Microsoft Support & Discussions

Severity Rating: Important Revision Note: V1.0 (June 14, 2016): Bulletin published. Summary: This security update resolves a vulnerability in Microsoft Windows. The vulnerability could allow elevation of privilege if an attacker launches a man-in-the-middle (MiTM) attack against the traffic passing between a domain controller and the target machine . Continue reading...

Severity Rating: Important Revision Note: V1.0 (June 14, 2016): Bulletin published. Summary: This security update resolves a vulnerability in Microsoft Windows. The vulnerability could allow elevation of privilege if an attacker logs on to an affected system and runs a specially crafted application. Continue reading...

Severity Rating: Critical Revision Note: V1.0 (June 14, 2016): Bulletin published. Summary: This security update resolves vulnerabilities in Microsoft Office. The vulnerabilities could allow remote code execution if a user opens a specially crafted Microsoft Office file. An attacker who successfully exploited the vulnerabilities could run arbitrary code in the context of the current user. Customers whose accounts are configured to have fewer user rights on the system could be less impacted than those who operate with administrative user rights. Continue reading...

Today we released security updates to provide additional protections against malicious attackers. As a best practice, we encourage customers to apply security updates as soon as they are released. More information about this month’s security updates and advisories can be found in the Security TechNet Library. MSRC team Continue reading...

Severity Rating: Important Revision Note: V1.0 (June 14, 2016): Bulletin published. Summary: This security update resolves vulnerabilites in Microsoft Exchange Server. The most severe of the vulnerabilities could allow information disclosure if an attacker sends a specially crafted image URL in an Outlook Web Access (OWA) message that is loaded, without warning or filtering, from the attacker-controlled URL. Continue reading...

Severity Rating: Critical Revision Note: V1.0 (June 14, 2016): Bulletin published. Summary: This security update resolves a vulnerability in Microsoft Windows. The vulnerability could allow remote code execution if an attacker sends specially crafted requests to a DNS server. Continue reading...

Severity Rating: Important Revision Note: V1.0 (June 14, 2016): Summary: This security update resolves a vulnerability in Microsoft Windows. The vulnerability could allow denial of service if an attacker logs on to a target system and runs a specially crafted application. Continue reading...

Severity Rating: Important Revision Note: V1.0 (June 14, 2016): Bulletin published. Summary: This security update resolves vulnerabilities in Microsoft Windows. The most severe of the vulnerabilities could allow elevation of privilege if an attacker logs on to an affected system and runs a specially crafted application. Continue reading...

Severity Rating: Important Revision Note: V1.0 (June 14, 2016): Bulletin published. Summary: This security update resolves a vulnerability in Microsoft Windows. The vulnerability could allow elevation of privilege if an attacker logs on to the system and runs a specially crafted application. Continue reading...

Today we released security updates to provide additional protections against malicious attackers. As a best practice, we encourage customers to apply security updates as soon as they are released. More information about this month’s security updates and advisories can be found in the Security TechNet Library. MSRC team

Earlier today, at the Xbox E3 2016 Briefing, Head of Xbox Phil Spencer took the stage to share the vision for the future of Xbox. Spencer shared that the team sees a future full of choice, without being constrained by technical boundaries, devices people play on, or console generations. With so many people playing games on more than one device, there’s a fundamental shift in the way the world thinks about gaming. In a post penned by Spencer over at Xbox Wire, he shares some of Team Xbox’s core beliefs. From the post: At Xbox, we believe you should have a diverse and expansive library of games. That’s why, in addition to the many exciting games we announced…

This morning, at the Xbox E3 2016 Briefing, Team Xbox unveiled a new family of Xbox One devices, a host of new Xbox Live Features and the biggest lineup of games in Xbox history. Head of Xbox Phil Spencer underscored the Xbox team’s commitment to building a future of gaming beyond console generations and inviting gamers to play without boundaries. Xbox is working to unite gaming communities by bringing Xbox Live to all devices and all networks — Windows 10 PC, console, virtual reality and mobile — to create a unified experience where all gamers are welcome, respected and supported. The new Xbox Play Anywhere program lets gamers buy a game once and play it on both t…

Today’s roundup of what’s new in the Windows Store includes a new album, movie and games, plus a chance to win tickets to LA and meet Nick Jonas! Apps Bank of America – Free Bank of America is all new for Windows 10, giving Bank of America customers the ability to manage their finances, complete mobile check deposits, pay bills, send money to contacts, stay connected with their Bank of America accounts and more. Get it from the Windows Store today. Music Nick Jonas, Last Year Was Complicated – Buy for $11.99 Win a trip for two to Los Angeles, where you’ll meet Nick Jonas and see him live at the Forum! Enter the contest here before July 11 and…

Roberto Bojorquez and Peter Skillman are on the Windows CoreUX team We in the Windows team believe Action Center is more than simply a place to see all the notifications you’ve missed. We believe it is the place where the most relevant and timely content should show up, making it easy for you to take action on it. It should become your center of action. As part of the Windows 10 Anniversary Update we undertook the challenge to make Action Center more relevant, beautiful, and personal than ever. This resulted in the introduction of several exciting new features – presented at //build – coupled with a visual update that focuses on highlighting more of the content that…

While everybody was expecting Locky, CryptXXX, or Cerber, Crysis swoops in to steal the show from the headliners Three weeks after ESET was announcing that the infamous TeslaCrypt ransomware was shutting down operations, the Slovakian security firm is now reporting on the ransomware that's taken TeslaCrypt's place. Named Crysis, first versions of this ransomware were spotted online in mid-February. ESET claims that these first versions were not some of the best they've seen, and the company's experts believe they might be able to crack their encryption system. Unfortunately, they're not so confident when it comes to its latest versions, though, revealing th…

This post was authored by Subhasish Bhattacharya, Program Manager, Windows Server. Introduction: Optimizing your private cloud In our discussions with customers, we learned that a key consideration for private cloud deployments is the capital expenditure (CapEx) required to go into production. We also learned that customers added redundancy to their private clouds, thereby increasing CapEx, to avoid under-capacity during peak traffic in production. The need for redundancy is driven by unbalanced private clouds where some nodes are hosting more Virtual Machines (VMs) and others are underutilized (such as a freshly rebooted server). During the lifecycle of your p…

Hello Windows Insiders! Today, we are releasing Windows 10 Insider Preview Build 14361 for both PC and Mobile to Windows Insiders in the Fast ring! It’s been a week since the hand-off of the big red button and I can’t tell you how much I have appreciated the enthusiasm I have seen from all of you. You have kept me on my toes 24 hours a day with your questions, comments and humor, and I have so enjoyed getting to know so many of you. Thank you for all of the bug reports and Feedback Hub posts. We look at each and every one of them and have tried to create a build that will help you go about your business. Keep it coming! Here’s what’s new in Build 14361 LastPass…

Happy World Oceans Day! For our final nonprofit spotlight of the Upgrade Your World campaign, Windows is partnering with The Nature Conservancy to preserve our planet’s vital natural resource: our oceans. We teamed up on the Mapping Ocean Wealth initiative which, in the words of The Nature Conservancy’s Jennifer Greene, Strategy Lead for Integrated Ocean and Coastal Management for North America Ocean and Coasts, “Helps make the invisible, visible.” The project creates underwater habitat maps to increase our understanding of how healthy marine ecosystems benefit people by producing food, removing pollution, protecting our shorelines and more. Leveraging this science and te…

Rogue Windows Background Intelligent Transfer Service jobs can linger after malware clean-up and re-infect systems Attackers are abusing the Windows Background Intelligent Transfer Service (BITS) to re-infect computers with malware after they've been already cleaned by antivirus products. The technique was observed in the wild last month by researchers from SecureWorks while responding to a malware incident for a customer. The antivirus software installed on a compromised computer detected and removed a malware program, but the computer was still showing signs of malicious activity at the network level. Upon further investigation, the researchers found two r…