Guidance on Potential Misconfiguration of Authorization of Multi-Tenant Applications that use Azure AD Summary Summary Microsoft has addressed an authorization misconfigu... 2023-3-29 15:0:0 | 阅读: 15 | 收藏 | Microsoft Security Response Center - msrc.microsoft.com security microsoft client

Microsoft Mitigates Outlook Elevation of Privilege Vulnerability May 9, 2023 update: Releases for Microsoft Products has been updated with the release of CVE-2... 2023-3-14 21:0:0 | 阅读: 14 | 收藏 | Microsoft Security Response Center - msrc.microsoft.com microsoft windows security exchange 23397

Azure Kubernetes Service (AKS) Threat Hunting As more businesses shift away from running workloads on dedicated virtual machines to running... 2023-3-1 16:0:0 | 阅读: 36 | 收藏 | Microsoft Security Response Center - msrc.microsoft.com kubernetes aks containers plane objectref

Configuring host-level audit logging for AKS VMSS This blog post runs you through how to enable and configure Linux audit logging on your Azure... 2023-3-1 16:0:0 | 阅读: 7 | 收藏 | Microsoft Security Response Center - msrc.microsoft.com auditd syslog vmss aks facility

First steps in CHERIoT Security Research At Microsoft, we invest a lot of time researching and investigating possibilities in our journ... 2023-2-28 16:0:0 | 阅读: 20 | 收藏 | Microsoft Security Response Center - msrc.microsoft.com compartment switcher cheri memory cheriot

New MSRC Blog Site We are excited to announce the release of the new Microsoft Security Response Center (MSRC) bl... 2023-2-8 16:0:0 | 阅读: 6 | 收藏 | Microsoft Security Response Center - msrc.microsoft.com microsoft 9th refreshed taxonomy excited

BlueHat 2023: Connecting the security research community with Microsoft We’re excited to welcome more than 400 members of the security research community from... 2023-2-6 16:0:0 | 阅读: 25 | 收藏 | Microsoft Security Response Center - msrc.microsoft.com security microsoft bluehat speaker hardware

Microsoft Investigation - Threat actor consent phishing campaign abusing the verified publisher process Summary Summary On December 15th, 2022, Microsoft became aware of a... 2023-1-31 16:0:0 | 阅读: 11 | 收藏 | Microsoft Security Response Center - msrc.microsoft.com microsoft phishing fraudulent malicious security

Congratulations to the Top MSRC 2022 Q4 Security Researchers! Congratulations to all the researchers recognized in this quarter’s Microsoft Researcher Recog... 2023-1-26 16:0:0 | 阅读: 8 | 收藏 | Microsoft Security Response Center - msrc.microsoft.com leaderboard security quarter q4

Microsoft resolves four SSRF vulnerabilities in Azure cloud services Summary Summary Microsoft recently fixed a set of Server-Side Reque... 2023-1-17 16:0:0 | 阅读: 3 | 收藏 | Microsoft Security Response Center - msrc.microsoft.com ssrf security microsoft twins

Publishing CBL-Mariner CVEs on the Security Update Guide CVRF API Microsoft is pleased to announce that beginning January 11, 2023, we will publish CBL-Mariner... 2023-1-6 16:0:0 | 阅读: 6 | 收藏 | Microsoft Security Response Center - msrc.microsoft.com mariner cves cbl security cvrf

Security Update Guide Improvement – Representing Hotpatch Updates Today we are updating the way Microsoft Security Update Guide (SUG) represents the Windows Hot... 2022-12-29 16:0:0 | 阅读: 6 | 收藏 | Microsoft Security Response Center - msrc.microsoft.com security hotpatch windows sug microsoft

BlueHat 2023: Applications to Attend NOW OPEN! We are excited to announce that applications to attend BlueHat 2023 are n... 2022-12-2 16:0:0 | 阅读: 8 | 收藏 | Microsoft Security Response Center - msrc.microsoft.com bluehat microsoft attend wa redmond

A Ride on the Wild Side with Hacking Heavyweight Sick Codes Beverage of Choice: Krating Daeng (Thai Red Bull)Industry Influencer he Admires: Casey... 2022-11-29 16:0:0 | 阅读: 7 | 收藏 | Microsoft Security Response Center - msrc.microsoft.com sick security him software career

Announcing the Microsoft Machine Learning Membership Inference Competition (MICO) We’re excited to announce the launch of a new competition focusing on the security and privacy... 2022-11-16 16:0:0 | 阅读: 13 | 收藏 | Microsoft Security Response Center - msrc.microsoft.com inference membership competition attacker trained

Awareness and guidance related to OpenSSL 3.0 - 3.0.6 risk (CVE-2022-3786 and CVE-2202-3602) Summary Summary Microsoft is aware and actively addressing the impa... 2022-11-2 15:0:0 | 阅读: 11 | 收藏 | Microsoft Security Response Center - msrc.microsoft.com microsoft security defender 3602 client

Microsoft Mitigates Vulnerability in Jupyter Notebooks for Azure Cosmos DB Summary Summary Microsoft recently fixed an authentication bypass v... 2022-11-1 15:0:0 | 阅读: 10 | 收藏 | Microsoft Security Response Center - msrc.microsoft.com notebooks jupyter cosmos security microsoft

Reflecting on Cybersecurity Awareness Month: At its Core, Cybersecurity is all about People As Cybersecurity Awareness Month 2022 comes to a close, I’m grateful for the impact it has had... 2022-10-31 15:0:0 | 阅读: 7 | 收藏 | Microsoft Security Response Center - msrc.microsoft.com security communities threats defend

Congratulations to the Top MSRC 2022 Q3 Security Researchers! Congratulations to all the researchers recognized in this quarter’s Microsoft Researcher Recog... 2022-10-24 15:0:0 | 阅读: 14 | 收藏 | Microsoft Security Response Center - msrc.microsoft.com leaderboard quarter security recognized

Awareness and guidance related to potential Service Fabric Explorer (SFX) v1 web client risk Summary Summary Microsoft was recently made aware of a Cross-Site S... 2022-10-19 15:0:0 | 阅读: 9 | 收藏 | Microsoft Security Response Center - msrc.microsoft.com client fabric sfxv1 sfx 35829