Insights into your unpatched vulnerabilities
Malwarebytes is offering customers its ThreatDown Vulnerability Assessment solution without extra costs to help reduce attack surfaces and improve their security posture
Read moreAnalyzing AsyncRAT’s Code Injection into aspnet_compiler.exe Across Multiple Incident Response Cases
Credit to Author: Buddy Tancio| Date: Mon, 11 Dec 2023 00:00:00 +0000
This blog entry delves into MxDR’s unraveling of the AsyncRAT infection chain across multiple cases, shedding light on the misuse of aspnet_compiler.exe, a legitimate Microsoft process originally designed for precompiling ASP.NET web applications.
Read moreNew Microsoft Purview features use AI to help secure and govern all your data
Credit to Author: Herain Oberoi| Date: Thu, 07 Dec 2023 17:00:00 +0000
Learn about the new Microsoft Purview features and capabilities announced at Microsoft Ignite 2023.
The post New Microsoft Purview features use AI to help secure and govern all your data appeared first on Microsoft Security Blog.
Read moreStar Blizzard increases sophistication and evasion in ongoing attacks
Credit to Author: Microsoft Threat Intelligence| Date: Thu, 07 Dec 2023 12:01:00 +0000
Microsoft Threat Intelligence continues to track and disrupt malicious activity attributed to a Russian state-sponsored actor we track as Star Blizzard, who has improved their detection evasion capabilities since 2022 while remaining focused on email credential theft against targets.
The post Star Blizzard increases sophistication and evasion in ongoing attacks appeared first on Microsoft Security Blog.
Read moreMicrosoft Security Copilot drives new product integrations at Microsoft Ignite to empower security and IT teams
Credit to Author: Kathleen Lavallee| Date: Wed, 06 Dec 2023 17:00:00 +0000
Microsoft Security Copilot offers several use cases and embedded experiences—and early access participants are already sharing their perspectives on the solution. Find out for yourself by joining the program.
The post Microsoft Security Copilot drives new product integrations at Microsoft Ignite to empower security and IT teams appeared first on Microsoft Security Blog.
Read moreMicrosoft Incident Response lessons on preventing cloud identity compromise
Credit to Author: Microsoft Incident Response| Date: Tue, 05 Dec 2023 17:00:00 +0000
In real-world customer engagements, Microsoft Incident Response (Microsoft IR) sees combinations of issues and misconfigurations that could lead to attacker access to customers’ Microsoft Entra ID tenants. Effective protection of a customer’s Entra ID tenant is less challenging than protecting an Active Directory deployment but does require governance and monitoring. Reducing risk and exposure of your most privileged accounts plays a critical role in preventing or detecting attempts at tenant-wide compromise.
The post Microsoft Incident Response lessons on preventing cloud identity compromise appeared first on Microsoft Security Blog.
Read more3 reasons why now is the time to go cloud native for device management
Credit to Author: Michael Wallent| Date: Tue, 05 Dec 2023 16:00:00 +0000
Discover these three recent customer stories to better understand the full value of becoming cloud native.
The post 3 reasons why now is the time to go cloud native for device management appeared first on Microsoft Security Blog.
Read moreProtecting credentials against social engineering: Cyberattack Series
Credit to Author: Microsoft Incident Response| Date: Mon, 04 Dec 2023 17:00:00 +0000
Our fourth installation in the Cyberattack Series examines a smishing and social engineering attack and outlines the steps organizations can take to help minimize the risk and prepare for the possibility.
The post Protecting credentials against social engineering: Cyberattack Series appeared first on Microsoft Security Blog.
Read more