Microsoft

Microsoft Updates Mitigation for Exchange Server Zero-Days

Microsoft Updates Mitigation for Exchange Server Zero-Days

Microsoft today updated its mitigations for two recently disclosed and actively exploited zero-day vulnerabilities in its Exchange Server technology after researchers found that its initial advice could be easily circumvented. Microsoft’s initial mitigation for the two vulnerabilities – CVE-2022-41040 and CVE-2022-41082 – was to apply a block rule to a specific URL path using the …

Microsoft Updates Mitigation for Exchange Server Zero-Days Read More »

Microsoft Industrial Clouds: More Than a Bundle of Services

Microsoft Industrial Clouds: More Than a Bundle of Services

Credit: Microsoft When Microsoft executives talk about “Microsoft Cloud,” they’re referring to a growing number of enterprise cloud services, including Azure, Office 365/Microsoft 365, Dynamics 365, and many more. (Just last month, Microsoft added “additional GitHub cloud revenue” and Windows 365 revenue to the Microsoft Cloud bucket.) customers not just on any of its cloud …

Microsoft Industrial Clouds: More Than a Bundle of Services Read More »

Microsoft's latest AI tool can predict missed doctor's appointments

Microsoft’s latest AI tool can predict missed doctor’s appointments

Between the scarcity of trained doctors, the shortage of nursing staff, and the general attrition among healthcare workers, getting a doctor’s appointment is no easy task in the modern clinical landscape. Indeed, the time value of appointments has never been so high. This piece is exactly what Microsoft’s latest artificial intelligence (AI) tool is trying …

Microsoft’s latest AI tool can predict missed doctor’s appointments Read More »

Microsoft Exchange 0-day under attack threatens 220,000 servers

Microsoft Exchange 0-day under attack threatens 220,000 servers

Microsoft confirmed on Thursday evening the existence of two critical vulnerabilities in its Exchange application which have already compromised several servers and pose a serious risk to approximately 220,000 other people worldwide. The currently unpatched security flaws have been actively exploited since early August, when Vietnamese security firm GTSC discovered that customer networks had been …

Microsoft Exchange 0-day under attack threatens 220,000 servers Read More »

Microsoft Exchange

Microsoft confirms that new Exchange zero-days are used in attacks

Microsoft has confirmed that two recently reported zero-day vulnerabilities in Microsoft Exchange Server 2013, 2016, and 2019 are being exploited in the wild. “The first vulnerability, identified as CVE-2022-41040, is a Server-Side Request Forgery (SSRF) vulnerability, while the second, identified as CVE-2022-41082, allows remote code execution (RCE) when PowerShell is accessible to the attacker,” Microsoft …

Microsoft confirms that new Exchange zero-days are used in attacks Read More »

Microsoft Exchange

New Microsoft Exchange zero-day actively exploited in attacks

Threat actors are exploiting previously undisclosed Microsoft Exchange zero-day bugs allowing remote code execution, according to claims by security researchers from Vietnamese cybersecurity firm GTSC, who have been the first to spot and report attacks. Attackers chain the pair of zero-days to deploy Chinese Chopper web shells on compromised servers for persistence and data theft, …

New Microsoft Exchange zero-day actively exploited in attacks Read More »

Microsoft Exchange

Microsoft Exchange’s new zero-days are being actively exploited in attacks

Threat actors are exploiting previously undisclosed Microsoft Exchange zero-day bugs allowing remote code execution, according to claims by security researchers from Vietnamese cybersecurity firm GTSC, who have been the first to spot and report attacks. Attackers chain the pair of zero-days to deploy Chinese Chopper web shells on compromised servers for persistence and data theft, …

Microsoft Exchange’s new zero-days are being actively exploited in attacks Read More »

Microsoft trains BEiT-3 model of AI in two billion parameter vision language

Microsoft trains BEiT-3 model of AI in two billion parameter vision language

Researchers from Microsoft’s Natural Language Computing (NLC) group have announced the latest version of Image Transformers bi-directional encoder representation: BEiT-3, a 1.9 billion parameter vision language AI model . BEiT-3 models images in another language and achieves peak performance on a wide range of downstream tasks. The model and experiments were described in an article …

Microsoft trains BEiT-3 model of AI in two billion parameter vision language Read More »