Recently the disclosure of a vulnerability (CVE-2019-5736) was announced in the open-source software (OSS) container runtime, runc. This vulnerability can allow an attacker to gain root-level code execution on a “host. runc” which is the underlying container runtime underneath many popular containers.
Today Gavriella Schuster, CVP of Microsoft’s Partner organization, spoke about our longstanding commitment to partners, and new investments to enable partners to accelerate customer success.
Recently a new flaw was discovered in PolKit, a component which controls system-wide privileges in Unix-like OS. This vulnerability potentially allows unprivileged accounts to have root permission.
Azure Security Center now helps streamline this process of meeting compliance standards with the new regulatory compliance dashboard, recently released to public preview.
Microsoft helps organizations all over the world comply with national, regional, and industry-specific regulatory requirements aimed at securing and protecting the data of individuals, establishments, and critical technology infrastructures.
Microsoft data centers and operations centers handling Microsoft Azure, Office 365, and Dynamics 365 have been evaluated by independent auditors as meeting the strong security requirements of the Trusted Information Security Assessment Exchange (TISAX).
The Microsoft Azure Dedicated Hardware Security Module (HSM) service provides cryptographic key storage in Azure and meets the most stringent customer security and compliance requirements.
Customers tell me that one of their on-premises security challenges is recruiting and maintaining security experts. At Microsoft, we employ more than 3,500 cybersecurity experts to identify and respond to threats and help your organization to rapidly improve your overall security posture.
Today at the Microsoft Experiences18 conference in Paris, we shared that Microsoft Azure, Microsoft Office 365, and Microsoft Dynamics have been granted a Health Data Hosting (HDS) certification.
When an attacker compromises a machine, they typically have a goal in mind. Some attackers are looking for information residing on the victim’s machine or are looking for access to other machines on the victim’s network.
With an increasing number of recommendations and many security vulnerabilities surfaced, it is harder to triage and prioritize your response.
As the security solutions get better at detecting attacks, attackers are increasingly employing stealthier methods to avoid detection.
