ASP.NET MVC5, Azure Security Center, and More on This Week’s Friday Five!

Optimize Security and Compliancy with #Azure Security Center  James van den Berg has been working in ICT with Microsoft Technology since 1987. He works for the largest educational institution in Netherlands as an ICT Specialist, managing datacenters for students. He’s proud to have been a Cloud and Datacenter Management since 2011, and a Microsoft Azure…


Five tips for securing your IaaS workloads

This is the second blog in a three-part series on security in Azure Government co-authored by Robert Jaffee, Sr. Program Manager, and Diego Lapiduz, Chief Information Security Architect, with Microsoft Azure Global Government. (In case you missed it, check out the first blog: Six tips for securing identity in the cloud.) In this blog, we’ll…


Six tips for securing identity in the cloud

This 3-part blog series on security in Azure Government was co-authored by Robert Jaffe, Sr. Program Manager, and Diego Lapiduz, Chief Information Security Architect, with Microsoft Azure Global Government. Over the last year, as modernization has accelerated, we’ve started to see many customers turning to cloud services as an asset in fighting evolving cybersecurity threats….


Exchange Server Quarterly Servicing updates, changes, zero day vulnerability fixes released

Yesterday we released Exchange Server quarterly servicing Cumulative Updates (for Exchange 2013/2016/2019) and Rollup Update (for Exchange 2010) for all supported versions of Exchange Server. Few highlights were, These updates have the fixes to mitigate the zero day and related vulnerabilities. An architectural change to EWS Push notification authentication – this change addresses the EWS…

3

.NET Core February 2019 Updates – 1.0.14, 1.1.11, 2.1.8 and 2.2.2

Today, we are releasing the .NET Core February 2019 Update. These updates contain security and reliability fixes. See the individual release notes for details on included reliability fixes. .NET Core 2.2.2 and .NET Core SDK 2.2.104 ( Download | Release Notes ) .NET Core 2.1.8 and .NET Core SDK 2.1.504 ( Download | Release Notes…

9

“AaronLocker” moved to GitHub

“AaronLocker” is a robust, practical, and free PowerShell-based application whitelisting solution for Windows, built on Windows AppLocker. Earlier posts with description here and here. Rather than continuing to attach zip files to blog posts, I have moved the “AaronLocker” materials, including scripts and documentation, to GitHub: https://github.com/Microsoft/AaronLocker. Among other things, this will make it easier to…


.NET Core January 2019 Updates – 2.1.7 and 2.2.1

Today, we are releasing the .NET Core January 2019 Update. These updates contain security and reliability fixes. .NET Core 2.1.7 and .NET Core SDK 2.1.503 ( Download | Release Notes ) .NET Core 2.2.1 and .NET Core SDK 2.2.102 ( Download | Release Notes ) Security CVE-2019-0545: .NET Core Information Disclosure Vulnerability The security update…

5

Enforcing security controls right from CI/CD pipeline with AzSK – Deep Dive

Azure Security Kit  aka AzSK is a framework that is used internally by Microsoft to control & govern their Azure Subscriptions. While some features are overlapping with Azure Security Center, I find a lot of value in the Kit, mostly in the following areas: The attestation module allowing for a full traceability of security controls…

2

US Army Corps of Engineers get real-time dredging insights from moving to Azure

With a mission to strengthen our nation’s security by building and maintaining infrastructure, the United States Army Corps of Engineers (USACE) is a federal agency under the Department of Defense with approximately 38,000 civilians and soldiers delivering engineering services in more than 130 countries worldwide. One of the key responsibilities of USACE is to dredge…


Azure Management Certificates (German Cloud, Azure Deutschland)

This article has been moved to its new home here: https://benperk.github.io/msdn/2017/2017-02-azure-management-certificates-german-cloud-azure-deutschland.html This article has to do mostly with the German Cloud, #GermanCloud #AzureGermany because it is most probable that there will not be anything similar to manage.windowsazure.com deployed to this solution.  Why is that important?  It is important because this is historically how many people configured…