Monday, November 18, 2024
Latest:

Microsoft security intelligence

Microsoft Secure 

Best practices for defending Azure Virtual Machines

TH Author , , , , , , ,

One of the things that our Detection and Response Team (DART) and Customer Service and Support (CSS) security teams see frequently during investigation of customer incidents are attacks on virtual machines from the internet. This is one area in the cloud security shared responsibility model where customer tenants are responsible for security. Security is a…
The post Best practices for defending Azure Virtual Machines appeared first on Microsoft Security. READ MORE HERE…

Read more
Microsoft Secure 

Why we invite security researchers to hack Azure Sphere

TH Author , , , , , , ,

Fighting the security battle so our customers don’t have to IoT devices are becoming more prevalent in almost every aspect of our lives—we will rely on them in our homes, our businesses, as well as our infrastructure. In February, Microsoft announced the general availability of Azure Sphere, an integrated security solution for IoT devices and…
The post Why we invite security researchers to hack Azure Sphere appeared first on Microsoft Security. READ MORE HERE…

Read more
Microsoft Secure 

Industry-wide partnership on threat-informed defense improves security for all

TH Author , , , , , , , ,

MITRE Engenuity’s Center for Threat-Informed Defense has published a library of detailed plans for emulating the threat actor FIN6 (which Microsoft tracks as TAAL). Microsoft is proud to be part of this industry-wide collaborative project.
The post Industry-wide partnership on threat-informed defense improves security for all appeared first on Microsoft Security. READ MORE HERE…

Read more
Microsoft Secure 

Microsoft announces new Project OneFuzz framework, an open source developer tool to find and fix bugs at scale

TH Author , ,

We’re excited to release a new tool called OneFuzz, an extensible fuzz testing framework for Azure.
The post Microsoft announces new Project OneFuzz framework, an open source developer tool to find and fix bugs at scale appeared first on Microsoft Security. READ MORE HERE…

Read more
Microsoft Secure 

Force firmware code to be measured and attested by Secure Launch on Windows 10

TH Author , , , ,

For important security features on Windows to properly do their jobs, the platform’s firmware and hardware must be trustworthy and healthy. Learn about Secure Launch, which leverages the principle of Dynamic Root of Trust for Measurement (DRTM), and System Management Mode (SMM) protection.
The post Force firmware code to be measured and attested by Secure Launch on Windows 10 appeared first on Microsoft Security. READ MORE HERE…

Read more
Microsoft Secure 

Stopping Active Directory attacks and other post-exploitation behavior with AMSI and machine learning

TH Author , , , , , , , , , , , ,

Microsoft Defender ATP leverages AMSI’s visibility into scripts and harnesses the power of machine learning to detect and stop post-exploitation activities that largely rely on scripts.
The post Stopping Active Directory attacks and other post-exploitation behavior with AMSI and machine learning appeared first on Microsoft Security. READ MORE HERE…

Read more
Microsoft Secure 

Inside Microsoft Threat Protection: Solving cross-domain security incidents through the power of correlation analytics

TH Author , ,

Through deep correlation logic, Microsoft Threat Protection automatically finds links between related signals across domains. It connects related existing alerts and generates additional alerts where suspicious events that could otherwise be missed can be detected.
The post Inside Microsoft Threat Protection: Solving cross-domain security incidents through the power of correlation analytics appeared first on Microsoft Security. READ MORE HERE…

Read more
Microsoft Secure 

Seeing the big picture: Deep learning-based fusion of behavior signals for threat detection

TH Author , , , , , , , , , , ,

Learn how we’re using deep learning to build a powerful, high-precision classification model for long sequences of wide-ranging signals occurring at different times.
The post Seeing the big picture: Deep learning-based fusion of behavior signals for threat detection appeared first on Microsoft Security. READ MORE HERE…

Read more
Microsoft Secure 

Inside Microsoft Threat Protection: Correlating and consolidating attacks into incidents

TH Author , , , ,

The incidents view in Microsoft Threat Protection empowers SOC analysts by automatically fusing attack evidence and providing a consolidated view of an attack chain and affected assets, as well as a single-click remediation with easy-to-read analyst workflows.
The post Inside Microsoft Threat Protection: Correlating and consolidating attacks into incidents appeared first on Microsoft Security. READ MORE HERE…

Read more
Microsoft Secure 

Introducing Kernel Data Protection, a new platform security technology for preventing data corruption

TH Author , , , , , ,

Kernel Data Protection (KDP) is a set of APIs that provide the ability to mark some kernel memory as read-only, preventing attackers from ever modifying protected memory.
The post Introducing Kernel Data Protection, a new platform security technology for preventing data corruption appeared first on Microsoft Security. READ MORE HERE…

Read more