Credit to Author: Eric Avena| Date: Mon, 28 Oct 2019 15:00:10 +0000
Experts on demand is now generally available and gives customers direct access to real-life Microsoft threat analysts to help with their security investigations.
The post Experts on demand: Your direct line to Microsoft security insight, guidance, and expertise appeared first on Microsoft Security.
Read moreCredit to Author: Eric Avena| Date: Wed, 07 Aug 2019 23:50:25 +0000
Through a cross-company, cross-continent collaboration, we discovered a vulnerability, secured customers, and developed fix, all while learning important lessons that we can share with the industry.
The post A case study in industry collaboration: Poisoned RDP vulnerability disclosure and response appeared first on Microsoft Security.
Read moreCredit to Author: Windows Defender ATP| Date: Mon, 03 Dec 2018 16:00:10 +0000
Reuters recently reported a hacking campaign focused on a wide range of targets across the globe. In the days leading to the Reuters publication, Microsoft researchers were closely tracking the same campaign. Our sensors revealed that the campaign primarily targeted public sector institutions and non-governmental organizations like think tanks and research centers, but also included
The post Analysis of cyberattack on U.S. think tanks, non-profits, public sector by unidentified attackers appeared first on Microsoft Secure.
Read moreCredit to Author: toddvanderark| Date: Mon, 15 Oct 2018 16:00:38 +0000
In this post we address the question: “How do we make data gravity a reality in the security operations center (SOC) while we are under increased and constant pressure from motivated threat actors?”
The post Making it real—harnessing data gravity to build the next gen SOC appeared first on Microsoft Secure.
Read moreCredit to Author: Windows Defender ATP| Date: Thu, 06 Sep 2018 18:00:09 +0000
Cyber thieves are continuously looking for new ways to get people to click on a bad link, open a malicious file, or install a poisoned update in order to steal valuable data. In the past, they cast as wide a net as possible to increase the pool of potential victims. But attacks that create a
Read moreCredit to Author: Windows Defender ATP| Date: Thu, 26 Jul 2018 13:00:13 +0000
A new software supply chain attack unearthed by Windows Defender Advanced Threat Protection (Windows Defender ATP) emerged as an unusual multi-tier case. Unknown attackers compromised the shared infrastructure in place between the vendor of a PDF editor application and one of its software vendor partners, making the apps legitimate installer the unsuspecting carrier of a
Read moreCredit to Author: Windows Defender ATP| Date: Thu, 07 Jun 2018 13:00:56 +0000
Machine learning is a key driver in the constant evolution of security technologies at Microsoft. Machine learning allows Microsoft 365 to scale next-gen protection capabilities and enhance cloud-based, real-time blocking of new and unknown threats. Just in the last few months, machine learning has helped us to protect hundreds of thousands of customers against ransomware,
Read moreCredit to Author: Windows Defender ATP| Date: Mon, 02 Jul 2018 15:00:00 +0000
In late March 2018, I analyzed an interesting PDF sample found by ESET senior malware researcher Anton Cherpanov. The sample was initially reported to Microsoft as a potential exploit for an unknown Windows kernel vulnerability. During my investigation in parallel with ESET researchers, I was surprised to discover two new zero-day exploits in the same
Read more