Microsoft disclosed a zero-day vulnerability impacting Office and Windows on July’s Patch Tuesday. This vulnerability has an “important” severity level, and can allow attackers to perform remote code execution with the same privileges as the target. As of this writing, there is no patch available to mitigate the vulnerability, but Microsoft has provided mitigation steps.

We’re delighted to announce that 1Password is now available for download on the Microsoft Store on Windows!

Amazon Web Services (AWS) supports IT departments looking to provide excellent and reliable service to their companies at the lowest cost. One way it does this is by making it possible to run your company’s Windows workloads AWS. Why might you consider transitioning your Windows workloads to AWS? There are many reasons to modernize applications with an AWS data base. Here are a few…

When it comes to the security of YOUR home and small business PCs, you must rely on something other than a dedicated IT team like large corporations do. The responsibility falls on your shoulders, making prioritizing security from the outset essential. Waiting until after a catastrophic incident is too late. We created this guide to help you establish a strong security baseline and proactively tackle the most critical issues. This comprehensive guide goes beyond the Windows 11 operating system itself.

Chinese hackers use DNS-over-HTTPS for Linux malware communication, a new Golang-based Skuld malware strand steals Discord and browser data from Windows PCs, and a massive phishing campaign uses 6,000 sites to impersonate brands.

The Center for Internet Security (CIS) team continuously release updates about cybersecurity best practices for new technologies. As of March 2023 all CIS Windows Server and Windows Workstation Benchmarks will be updated once a year to align with Microsoft’s update schedule. Major version updates that CIS will release (i.e., updating from v1.12.0 to v2.0.0) will account for significant changes in the operating system.

This announcement presents customers with two choices: Stay on Windows 10 for the time being, or begin planning for an enterprise-wide upgrade to Windows 11. For customers that rely on Microsoft to protect their attack surfaces, migrating operating systems isn’t only an IT decision — it’s also a security decision. Microsoft security features, including Microsoft Defender, are delivered as built-in components of Microsoft operating systems.

Attackers use a variety of tactics to spread laterally across on-premises Windows machines, including Pass-the-Ticket, Pass-the-Hash, Overpass-the-Hash and Golden Tickets attacks. But similar techniques are also effective in moving laterally from a compromised workstation to connected cloud resources, bypassing strong authentication measures like MFA. This article explains how attackers can perform lateral movement to the cloud with an attack called Pass-the-PRT.