Detecting malicious key extractions by compromised identities for Azure Cosmos DB

Credit to Author: Christine Barrett| Date: Thu, 23 Jun 2022 16:00:00 +0000

Azure Cosmos DB is a fully managed NoSQL cloud database service for modern app development. It offers a variety of advanced built-in features, such as automatic worldwide data replication, lightning-fast response types, and a variety of APIs. In this blog post, we describe security practices for securing access to Azure Cosmos DB and show how monitoring relevant control plane operations can help in the detection of potentially compromised authorization.

The post Detecting malicious key extractions by compromised identities for Azure Cosmos DB appeared first on Microsoft Security Blog.

Read more

Microsoft Defender for Office 365 receives highest award in SE Labs Enterprise Email Security Services test

Credit to Author: Christine Barrett| Date: Wed, 22 Jun 2022 16:00:00 +0000

Microsoft received an AAA Protection Award for Microsoft Defender for Office 365, the highest possible award that vendors can achieve in this test.

The post Microsoft Defender for Office 365 receives highest award in SE Labs Enterprise Email Security Services test appeared first on Microsoft Security Blog.

Read more

Improving AI-based defenses to disrupt human-operated ransomware

Credit to Author: Paul Oliveria| Date: Tue, 21 Jun 2022 16:00:00 +0000

To disrupt human-operated ransomware attacks as early as possible, we enhanced the AI-based protections in Microsoft Defender for Endpoint with a range of specialized machine learning techniques that swiftly identify and block malicious files, processes, or behavior observed during active attacks.

The post Improving AI-based defenses to disrupt human-operated ransomware appeared first on Microsoft Security Blog.

Read more

Securing your IoT with Edge Secured-core devices

Credit to Author: Christine Barrett| Date: Tue, 21 Jun 2022 06:00:00 +0000

To simplify your IoT security journey, today, we’re announcing the availability of Windows IoT Edge Secured-core devices available in the Azure Certified Device catalog from Lenovo, ASUS and AAEON, additionally we’re also announcing the availability of devices that meet the Microsoft sponsored Edge Compute Node protection profile which is governed with industry oversight, from Scalys and Eurotech. And learn more on Microsoft’s investments in MCU security.

The post Securing your IoT with Edge Secured-core devices appeared first on Microsoft Security Blog.

Read more

How one Microsoft software engineer works to improve access management

Credit to Author: Christine Barrett| Date: Mon, 20 Jun 2022 16:00:00 +0000

Igor Sakhnov, corporate vice president of Identity and Network Access Engineering, talks with software engineer Rebecca Nzioki about her journey to computer science and Microsoft’s Africa Development Center in Kenya.

The post How one Microsoft software engineer works to improve access management appeared first on Microsoft Security Blog.

Read more

Why strong security solutions are critical to privacy protection

Credit to Author: Emma Jones| Date: Wed, 15 Jun 2022 16:00:00 +0000

Former three-term Ontario Information and Privacy Commissioner Ann Cavoukian, Ph.D., talks about her seven foundational principles of privacy by design and the importance of data privacy.

The post Why strong security solutions are critical to privacy protection appeared first on Microsoft Security Blog.

Read more

The many lives of BlackCat ransomware

Credit to Author: Paul Oliveria| Date: Mon, 13 Jun 2022 16:00:00 +0000

The use of an unconventional programming language, multiple target devices and possible entry points, and affiliation with prolific threat activity groups have made the BlackCat ransomware a prevalent threat and a prime example of the growing ransomware-as-a-service (RaaS) gig economy.

The post The many lives of BlackCat ransomware appeared first on Microsoft Security Blog.

Read more