Microsoft education programs and AI promise to help address one of cybersecurity’s biggest challenges—3.4 million skills shortage globally. Learn how Microsoft is supporting the cause.
The post From classroom to cyberfront: Unlocking the potential of the next generation of cyber defenders appeared first on Microsoft Security Blog. READ MORE HERE…
Microsoft Incident Response and PwC have announced a new global alliance to expand their joint Incident Response and Recovery capability. In this partnership, Microsoft IR will begin the initial containment and investigation of a cyber incident, while PwC will work on securely rebuilding and restoring mission-critical system, providing customers with a more comprehensive and seamless incident response experience.
The post An integrated incident response solution with Microsoft and PwC appeared first on Microsoft Security Blog. READ MORE HERE…
Microsoft has been tracking activity related to the financially motivated threat actor Octo Tempest, whose evolving campaigns represent a growing concern for many organizations across multiple industries.
The post Octo Tempest crosses boundaries to facilitate extortion, encryption, and destruction appeared first on Microsoft Security Blog. READ MORE HERE…
Microsoft surveyed 800 cybersecurity professionals to gather their insights on data security. Read on for the top findings on data security strategies—and the value of a comprehensive cybersecurity solution.
The post Top insights and best practices from the new Microsoft Data Security Index report appeared first on Microsoft Security Blog. READ MORE HERE…
Microsoft has been named a Leader in The Forrester Wave™: Endpoint Security, Q4 2023 report.
The post Forrester names Microsoft a Leader in the 2023 Endpoint Security Wave™ report appeared first on Microsoft Security Blog. READ MORE HERE…
Learn more about Microsoft Security Copilot—including its integration with Microsoft 365 Defender—as well as our latest innovations and announcements, and how your organization can get early access.
The post Microsoft Security Copilot Early Access Program: Harnessing generative AI to empower security teams appeared first on Microsoft Security Blog. READ MORE HERE…
Since early October 2023, Microsoft has observed North Korean nation-state threat actors Diamond Sleet and Onyx Sleet exploiting the Jet Brains TeamCity CVE-2023-42793 remote-code execution vulnerability. Given supply chain attacks carried out by these threat actors in the past, Microsoft assesses that this activity poses a particularly high risk to organizations who are affected.
The post Multiple North Korean threat actors exploiting the TeamCity CVE-2023-42793 vulnerability appeared first on Microsoft Security Blog. READ MORE HERE…
Since our announcement in July 2023, we have made significant efforts to enhance the access of Microsoft Purview’s audit logging. This ongoing work expands accessibility and flexibility to cloud security logs. Read about the additional updates coming to Microsoft Purview Audit in the coming weeks.
The post Expanding audit logging and retention within Microsoft Purview for increased security visibility appeared first on Microsoft Security Blog. READ MORE HERE…
Today, we’re pleased to announce that Microsoft Defender for Endpoint customers will now be able automatically to disrupt human-operated attacks like ransomware early in the kill chain without needing to deploy any other capabilities. Now, organizations only need to onboard their devices to Defender for Endpoint to start realizing the benefits of attack disruption.
The post Microsoft Defender for Endpoint now stops human-operated attacks on its own appeared first on Microsoft Security Blog. READ MORE HERE…
User containment is a unique and innovative defense mechanism that stops human-operated attacks in their tracks. We’ve added user containment to the automatic attack disruption capability in Microsoft Defender for Endpoint. User containment is automatically triggered by high-fidelity signals and limits attackers’ ability to move laterally within a network regardless of the compromised account’s Active Directory state or privilege level.
The post Automatic disruption of human-operated attacks through containment of compromised user accounts appeared first on Microsoft Security Blog. READ MORE HERE…