A complex attack chain incorporating the CVE-2018-20250 exploit and multiple code execution techniques attempted to run a fileless PowerShell backdoor that could allow an adversary to take full control of compromised machines.
The post Analysis of a targeted attack exploiting the WinRAR CVE-2018-20250 vulnerability appeared first on Microsoft Security. READ MORE HERE…
The “Top 10 actions to secure your environment” series outlines fundamental steps you can take with your investment in Microsoft 365 security solutions. In “Step 8. Protect your documents and email,” you’ll learn how to deploy Azure Information Protection and use Office 365 Advanced Threat Protection (ATP) and Exchange Online Protection to help secure your documents and emails.
The post Step 8. Protect your documents and email: top 10 actions to secure your environment appeared first on Microsoft Security. READ MORE HERE…
If we are to truly influence and shape our industry’s culture, I am asking everyone in the industry to examine how and what we communicate, how we can make cybersecurity easier to understand by the language we use.
The post The language of InfoSec appeared first on Microsoft Security. READ MORE HERE…
In the month of February, we saw an average of 300,000 phishing attempts across Microsoft’s browsing platforms daily. Our security experts expect these attempted scams to become increasingly more prevalent through the April 15 tax day.
The post Steer clear of tax scams appeared first on Microsoft Security. READ MORE HERE…
User access can be simpler for your users and more secure for the enterprise. Read our latest e-book, “Secure access to your enterprise,” to find out how.
The post Secure access to your enterprise with Microsoft 365 Enterprise E5 appeared first on Microsoft Security. READ MORE HERE…
The keystone to good security hygiene is limiting your attack surface. Attack surface reduction is a technique to remove or constrain exploitable behaviors in your systems. In this blog, we discuss the two attack surface reduction rules introduced in the most recent release of Windows and cover suggested deployment methods and best practices. Software applications
Read more
The post Recommendations for deploying the latest Attack surface reduction rules for maximum impact appeared first on Microsoft Secure. READ MORE HERE…
In the first of our three part series, we provide tips on how to manage a security operations center (SOC) to be more responsive, effective, and collaborative.
The post Lessons learned from the Microsoft SOC—Part 1: Organization appeared first on Microsoft Secure. READ MORE HERE…
Working together with government to push a more coordinated effort around infrastructure securityparticularly pipelines and utilitiesis critical. The new Pipeline Cybersecurity Initiative will help ensure that additional resources, information-sharing, and coordination will help mitigate additional cyber-related risks against the U.S. energy industry in the coming years.
The post Why the Pipeline Cybersecurity Initiative is a critical step appeared first on Microsoft Secure. READ MORE HERE…
The Top 10 actions to secure your environment series outlines fundamental steps you can take with your investment in Microsoft 365 security solutions. In Step 5. Set up mobile device management, youll learn how to plan your Microsoft Intune deployment and set up Mobile Device Management (MDM) as part of your Unified Endpoint Management (UEM) strategy.
The post Step 5. Set up mobile device management: top 10 actions to secure your environment appeared first on Microsoft Secure. READ MORE HERE…
Learn about the latest enhancements to Microsoft Threat Protection, the premier solution for securing the modern workplace across identities, endpoints, user data, apps, and infrastructure.
The post The evolution of Microsoft Threat Protection, February update appeared first on Microsoft Secure. READ MORE HERE…