Microsoft Support & Discussions
Free PC Help Forum microsoft products support and discussions. If you need help with Microsoft Windows, Windows Server software, Microsoft 365, Microsoft Azure or any other Microsoft product you can post here. If you want to discuss Microsoft and their line of products you can do that here also.
84,928 topics in this forum
-
How to assess and improve the security culture of your business
by Guest Emma Jones- 0 replies
- 0 views
The security community is continuously changing, growing, and learning from each other to better position the world against cyber threats. In the latest Voice of the Community blog series post, Microsoft Security Product Marketing Manager Natalia Godyla talks with Cygenta Co-founder and Co-Chief Executive Officer Dr. Jessica Barker, author of “Confident Cyber Security: How to Get Started in Cyber Security and Futureproof Your Career” and co-author of “Cybersecurity ABCs: Delivering awareness, behaviors and culture change.” In this blog post, Jessica talks about how to build a security culture. Natalia: How are most organizations doing? What is the state of cybersecurit…
-
HTML smuggling surges: Highly evasive loader technique increasingly used in banking malware, targeted attacks
by Guest Eric Avena- 0 replies
- 0 views
HTML smuggling, a highly evasive malware delivery technique that leverages legitimate HTML5 and JavaScript features, is increasingly used in email campaigns that deploy banking malware, remote access Trojans (RATs), and other payloads related to targeted attacks. Notably, this technique was observed in a spear-phishing campaign from the threat actor NOBELIUM in May. More recently, we have also seen this technique deliver the banking Trojan Mekotio, as well as AsyncRAT/NJRAT and Trickbot, malware that attackers utilize to gain control of affected devices and deliver ransomware payloads and other threats. As the name suggests, HTML smuggling lets an attacker “smuggle” an…
-
-
- FPCH Admin
- 0 replies
- 1 view
After a short hiatus, BlueHat is coming back with a vengeance! And we’ve got big plans for the entire researcher community. But first, I must apologize. It’s been a while since you have heard from us. We didn’t have BlueHat 2020 or 2021, and we know that was disappointing. It was partly due to the pandemic, where our priority was simply keeping everyone safe.
Last reply by Cloaked, -
-
The hunt for NOBELIUM, the most sophisticated nation-state attack in history
by Guest Emma Jones- 0 replies
- 0 views
This is the second in a four-part blog series on the NOBELIUM nation-state cyberattack. In December 2020, Microsoft began sharing details with the world about what became known as the most sophisticated nation-state cyberattack in history. Microsoft’s four-part video series “Decoding NOBELIUM” pulls the curtain back on the NOBELUM incident and how world-class threat hunters from Microsoft and around the industry came together to take on the most sophisticated nation-state attack in history. In this second post, we’ll explore the investigation in the second episode of the docuseries. The threat hunters had but weeks to unravel a global attack that had been planned and …
-
Microsoft is a 5-time Leader in the Gartner Magic Quadrant for Access Management
by Guest Emma Jones- 0 replies
- 0 views
We are honored that Gartner recognized Microsoft as a Leader in Gartner® Magic QuadrantTM for Access Management in Microsoft Azure Active Directory (Azure AD). In addition, Microsoft has placed the farthest right on the “Completeness of Vision” axis. None of this is possible without you, our passionate customers. You help shape our vision and roadmap, and it is your short- and long-term priorities that guide our investments for a comprehensive identity solution. We value your partnership as we work together on adapting to hybrid work and defending against advanced and persistent threats. As your needs continue to evolve, these emerging trends are shaping our produc…
-
Microsoft is recognized as a Leader in the 2021 Forrester Wave for Unified Endpoint Management
by Guest Emma Jones- 0 replies
- 0 views
Microsoft is honored to be recognized as a Leader in The Forrester Wave: Unified Endpoint Management (UEM), Q4 2021 report for our ability to help customers on their path to modern endpoint management. Microsoft Endpoint Manager—which brings together Microsoft Intune for cloud endpoint management and Microsoft Endpoint Configuration Manager for endpoints on-premises—empowers organizations to protect their apps and devices across platforms for a resilient, productive workforce. The Forrester report states that Microsoft “excels at helping customers migrate to modern endpoint management” and that its Desktop Analytics offers capabilities that are among the most advanced …
-
Threat actor DEV-0322 exploiting ZOHO ManageEngine ADSelfService Plus
by Guest Eric Avena- 0 replies
- 0 views
Microsoft has detected exploits being used to compromise systems running the ZOHO ManageEngine ADSelfService Plus software versions vulnerable to CVE-2021-40539 in a targeted campaign. Microsoft Threat Intelligence Center (MSTIC) attributes this campaign with high confidence to DEV-0322, a group operating out of China, based on observed infrastructure, victimology, tactics, and procedures. MSTIC previously highlighted DEV-0322 activity related to attacks targeting the SolarWinds Serv-U software with 0-day exploit. As with any observed nation-state actor activity, Microsoft notifies customers that have been targeted or compromised, providing them with the information th…
-
Learn how Microsoft strengthens IoT and OT security with Zero Trust
by Guest Emma Jones- 0 replies
- 0 views
As cyber threats grow more sophisticated and relentless, the need for Cybersecurity Awareness Month becomes more urgent every year. As part of our year-round commitment to security for all, Microsoft continues to track numerous incidents targeting both digital and physical operations for many organizations. Beyond the usual espionage and data-theft attacks aimed at IT systems, threat actors have increasingly turned their attention toward IoT devices and operational technology (OT) equipment—everything from oil pipelines1 to medical devices.2 Malicious actors have also had success in targeting supply chains, as seen in the insidious Solorigate3 and Kaseya4 attacks. Earl…
-
A data-driven approach to managing devices in your organization
by Guest Albert Cabello Serrano- 0 replies
- 1 view
The recent shift to hybrid and remote work is changing the way organizations manage enterprise devices. Many organizations are moving to modern cloud management solutions. IT Pros tell us that most have become familiar with the Windows servicing model and the deployment of regular feature updates and are using – or planning to use – Windows Update for Business to automate updates. We also hear that application compatibility is less of a concern for most organizations as it was when Windows 10 was introduced. We're working to make Windows update readiness insights more accessible with the goal to provide you with the insights you need to confidently deploy Windows witho…
-
Announcing a smaller WSUS Scan Cab
by Guest thad_martin- 0 replies
- 0 views
The Windows Server Update Service (WSUS) Scan Cab can help determine whether a Windows device needs to install necessary security updates without first connecting to the Windows Update service. Whenever new Windows security updates are released, Microsoft generates a new WSUS Scan Cab that contains the metadata for those updates. Over time, the size of the WSUS Scan Cab has grown to the point that it may cause issues for organizations seeking to distribute it. To address these issues, we've built a new version of the WSUS Scan Cab that is half the size by removing metadata that is no longer needed in offline scan scenarios. We've validated the smaller WSUS Scan Cab wor…
-
Discover what’s new and gain technical expertise from MISA at Ignite
by Guest Emma Jones- 0 replies
- 0 views
It’s hard to believe we’re so close to the end of another year, and what a year it’s been. For too brief a time in some places, our masks were tossed away, only to find us digging them out of drawers again not long after. But masked up or not, it’s been good to see local restaurants buzzing with activity again, along with fans enjoying sporting events, concerts, and even some shows on Broadway. There’s a sense of expectation in the air, and I’m excited to see what 2022 has in store for all of us. That renewed optimism can be seen in the continued growth of the Microsoft Intelligent Security Association (MISA) member base—now reaching 275 partners, with 273 product inte…
-
Now on demand! Windows at Microsoft Ignite: November 2021
by Guest Heather Poulsen- 0 replies
- 0 views
Welcome to your guide to all things Windows at Microsoft Ignite, November 2021 edition! Updated November 3rd 4:00PM PT with links to what's available on demand Short on time? Jump straight to: Core sessions | Interactive experiences | Foundational skills | Depth on demand | Related sessions | Windows Office Hours | Additional resources Windows 11 is designed to support hybrid work, to protect from the chip to the cloud, and to enable you—the IT pro—to provide productive, collaborative experiences for your end users. Whether you are preparing to roll out Windows 11 across your organization or looking for proven tips to help you more easily manage all your Windows …
-
-
- FPCH Admin
- 0 replies
- 254 views
Looking back at the last two years, to say that our security strategies have evolved would be an understatement. Organizations around the world made overnight transitions to remote work models in response to a global pandemic, forcing them to reassess attack surface areas as they underwent an accelerated digital transformation. Meanwhile, cybercriminals seized new opportunities—introducing COVID-19-themed social engineering campaigns and accelerated ransomware attacks. Nation-state actors launched increasingly bold and sophisticated nation-state attacks.1 In this environment, security transformation has become key to survival. The mandate to explicitly verify every acc…
Last reply by AWS, -
-
Windows 11: Streamlined for business, predictable for IT
by Guest John_Cable- 0 replies
- 0 views
We live in an increasingly cloud-connected world. Once a novel concept, hybrid work is now the norm and today's commercial organizations look to you, the IT professional, to support business continuity and to keep users (and their devices) protected and productive. Your coworkers look to you as well—to help them connect, create, and collaborate easily, quickly, and without interruption. Now that Windows 11 is available, I want to take this opportunity to share why Windows 11 is ready to support commercial organizations today. If you're attending Microsoft Ignite this week, or planning to catch up later, check out Windows 11: The 11 things every organization should know…
-
Deployment service for driver updates public preview coming soon
by Guest Nir_Froimovici- 0 replies
- 0 views
Today I am excited to announce the public preview for the Windows Update for Business deployment service will be available in Microsoft Graph and in Microsoft Endpoint Manager in the first half of 2022! Don't miss our Microsoft Ignite depth on demand session for a closer look at the deployment service, and read on for valuable insights, including: Drivers 101 – How do drivers and firmware updates make it to Windows Update? How does Windows Update identify the best drivers and/or firmware for your device? Management and reporting with Windows Update for Business and Microsoft Graph – How did we build the service? How does Microsoft Graph empower application builder…
-
New additions to the Windows Update for Business deployment service
by Guest David_Mebane- 0 replies
- 0 views
Today, we're excited to highlight newly available investments in the Windows Update for Business deployment service: Update scheduling and monitoring has been extended to support Windows 11. Safeguard holds are expanded to support a new class of issues. A Microsoft Learn module is available to help facilitate adoption of these features and more. Since launching the Windows Update for Business deployment service and associated integration with Microsoft Intune, we've been hard at work helping IT professionals around the world leverage this as a tool to achieve more. The deployment service was built to help you and your organization simplify the journey to cloud-…
-
Enable your hybrid work scenarios with Windows 365 Enterprise
by Guest Tristan Scott- 0 replies
- 0 views
Hybrid work and elastic workforces create new scenarios which leaves room for new solutions. Which is why we developed Windows 365 Enterprise edition – to offer a new set of capabilities, in a simple to implement package to help companies address these challenges. Today, as a companion to our depth on demand session, I want to outline some of the newest capabilities available to Windows 365 Enterprise edition – the Cloud PC solution for organizations with 300 employees or more. We also recommend Windows 365 Enterprise edition for small and medium-sized customers using Microsoft Endpoint Manager to manage its devices. You'll also get a peek into some features we'll be r…
-
Support for Azure AD joined Cloud PCs in Windows 365 Enterprise
by Guest Christian_Montoya- 0 replies
- 0 views
Today I'm happy to share progress on the most requested feature from Windows 365 Enterprise customers: support for Azure AD joined Cloud PCs. Azure AD joined Cloud PCs provide the following key benefits: Create Azure AD joined Cloud PCs without bringing any Azure infrastructure. Create Azure AD joined Cloud PCs on your own network—just like today—by using an on-premises network connection. Provide Cloud PCs for cloud-only users in your organization. Gain more flexibility to sign in to your Cloud PC using Windows Hello for Business. We're currently validating this functionality with select customers and partners, and we're excited to bring this to public pre…
-
What's happening? Windows 365 at Microsoft Ignite
by Guest Christiaan_Brinkhoff- 0 replies
- 0 views
To help you track what's happening at Microsoft Ignite about Windows 365, we're sharing this blog with highlights of new features, sessions, videos, blogs, and more. Let's get started! New Windows 365 features announced at Microsoft Ignite Here's a quick summary of all the new Windows 365 features available today or coming soon. Windows 365 web client improvements Faster load times Higher performance and reliability Local resource settings Alternative keyboards Edit settings in‑session Accessibility improvements Bookmark Cloud PCs Native Azure AD Join support No domain controller required No Azure subscription or virtual network required S…
-
Protect your business with Microsoft Security’s comprehensive protection
by Guest Emma Jones- 0 replies
- 0 views
Securing an organization has never been simple. But over the past year, we’ve seen significant changes in the threat landscape that are having a major impact on organizations of every size in every sector. The frequency and sophistication of cyber events have increased significantly. We see headlines every day now of phishing schemes and ransomware attacks. Organizations and agencies that were once considered “off-limits,” like critical infrastructure or healthcare organizations, are now being targeted by bad actors, adding risk to human life. And with hybrid work here to stay, the attack surface has expanded as personal devices become an essential part of the corporat…
-
How Microsoft Defender for IoT can secure your IoT devices
by Guest Emma Jones- 0 replies
- 0 views
Cybersecurity threats are always evolving, and today we’re seeing a new wave of advanced attacks specifically targeting IoT devices used in enterprise environments as well as operational technology (OT) devices used in industrial systems and critical infrastructure (like ICS/SCADA). It’s not surprising since 60 percent of security practitioners believe IoT and OT security is one of the least secured aspects of their organization and less than 50 percent of organizations have deployed solutions designed specifically to secure their IoT and OT devices. Customers recognize that these types of devices are often unpatched, misconfigured, and unmonitored, making them the ideal …
-
Microsoft finds new macOS vulnerability, Shrootless, that could bypass System Integrity Protection
by Guest Eric Avena- 0 replies
- 0 views
Microsoft has discovered a vulnerability that could allow an attacker to bypass System Integrity Protection (SIP) in macOS and perform arbitrary operations on a device. We also found a similar technique that could allow an attacker to elevate their privileges to root an affected device. We shared these findings with Apple through Coordinated Vulnerability Disclosure (CVD) via Microsoft Security Vulnerability Research (MSVR). A fix for this vulnerability, now identified as CVE-2021-30892, was included in the security updates released by Apple on October 26, 2021. SIP is a security technology in macOS that restricts a root user from performing operations that may comprom…
-
New insights on cybersecurity in the age of hybrid work
by Guest Emma Jones- 0 replies
- 0 views
As we approach the last week of Cybersecurity Awareness Month, I think about what is top of mind for myself and my peers in security. The past year has continued the 2020s major shift in the way organizations operate. Recent data shows that 81 percent of enterprise organizations have begun the move toward a hybrid workplace, with 31 percent of those surveyed already fully adopted. As the public and private sectors continue to enable hybrid work, the attack surface for cyber threats has expanded, and threat actors have been quick to exploit any vulnerabilities. In response, organizations have enforced various security controls to revamp their security postures. For example…
-
Supporting engineer-to-engineer engagement at Microsoft Ignite 2021
by Guest Thomas Trombley- 0 replies
- 0 views
Greetings everyone! In the spirit of the great barnstormers, we've dawned our leather helmets, goggles, scarves, and gloves as we seek to create the very best engineering-focused Windows content for Microsoft Ignite. (Royalty free image courtesy of Unsplash.com (link) Our teams are actively building their ideas and content for their sessions. We continue to focus on what we call the "E2E", or engineer-to-engineer, model, when it comes to content creation. Why? Quite simply, we want to support you—with prescriptive, actionable guidance that will help you and your organizations take the guesswork out of Windows client features, services, and processes. We are co…
-
Windows at Microsoft Ignite: November 2021
by Guest Heather Poulsen- 0 replies
- 0 views
Welcome to your guide to all things Windows at Microsoft Ignite, November 2-4, 2021! Short on time? Jump straight to: Core sessions | Interactive experiences | Foundational skills | Depth on demand | Related sessions | Windows Office Hours | Additional resources Windows 11 is designed to support hybrid work, to protect from the chip to the cloud, and to enable you—the IT pro—to provide productive, collaborative experiences for your end users. Whether you are preparing to roll out Windows 11 across your organization or looking for proven tips to help you more easily manage all your Windows devices, we have a lot in store for you at Microsoft Ignite next week! Cli…