dangerous (and interesting) Microsoft 365 attacks
APT groups are developing new techniques that allow them to avoid detection and exfiltrate hundreds of gigabytes of data from emails, SharePoint, OneDrive, and other applications.
How to prepare your Windows network for a ransomware attack
Removing barriers to hardening your Windows network and planning your response will minimize disruption from a ransomware attack.
Best Mitre D3FEND advice to harden Windows networks
Mitre's recently released D3FEND matrix offers sound guidance for any security admin or CISO looking to harden a Windows network against attack.
Windows 11 hardware requirements will drive security update decisions
Windows 11 is Microsoft's most security-oriented OS ever, but will your network-connected computers support it? Here's how to tell.
Windows 11's best security features
Windows 11 uses some of the best security features of Windows 10. The big difference is that many are now required.