Month: March 2021

Introducing Bounty Awards for Teams Desktop Client Security Research

MSRC / By / March 24, 2021

Partnering with the security research community is an important part of Microsoft’s holistic approach to defending against security threats. As much of the world has shifted to working from home in the last year, Microsoft Teams has enabled people to stay connected, organized, and collaborate remotely. Microsoft and security researchers across the planet continue to …

Introducing Bounty Awards for Teams Desktop Client Security Research Read More »

サイバーセキュリティ月間期間の取り組みのおさらい

Japan Security Team / By / March 21, 2021

3 月 18 日に今年のサイバーセキュリティ月間が終わりました。この期間中、日本セキュリティチームは、Microsoft コミュニティ上のフォーラムを活用した「Microsoft コミュニティでの情報交換」と、日本セキュリティ チームの Twitter アカウント (@JSECTEAM) を通じて情報発信した「セキュリティ ワンポイント アドバイスの紹介」に取り組んできました。

オンプレミス Exchange Server の脆弱性の調査や修復に対応する方向けのガイダンス

Japan Security Team / By / March 18, 2021

最近一般に公開され、既に攻撃が確認されているオンプレミスの Exchange Server の脆弱性、CVE-2021-26855/CVE-2021-26858/CVE-2021-26857/CVE-2021-27065 を利用した脅威に対応するお客様のために、このガイダンスを公開します。これらの脆弱性への対応が正しく実施されない場合、お客様の Exchange 環境や、社内ネットワークの他の箇所へ侵害される可能性があります。

Guidance for responders: Investigating and remediating on-premises Exchange Server vulnerabilities

MSRC / By / June 25, 2021

This guidance will help customers address threats taking advantage of the recently disclosed Microsoft Exchange Server on-premises vulnerabilities CVE-2021-26855, CVE-2021-26858, CVE-2021-26857, and CVE-2021-27065. Microsoft will continue to monitor these threats and provide updated tools and investigation guidance to help organizations defend against, identify, and remediate associated attacks.  

One-Click Microsoft Exchange On-Premises Mitigation Tool – March 2021

MSRC / By / June 25, 2021

We have been actively working with customers through our customer support teams, third-party hosters, and partner network to help them secure their environments and respond to associated threats from the recent Exchange Server on-premises attacks. Based on these engagements we realized that there was a need for a simple, easy to use, automated solution that …

One-Click Microsoft Exchange On-Premises Mitigation Tool – March 2021 Read More »

Exchange Server の脆弱性の緩和策

Japan Security Team / By / March 11, 2021

マイクロソフトは先週公開したブログにて、お客様がオンプレミス Exchange 環境を最新のサポート提供内のバージョンにアップグレードすることを強く推奨しています。すぐにセキュリティ更新プログラムを適用できないお客様向けに、別の緩和策を本ブログ記事にて提供することで、セキュリティ更新プログラムの展開までに時間が必要なお客様や、サービス機能継続のために一定期間リスクを受容する必要のあるお客様を支援します。

Microsoft Exchange Server Vulnerabilities Mitigations – updated March 15, 2021

MSRC / By / March 15, 2021

Update March 15, 2021: If you have not yet patched, and have not applied the mitigations referenced below, a one-click tool, the Exchange On-premises Mitigation Tool is now our recommended path to mitigate until you can patch. Microsoft previously blogged our strong recommendation that customers upgrade their on-premises Exchange environments to the latest supported version. …

Microsoft Exchange Server Vulnerabilities Mitigations – updated March 15, 2021 Read More »

A new experience for reporting copyright or trademark infringement on Microsoft Services

MSRC / By / March 3, 2021

The Notice of Copyright or Trademark Infringement Portal has helped protect Microsoft’s users and customers from intellectual property infringement across online services like Microsoft Azure, Office, Outlook, Skype, Stream, Microsoft News, Sway, Hotmail, NuGet, and Yammer. Microsoft’s response to claims of intellectual property infringement is driven by the reports you send us. To further enhance your …

A new experience for reporting copyright or trademark infringement on Microsoft Services Read More »