Tag: Microsoft Security Blog

This article has been indexed from Microsoft Security Blog Head of Mandiant Intelligence at FireEye Sandra Joyce talks with Microsoft’s Ann Johnson about the cybersecurity threats to US elections and how to fight them. The post Afternoon Cyber Tea: Learn…

Read more →

This article has been indexed from Microsoft Security Blog Cyberattacks and ransomware demands are on the rise. Microsoft security solutions and managed security service providers help organizations enable a proactive cybersecurity approach. The post Combat attacks with security solutions from…

Read more →

This article has been indexed from Microsoft Security Blog LinkedIn Chief Information Security Officer Geoff Belknap talks with Microsoft’s Bret Arsenault about recruiting cybersecurity talent and solving the skills gap. The post Why diversity is important for a strong cybersecurity…

Read more →

This article has been indexed from Microsoft Security Blog Learn real-world steps for protecting against the latest ransomware and other malicious cyberattacks. The post 3 steps to prevent and recover from ransomware appeared first on Microsoft Security Blog. Read the…

Read more →

This article has been indexed from Microsoft Security Blog We’re sharing technical information about the vulnerability tracked as CVE-2021-35211, which was used to attack the SolarWinds Serv-U FTP software in limited and targeted attacks. The post A deep-dive into the…

Read more →

This article has been indexed from Microsoft Security Blog Phishing and email spoofing not only erode brand trust, but they also leave recipients vulnerable to financial loss and serious invasions of privacy. The post Get free DMARC visibility with Valimail…

Read more →

This article has been indexed from Microsoft Security Blog Adapting to the evolving business landscape, organizations increasingly depend on Microsoft Endpoint Manager to enable hybrid work—where the endpoint is the new workplace. The post Microsoft a Leader in 2021 Gartner®…

Read more →

This article has been indexed from Microsoft Security Blog DoD and DIB suppliers—see how Microsoft can give your business a competitive edge toward CMMC compliance. The post How to prepare for CMMC compliance as a defense industrial base supplier using…

Read more →

This article has been indexed from Microsoft Security Blog Microsoft has been actively tracking a widespread credential phishing campaign using open redirector links, which allow attackers to use a URL in a trusted domain and embed the eventual final malicious…

Read more →

This article has been indexed from Microsoft Security Blog Tall Poppy CEO and Co-founder Leigh Honeywell talks with Microsoft about how companies can support employees who have been targeted for online harassment. The post Cybersecurity’s next fight: How to protect…

Read more →

This article has been indexed from Microsoft Security Blog Vodafone Global Cybersecurity Director Emma Smith talks about leading an inclusive workplace and shares security strategies—like how to get rid of passwords. The post How Vodafone Global Security Director creates an…

Read more →

This article has been indexed from Microsoft Security Blog Mozi is a peer-to-peer (P2P) botnet that uses a BitTorrent-like network to infect IoT devices such as network gateways and digital video records (DVRs). It works by exploiting weak telnet passwords1…

Read more →

This article has been indexed from Microsoft Security Blog Today, we are open-sourcing Cloud Katana, a cloud-native tool under development, to automate simulation steps on-demand in multi-cloud and hybrid cloud environments. This tool is an event-driven, serverless compute application built…

Read more →

This article has been indexed from Microsoft Security Blog Get tips on migrating data and detections from your on-premises SIEM to Azure Sentinel, including how to streamline tasks using automation. The post Migrating content from traditional SIEMs to Azure Sentinel…

Read more →

This article has been indexed from Microsoft Security Blog By spotting trends in the techniques used by attackers in phishing attacks, we can swiftly respond to attacks and use the knowledge to improve customer security and build comprehensive protections through…

Read more →

This article has been indexed from Microsoft Security Blog Learn how Microsoft is helping federal agencies to implement standards-based cybersecurity technologies such as NIST and Zero Trust in the real world. The post Microsoft and NIST collaborate on EO to…

Read more →

This article has been indexed from Microsoft Security Blog During our year-long investigation of a targeted, invoice-themed XLS.HTML phishing campaign, attackers changed obfuscation and encryption mechanisms every 37 days on average, demonstrating high motivation and skill to constantly evade detection…

Read more →

This article has been indexed from Microsoft Security Blog Here at the global Microsoft Compromise Recovery Security Practice (CRSP), we work with customers who have experienced disruptive security incidents to restore trust in identity systems and remove adversary control. During…

Read more →

This article has been indexed from Microsoft Security Blog In the latest Voice of the Community blog series post, Microsoft Product Marketing Manager Natalia Godyla talks with Runa Sandvik, an expert on journalistic security and the former Senior Director of Information…

Read more →

This article has been indexed from Microsoft Security Blog Last month, we introduced the SimuLand project to help security researchers around the world deploy lab environments to reproduce well-known attack scenarios, actively test detections, and learn more about the underlying…

Read more →

This article has been indexed from Microsoft Security Blog Our security solutions use multiple detection and prevention techniques to help users avoid divulging sensitive information to phishers as attackers continue refining their impersonation tricks. In this blog, we discuss our…

Read more →

This article has been indexed from Microsoft Security Blog Learn whether a transitional or long-term side-by-side deployment can best serve your migration to Microsoft’s cloud-native SIEM. The post How to manage a side-by-side transition from your traditional SIEM to Azure…

Read more →

This article has been indexed from Microsoft Security Blog LemonDuck is an actively updated and robust malware primarily known for its botnet and cryptocurrency mining objectives. Today, beyond using resources for its traditional bot and mining activities, LemonDuck steals credentials,…

Read more →

This article has been indexed from Microsoft Security Blog Get previews of Microsoft’s latest security solutions, information on virtual sessions, and more for Black Hat 2021. The post Microsoft at Black Hat 2021: Sessions, bug bounty updates, product news, and…

Read more →

This article has been indexed from Microsoft Security Blog Today, we are launching MLSEC.IO, a new machine learning security evasion competition as an educational effort for the AI and security communities to exercise their muscle to attack critical AI systems…

Read more →

This article has been indexed from Microsoft Security Blog Our continued investigation into BazaCall campaigns, those that use fraudulent call centers that trick unsuspecting users into downloading the BazaLoader malware, shows that this threat is more dangerous than what’s been…

Read more →

This article has been indexed from Microsoft Security Blog The last decade has been full of disruptions that have required organizations to adapt and accelerate their security transformation. As we look forward to the next major disruption—the move to hybrid…

Read more →

This article has been indexed from Microsoft Security Blog A new approach for malware classification combines deep learning with fuzzy hashing. Fuzzy hashes identify similarities among malicious files and a deep learning methodology inspired by natural language processing (NLP) better…

Read more →

This article has been indexed from Microsoft Security Blog SECUDE has integrated their HALOCAD solution with Microsoft Information Protection SDK which extends the data protection beyond the organization’s IT perimeter. The post How to protect your CAD data files with…

Read more →

This article has been indexed from Microsoft Security Blog Rockwell Automation Vice President and Chief Information Security Officer Dawn Cappelli talks about assessing, measuring, and protecting against insider risk. The post A guide to balancing external threats and insider risk…

Read more →

This article has been indexed from Microsoft Security Blog LemonDuck, an actively updated and robust malware that’s primarily known for its botnet and cryptocurrency mining objectives, adopted more sophisticated behavior and escalated its operations. Today, beyond using resources for its…

Read more →

This article has been indexed from Microsoft Security Blog As containers become a major part of many organizations’ IT workloads, it becomes crucial to consider the unique security threats that target such environments when building security solutions. The first step…

Read more →

This article has been indexed from Microsoft Security Blog Today on the Official Microsoft Blog, Microsoft announced the acquisition of CloudKnox Security, a leader in Cloud Infrastructure Entitlement Management (CIEM). CloudKnox offers complete visibility into privileged access. The post Microsoft…

Read more →

This article has been indexed from Microsoft Security Blog The Microsoft Threat Intelligence Center (MSTIC) alongside the Microsoft Security Response Center (MSRC) has uncovered a private-sector offensive actor, or PSOA, that we are calling SOURGUM in possession of now-patched, Windows…

Read more →

This article has been indexed from Microsoft Security Blog Microsoft threat analysts are tracking a continued increase in consent phishing emails, also called illicit consent grants, that abuse OAuth request links in an attempt to trick recipients into granting attacker-owned…

Read more →

This article has been indexed from Microsoft Security Blog Our world is changing, and Microsoft Security is rising to the challenges of a new normal. Today, I want to share more about how we are empowering our partners to be…

Read more →

This article has been indexed from Microsoft Security Blog MISA extends product portfolio, adds sessions for Microsoft Inspire, and more. The post MISA expands portfolio and looks ahead during Microsoft Inspire appeared first on Microsoft Security Blog. Read the original…

Read more →

This article has been indexed from Microsoft Security Blog Microsoft has detected a 0-day remote code execution exploit being used to attack SolarWinds Serv-U FTP software in limited and targeted attacks. The Microsoft Threat Intelligence Center (MSTIC) attributes this campaign…

Read more →

This article has been indexed from Microsoft Security Blog Microsoft is announcing that we have entered into a definitive agreement to acquire RiskIQ, a leader in global threat intelligence and attack surface management, to help our shared customers build a…

Read more →

This article has been indexed from Microsoft Security Blog We’re excited to announce that in its first year of inclusion in the Magic Quadrant report, Microsoft Azure Sentinel has been named a Visionary, where we were recognized for our completeness…

Read more →

This article has been indexed from Microsoft Security Blog Asana Privacy Counsel Whitney Merrill, an expert on privacy legal issues, talks with Microsoft about best practices for building a privacy program. The post How to build a privacy program the…

Read more →

This article has been indexed from Microsoft Security Blog Designing with accessibility in mind greatly expands the impact of Microsoft solutions. However, the impact of accessible design is even bigger than that. When we design for accessibility, everyone benefits. The…

Read more →

This article has been indexed from Microsoft Security Blog Learn how to plan and prepare for migration from a traditional on-premises SIEM to Microsoft’s cloud-native SIEM for intelligent security analytics at cloud scale. The post Preparing for your migration from…

Read more →

This article has been indexed from Microsoft Security Blog We discovered vulnerabilities in NETGEAR DGN-2200v1 series routers that can compromise a network’s security—opening the gates for attackers to roam untethered through an entire organization. We shared our findings with NETGEAR…

Read more →

This article has been indexed from Microsoft Security Blog US Executive Order on Cybersecurity delivers valuable guidance for both public and private organizations to make the world safer for all. The post The critical role of Zero Trust in securing…

Read more →

This article has been indexed from Microsoft Security Blog Microsoft is pleased to announce the publication of the Security Stack Mappings for Azure project in partnership with the Center for Threat-Informed Defense. The post MITRE ATT&CK® mappings released for built-in…

Read more →

This article has been indexed from Microsoft Security Blog The cybersecurity challenges of today require a diversity of skills, perspectives, and experiences, yet women remain underrepresented in this field. Girl Security and Microsoft Security are forging a new fellowship around…

Read more →

This article has been indexed from Microsoft Security Blog Over the last year, PCs have kept us connected to family, friends, and enabled businesses to continue to run. This new hybrid work paradigm has got us thinking about how we…

Read more →

This article has been indexed from Microsoft Security Blog Red Canary Director of Intelligence Katie Nickels shares her thoughts on strategies, tools, and frameworks to build an effective threat intelligence team. The post Strategies, tools, and frameworks for building an…

Read more →

This article has been indexed from Microsoft Security Blog Red Canary Director of Intelligence Katie Nickels shares her thoughts on strategies, tools, and frameworks to build an effective threat intelligence team. The post Strategies, tools, and frameworks for building an…

Read more →

This article has been indexed from Microsoft Security Blog Microsoft Chief Information Security Officer Bret Arsenault discusses Microsoft’s response to COVID-19 and the new cybersecurity threats that have emerged. The post Afternoon Cyber Tea: Microsoft’s cybersecurity response to COVID-19 appeared…

Read more →