incident response Archives - Page 2 of 3 - ThreatsHub Cybersecurity News

Microsoft shares new threat intelligence, security guidance during global crisis

April 8, 2020 TH Author coronavirus-themed threats, COVID-19 themed attacks, Cybersecurity, emotet, incident response, Microsoft security intelligence, Phishing, Security Intelligence, Security Response, TrickBot

Our threat intelligence shows that COVID-19 themed threats are retreads of existing attacks that have been slightly altered to tie to the pandemic. We’re seeing a changing of lures, not a surge in attacks. These attacks are settling into the normal ebb and flow of the threat environment.
The post Microsoft shares new threat intelligence, security guidance during global crisis appeared first on Microsoft Security. READ MORE HERE…

Microsoft Secure

Ghost in the shell: Investigating web shell attacks

February 4, 2020 TH Author china chopper, Cybersecurity, Detection and Response Team (DART), Endpoint security, GALLIUM, incident response, KRYPTON, Microsoft Defender Advanced Threat Protection, Microsoft Detection and Response Team (DART), Microsoft security intelligence, Security management, Threat protection, web shell, ZINC

Web shell attacks allow adversaries to run commands and steal data from an Internet-facing server or use the server as launch pad for further attacks against the affected organization.
The post Ghost in the shell: Investigating web shell attacks appeared first on Microsoft Security. READ MORE HERE…

Microsoft Secure

CISO series: Lessons learned from the Microsoft SOC—Part 3b: A day in the life

December 23, 2019 TH Author CISO series, Ciso series page, Endpoint security, incident response, Lessons learned, Microsoft Defender Advanced Threat Protection, Microsoft Defender ATP

In this next post in our series, we provide insight into a day in the life of our SOC analysts investigating common front door attacks.
The post CISO series: Lessons learned from the Microsoft SOC—Part 3b: A day in the life appeared first on Microsoft Security. READ MORE HERE…

Microsoft Secure

Norsk Hydro responds to ransomware attack with transparency

December 17, 2019 TH Author incident response, Microsoft Detection and Response Team (DART), Security management

Aluminum supplier Norsk Hydro was attacked by LockerGoga, a form of ransomware. Learn how the company recovered and got back to business as usual.
The post Norsk Hydro responds to ransomware attack with transparency appeared first on Microsoft Security. READ MORE HERE…

Microsoft Secure

Ransomware response—to pay or not to pay?

December 16, 2019 TH Author Detection and Response Team (DART), incident response, Microsoft Detection and Response Team (DART), Phishing

As part of Microsoft’s Detection and Response Team (DART) Incident Response engagements, we regularly get asked by customers about “paying the ransom” following a ransomware attack.
The post Ransomware response—to pay or not to pay? appeared first on Microsoft Security. READ MORE HERE…

Microsoft Secure

Overview of the Marsh-Microsoft 2019 Global Cyber Risk Perception survey results

September 18, 2019 TH Author AI and machine learning, Cybersecurity Policy, incident response, Information/data protection

Results from the 2019 Marsh-Microsoft Global Cyber Risk Perception survey reveal several encouraging signs of improvement in the way organizations view and manage cyber risk.
The post Overview of the Marsh-Microsoft 2019 Global Cyber Risk Perception survey results appeared first on Microsoft Security. READ MORE HERE…

Microsoft Secure

Protect against BlueKeep

August 8, 2019 TH Author incident response, Network Security, Security Intelligence, Threat protection

DART offers steps you can take to protect your network from BlueKeep, the “wormable” vulnerability that can create a large-scale outbreak due to its ability to replicate and propagate.
The post Protect against BlueKeep appeared first on Microsoft Security. READ MORE HERE…

Microsoft Secure

Council of EU Law Enforcement Protocol improves cross-border cooperation

July 30, 2019 TH Author Cybersecurity Policy, incident response, Security Intelligence, Threat protection

The new EU Law Enforcement Emergency Response Protocol addresses the growing problem of planning and coordinating between governments, agencies, and companies when cyberattacks occur across international boundaries.
The post Council of EU Law Enforcement Protocol improves cross-border cooperation appeared first on Microsoft Security. READ MORE HERE…

Microsoft Secure

Facing the cold chills

July 15, 2019 TH Author incident response, Network Security, Security strategies

DART recently worked with a customer who had been subject to a targeted compromise where the entity was intently and purposefully attempting to get into their systems.
The post Facing the cold chills appeared first on Microsoft Security. READ MORE HERE…

Microsoft Secure

How to recover from a security breach

June 17, 2019 TH Author Azure Security, incident response, Microsoft Intelligent Security Graph, Microsoft Intelligent Security Graph (ISG), Threat protection

Actionable tips from security experts on how to prevent, mitigate, or recover from a cyberattack.
The post How to recover from a security breach appeared first on Microsoft Security. READ MORE HERE…