-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ******************************************************************** Title: Microsoft Security Advisory Notification Issued: December 12, 2017 ******************************************************************** Security Advisories Released or Updated Today ============================================== Please note that the URL for Microsoft security documents has changed. * Microsoft Security Advisory 4056318 - Title: Guidance for securing AD DS account used by Azure AD Connect for directory synchronization - https://docs.microsoft.com/en-us/security-updates/ securityadvisories/2017/4056318 - Executive Summary: Microsoft is releasing this security advisory to provide information regarding security settings for the AD DS (Active Directory Domain Services) account used by Azure AD Connect for directory synchronization. This advisory also provides guidance on what on-premises AD administrators can do to ensure that the account is properly secured. - Originally posted: December 12, 2017 - Updated: N/A - Version: 1.0 * Microsoft Security Advisory 4053440 - Title: Securely opening Microsoft Office documents that contain Dynamic Data Exchange (DDE) fields - https://docs.microsoft.com/en-us/security-updates/ securityadvisories/2017/4053440 - Reason for Revision: Microsoft has released an update for all supported editions of Microsoft Word that allows users to set the functionality of the DDE protocol based on their environment. For more information and to download the update, see ADV170021. - Originally posted: November 8, 2017 - Updated: December 12, 2017 - Version: 2.0 Other Information ================= Recognize and avoid fraudulent email to Microsoft customers: ============================================================= If you receive an email message that claims to be distributing a Microsoft security update, it is a hoax that may contain malware or pointers to malicious websites. Microsoft does not distribute security updates via email. The Microsoft Security Response Center (MSRC) uses PGP to digitally sign all security notifications. However, PGP is not required for reading security notifications, reading security bulletins, or installing security updates. You can obtain the MSRC public PGP key at . ******************************************************************** THE INFORMATION PROVIDED IN THIS MICROSOFT COMMUNICATION IS PROVIDED "AS IS" WITHOUT WARRANTY OF ANY KIND. MICROSOFT DISCLAIMS ALL WARRANTIES, EITHER EXPRESS OR IMPLIED, INCLUDING THE WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE. IN NO EVENT SHALL MICROSOFT CORPORATION OR ITS SUPPLIERS BE LIABLE FOR ANY DAMAGES WHATSOEVER INCLUDING DIRECT, INDIRECT, INCIDENTAL, CONSEQUENTIAL, LOSS OF BUSINESS PROFITS OR SPECIAL DAMAGES, EVEN IF MICROSOFT CORPORATION OR ITS SUPPLIERS HAVE BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES. SOME STATES DO NOT ALLOW THE EXCLUSION OR LIMITATION OF LIABILITY FOR CONSEQUENTIAL OR INCIDENTAL DAMAGES SO THE FOREGOING LIMITATION MAY NOT APPLY. ******************************************************************** Microsoft respects your privacy. Please read our online Privacy Statement at . If you would prefer not to receive future technical security notification alerts by email from Microsoft and its family of companies please visit the following website to unsubscribe: . These settings will not affect any newsletters you've requested or any mandatory service communications that are considered part of certain Microsoft services. For legal Information, see: . This newsletter was sent by: Microsoft Corporation 1 Microsoft Way Redmond, Washington, USA 98052 -----BEGIN PGP SIGNATURE----- iQIzBAEBCAAdFiEELe29pj1Ogz+2MnKbEEiO2re18ugFAlovF7AACgkQEEiO2re1 8ugaTg//anR0y+cWZglRCmF6Ux9PNprsAun9ptQK4ueg+hQG4z96tO43il2X/eJ8 yO5mIbW+vPauv0NhG78kA4muROqokC2SJ2bq1y9XbXsqyWqALg3afqJGBRDyfqvP hQX0wDJqCwUKEHqVCqBBGt40++f0KtrsMmIwStI1lFewnmMJyY2PJWzUUxCZsLR7 ogiuf8cLMD09ll3upwB+3GUl3SJRzZGad8ndUcDstVL7zh2lToRoawUbCcMcLiG5 tfhK5obhdDgK0kA/8h++HsMYAhVDt+NIDjDZQ74e7ciCgSclYYHdDGj2h7RRbCm2 osAPTYUudNvryHOuHt9Ju+0jHUJduJUuCXdcvb7Lc4Y8SG42pfYIgSr1OVWTOft1 MI8MSR6rqVvm7e1KRW6AEUFKT67I/bvt36pWZYSBh63JQFh68+3PDuiJq98QmTxG MaSxW2sheYxMop5dF3y3gBCXNks7VyBxY49gRYCmxFALc/IjNqeW7xYtLYlSukzU CtFFhNee8/b/Aj0rFAAcVTeQ6U+ZxKPwcZpWUAxbvlCwqgYwG8cmVEQ/66fUrlS+ S/tvfEaALpTwItcBXXp5gr6c8NTnRAw3thG8A45hIDQFL9FAa7LvPDN5NX5TBNrr fewpl5k6CZg6A4oVaWGJsF42+95tvMwxD6JSozlOUKEsaTCpal0= =Bl0R -----END PGP SIGNATURE-----