Read how to protect consumer websites and defend against modern DDoS attacks with layered security, resilient architecture, and graceful service degradation.
The post Defending consumer web properties against modern DDoS attacks appeared first on Microsoft Security Blog. READ MORE HERE…
This World Passkey Day, read how Microsoft is advancing passkey adoption to replace passwords, cut phishing risk, and deliver simpler, more secure sign-ins.
The post World Passkey Day: Advancing passwordless authentication appeared first on Microsoft Security Blog. READ MORE HERE…
Embracing strong proactive security is something we can all do to mitigate our increased exposure to security threats.
The post 8 best practices for CISOs conducting risk reviews appeared first on Microsoft Security Blog. READ MORE HERE…
Read how Microsoft is partnering with Anthropic and broader industry to use leading models, paired with our platforms and expertise, to turn AI-driven discovery into protection at scale.
The post AI-powered defense for an AI-accelerated threat landscape appeared first on Microsoft Security Blog. READ MORE HERE…
How Microsoft secures Dynamics 365 and Power Platform by removing credentials, reducing attack surfaces, and using platform engineering to block opportunistic threats.
The post Making opportunistic cyberattacks harder by design appeared first on Microsoft Security Blog. READ MORE HERE…
Threat actors are abusing external Microsoft Teams collaboration to impersonate IT helpdesk staff and convince users to grant remote access. Once inside, attackers can abuse legitimate tools and standard admin protocols to move laterally and exfiltrate data while appearing as routine IT support—activity Microsoft Defender helps detect across Teams, endpoint, and identity telemetry.
The post Cross‑tenant helpdesk impersonation to data exfiltration: A human-operated intrusion playbook appeared first on Microsoft Security Blog. READ MORE HERE…
Domain compromise accelerates fast. Predictive shielding slowed it down. This real-world attack shows how exposure-based containment stopped credential abuse and broke the threat actor’s momentum.
The post Containing a domain compromise: How predictive shielding shut down lateral movement appeared first on Microsoft Security Blog. READ MORE HERE…
Learn how to build a comprehensive cryptographic inventory and strengthen quantum‑safe readiness using Microsoft Security tools, best‑practice lifecycle models, and partner solutions.
The post Building your cryptographic inventory: A customer strategy for cryptographic posture management appeared first on Microsoft Security Blog. READ MORE HERE…
The Microsoft Defender Security Research Team uncovered a sophisticated macOS intrusion campaign attributed to the North Korean threat actor Sapphire Sleet that abuses user driven execution and social engineering to bypass macOS security protections and steal credentials, cryptocurrency assets, and sensitive data.
The post Dissecting Sapphire Sleet’s macOS intrusion from lure to compromise appeared first on Microsoft Security Blog. READ MORE HERE…
AI changes how incidents unfold and how we respond. Learn which IR practices still apply and where new telemetry, tools, and skills are needed.
The post Incident response for AI: Same fire, different fuel appeared first on Microsoft Security Blog. READ MORE HERE…