Microsoft Threat Experts Archives - ThreatsHub Cybersecurity News

Structured threat hunting: One way Microsoft Threat Experts prioritizes customer defense

December 2, 2021 TH Author Cybersecurity, Microsoft security intelligence, Microsoft Threat Experts

Our approach to threat hunting is designed to evaluate impact and escalate potential threats for investigation, based on how damaging the potential threat would be. It is also designed for speed: due to the highly time-sensitive nature of the threat response, the most dangerous potential threats are analyzed first.
The post Structured threat hunting: One way Microsoft Threat Experts prioritizes customer defense appeared first on Microsoft Security Blog. READ MORE HERE…

Microsoft Secure

Automating threat actor tracking: Understanding attacker behavior for intelligence and contextual alerting

April 1, 2021 TH Author Cybersecurity, human-operated ransomware, Microsoft security intelligence, Microsoft Threat Experts, probabilistic modeling, ransomware, threat actor tracking

A probabilistic graphical modeling framework used by Microsoft 365 Defender research and intelligence teams for threat actor tracking enables us to quickly predict the likely threat group responsible for an attack, as well as the likely next attack stages.
The post Automating threat actor tracking: Understanding attacker behavior for intelligence and contextual alerting appeared first on Microsoft Security. READ MORE HERE…

Microsoft Secure

Data science for cybersecurity: A probabilistic time series model for detecting RDP inbound brute force attacks

December 18, 2019 TH Author AI and machine learning, Automation, brute force attack, Cybersecurity, data science, Endpoint security, Event ID 4625, Microsoft Defender Advanced Threat Protection, Microsoft security intelligence, Microsoft Threat Experts, probablistic time series model, Remote Desktop Protocol (RDP), Security Intelligence, Threat protection, Windows Security

Microsoft Defender ATP data scientists and threat hunters collaborate to use a data science-driven approach to detecting RDP brute force attacks to protect customers against real-world threats.
The post Data science for cybersecurity: A probabilistic time series model for detecting RDP inbound brute force attacks appeared first on Microsoft Security. READ MORE HERE…

Microsoft Secure

Experts on demand: Your direct line to Microsoft security insight, guidance, and expertise

October 28, 2019 TH Author Cybersecurity, experts on demand, Microsoft Defender ATP, Microsoft security intelligence, Microsoft Threat Experts, Security Intelligence, Security Response, targeted attack notifications, Threat protection, Windows Security

Experts on demand is now generally available and gives customers direct access to real-life Microsoft threat analysts to help with their security investigations.
The post Experts on demand: Your direct line to Microsoft security insight, guidance, and expertise appeared first on Microsoft Security. READ MORE HERE…