DISA has released the following out-of-cycle Security Technical Implementation Guide (STIG) and benchmark updates:

Microsoft Windows 10 STIG – Ver 2, Rel 1
Microsoft Windows 2012 and 2012 R2 DC STIG- Ver 3, Rel 1
Microsoft Windows 2012 and 2012 R2 MS STIG – Ver 3, Rel 1
Microsoft Windows Defender Antivirus STIG – Ver 2, Rel 1
Microsoft Windows Server 2016 STIG – Ver 2, Rel 1
Microsoft Windows Server 2019 STIG – Ver 2, Rel 1
Microsoft OneDrive STIG – Ver 2, Rel 1

Microsoft Windows 10 STIG Benchmark – Ver 2, Rel 1
Microsoft Windows Defender Antivirus STIG Benchmark – Ver 2, Rel 1
Microsoft Windows Server 2012 and 2012 R2 DC STIG Benchmark – Ver 3, Rel 1
Microsoft Windows Server 2012 and 2012 R2 MS STIG Benchmark – Ver 3, Rel 1
Microsoft Windows Server 2016 STIG Benchmark – Ver 2, Rel 1
Microsoft Windows Server 2019 STIG Benchmark – Ver 2, Rel 1

The requirements of the STIGs become effective immediately.

Revised Group Policy Objects have also been posted.

Customers who have a CAC that has DoD Certificates can obtain the files at https://cyber.mil/stigs/downloads/.

For those who do not have a CAC that has DoD Certificates, the files are also available from https://public.cyber.mil/stigs/downloads/.

If you are not able to find and download the content, please report broken link issues to the DoD Cyber Exchange Web team at dod.cyberexchange@mail.mil. For all questions related to the STIG content, please contact the DISA STIG Customer Support Desk at disa.stig_spt@mail.mil.