Containers are a great way to package applications, with minimal libraries required. It guarantees that you will have the same deployment experience, regardless of where the containers are deployed. Container orchestration software pushes this further by preparing the necessary foundation to create containers at scale. Linux and Windows support containerized applications and can participate in a container orchestration solution.

You may not be familiar with NTFS file streams, but you use them every day when you access files on any modern Windows system. This blog post explains this feature of NTFS ADS, shows how hackers can exploit file stream functionality in cyberattacks, and offers strategies for defending your organization.

In a coordinated disclosure with Microsoft on December 13th, 2022, security researchers with Mandiant, SentinelOne, and Sophos published evidence of a threat actor technique where malicious crafted drivers were invoked using a valid cryptographic signature. The malicious drivers were observed attempting to terminate a list of security products and evade detection.

The time is now to start accelerating the shift to Windows 11.

As part of Microsoft’s September 2022 Security Update, Microsoft released security updates to remediate CVE-2022-37958–an information disclosure vulnerability in SPNEGO NEGOEX that impacted all Windows versions 7 or newer. On December 13, Microsoft reclassified the vulnerability as Critical severity after security researchers discovered that the vulnerability could allow threat actors to remotely execute code pre-authentication.

In this post, we will dive into how to configure file access auditing on a Windows file server and explore the challenges with interpreting critical access events.

As we shared at ZeekWeek 2022 in October, we’re thrilled to announce emerging support for Zeek on Windows, thanks to an open-source contribution from Microsoft. Part of its integration of Zeek into its Defender for Endpoint security platform, this contribution provides fully-native build support for Windows platforms and opens up a range of future technical possibilities in this vast ecosystem.

While purchasing the Code Signing Certificate, particularly EV Code Signing Certificate, we all came across the term Windows Defender SmartScreen. But, only a few understand the term correctly and purchase the right digital solution. SmartScreen has become a prominent security Windows OS security mechanism, helping users to prevent cyber threats. It blocks installations if it doesn’t recognize the publisher.

Rezilion’s Dynamic SBOM is a first-of-its-kind technology that consolidates Windows and Linux software risk together in one UI. The Rezilion Windows SBOM helps teams efficiently manage software vulnerabilities and meet new regulatory standards for the 56% of software today that’s built for Windows OS.