Even with a regular software update cadence, some vulnerabilities are serious enough to warrant an emergency fix. Microsoft has released an out-of-band update addressing a remote code execution flaw in Internet Explorer.
A trio of problems caused by a software update in some of Microsoft's data centers led to a service outage for customers of the Azure Active Directory MFA service last week.
Microsoft customers now have the option of logging in to Windows, on desktop or mobile devices, with a FIDO2-compliant security key--and no password.
Adoption and support for two-factor authentication continues to expand, as Yubico and Microsoft introduce new products designed to make passwords a thing of the past.
Windows administrators don't like zero day vulnerabilities. The good news about the new flaw in the TaskScheduler service is that a hotfix, or a micropatch, is available.