ASP.NET MVC5, Azure Security Center, and More on This Week’s Friday Five!

Optimize Security and Compliancy with #Azure Security Center  James van den Berg has been working in ICT with Microsoft Technology since 1987. He works for the largest educational institution in Netherlands as an ICT Specialist, managing datacenters for students. He’s proud to have been a Cloud and Datacenter Management since 2011, and a Microsoft Azure…


Five tips for securing your IaaS workloads

This is the second blog in a three-part series on security in Azure Government co-authored by Robert Jaffee, Sr. Program Manager, and Diego Lapiduz, Chief Information Security Architect, with Microsoft Azure Global Government. (In case you missed it, check out the first blog: Six tips for securing identity in the cloud.) In this blog, we’ll…


Six tips for securing identity in the cloud

This 3-part blog series on security in Azure Government was co-authored by Robert Jaffe, Sr. Program Manager, and Diego Lapiduz, Chief Information Security Architect, with Microsoft Azure Global Government. Over the last year, as modernization has accelerated, we’ve started to see many customers turning to cloud services as an asset in fighting evolving cybersecurity threats….


Exchange Server Quarterly Servicing updates, changes, zero day vulnerability fixes released

Yesterday we released Exchange Server quarterly servicing Cumulative Updates (for Exchange 2013/2016/2019) and Rollup Update (for Exchange 2010) for all supported versions of Exchange Server. Few highlights were, These updates have the fixes to mitigate the zero day and related vulnerabilities. An architectural change to EWS Push notification authentication – this change addresses the EWS…

3

.NET Core February 2019 Updates – 1.0.14, 1.1.11, 2.1.8 and 2.2.2

Today, we are releasing the .NET Core February 2019 Update. These updates contain security and reliability fixes. See the individual release notes for details on included reliability fixes. .NET Core 2.2.2 and .NET Core SDK 2.2.104 ( Download | Release Notes ) .NET Core 2.1.8 and .NET Core SDK 2.1.504 ( Download | Release Notes…

9

“AaronLocker” moved to GitHub

“AaronLocker” is a robust, practical, and free PowerShell-based application whitelisting solution for Windows, built on Windows AppLocker. Earlier posts with description here and here. Rather than continuing to attach zip files to blog posts, I have moved the “AaronLocker” materials, including scripts and documentation, to GitHub: https://github.com/Microsoft/AaronLocker. Among other things, this will make it easier to…


.NET Core January 2019 Updates – 2.1.7 and 2.2.1

Today, we are releasing the .NET Core January 2019 Update. These updates contain security and reliability fixes. .NET Core 2.1.7 and .NET Core SDK 2.1.503 ( Download | Release Notes ) .NET Core 2.2.1 and .NET Core SDK 2.2.102 ( Download | Release Notes ) Security CVE-2019-0545: .NET Core Information Disclosure Vulnerability The security update…

5

Enforcing security controls right from CI/CD pipeline with AzSK – Deep Dive

Azure Security Kit  aka AzSK is a framework that is used internally by Microsoft to control & govern their Azure Subscriptions. While some features are overlapping with Azure Security Center, I find a lot of value in the Kit, mostly in the following areas: The attestation module allowing for a full traceability of security controls…

2

US Army Corps of Engineers get real-time dredging insights from moving to Azure

With a mission to strengthen our nation’s security by building and maintaining infrastructure, the United States Army Corps of Engineers (USACE) is a federal agency under the Department of Defense with approximately 38,000 civilians and soldiers delivering engineering services in more than 130 countries worldwide. One of the key responsibilities of USACE is to dredge…


How to Encrypt SQL communication on the wire

While on-premises, most applications did not take advantage of securing communications to the database on the wire just because of the inherent isolation advantages of having the application ONLY on the internal LAN. However, as more and more of these applications start moving to the cloud, the security of data over the wire is rightfully starting to gain increased importance.