{"id":25934,"date":"2025-07-25T12:29:52","date_gmt":"2025-07-25T20:29:52","guid":{"rendered":"https:\/\/www.palada.net\/index.php\/2025\/07\/25\/news-19654\/"},"modified":"2025-07-25T12:29:52","modified_gmt":"2025-07-25T20:29:52","slug":"news-19654","status":"publish","type":"post","link":"http:\/\/www.palada.net\/index.php\/2025\/07\/25\/news-19654\/","title":{"rendered":"Microsoft at Black Hat USA 2025: A unified approach to modern cyber defense"},"content":{"rendered":"

Credit to Author: Elliot Volkman| Date: Fri, 18 Jul 2025 16:00:00 +0000<\/strong><\/p>\n

Microsoft will be at Black Hat USA 2025, August 5\u20137 in Las Vegas, and we\u2019re bringing you a unified, practitioner-driven experience built around real-world insights, threat intelligence, incident response, and hands-on AI expertise.
We believe security teams are strongest when intelligence, tools, and deep expertise come together. At Microsoft, we\u2019ve eliminated internal silos between threat intelligence, red teaming, incident response, and product engineering. That closed-loop system lets us move faster, translating threat signals into global protection every day.
This integration isn\u2019t theoretical. It means when researchers detect a threat through our global network, that information flows directly to the red team stress-testing our defenses, the incident responders investigating real intrusions, and the engineering teams building new mitigations; all at once. It’s a system designed to learn, adapt, and protect at scale. At Black Hat, we\u2019re opening that loop so you can see how it works and inviting you to see how it can help you defend at AI speed. Want to meet the people behind our operations? Request an invite to our Black Hat VIP mixer.
Start your Black Hat journey early with the Microsoft Threat Intelligence Podcast
Before Black Hat kicks off, hear from Black Hat NOC lead Grifter and Lintile in our latest episode of the Microsoft Threat Intelligence Podcast. They explore what it takes to secure one of the world\u2019s most high-profile cybersecurity conferences, what the Black Hat Network Operations Center (NOC) sees in real time, and how defenders can apply those lessons to their own environments. Whether you’re attending in person or following along remotely, this episode offers a rare look into threat activity and security insights from inside the NOC.
Meet us at Booth 2246: Conversations, not presentations<\/p>\n

Skip the crowded theater sessions and pull up a chair. Throughout the day, we\u2019re hosting informal conversations at our mobile podcast studio and then shifting to expert meetups where your questions will be answered. At booth 2246, you\u2019ll hear directly from Microsoft security experts on what they\u2019re seeing, and how you can apply it. Topics include:<\/p>\n

\u2022 Addressing the ransomware threat landscape
\u2022 Defending against BEC attacks
\u2022 Shifts in social engineering and phishing
\u2022 Securing non-human identities (agents)
\u2022 And a few surprises<\/p>\n

We\u2019ll also be inviting our friends from the Microsoft Threat Intelligence Podcast, Microsoft BlueHat podcast (MSRC), GitHub, and a few special guests.<\/p>\n

Each session is a chance to hear what our teams are seeing in the wild, how we\u2019re responding, and how you can apply those insights in your own environment. Whether it’s a live threat briefing, a deep dive into red teaming, or a behind-the-scenes look at real incident response, these are unscripted, interactive discussions designed for defenders and researchers.<\/p>\n

Demos of Microsoft Defender, Microsoft Entra, Microsoft Purview, and Microsoft Security Copilot will run throughout the week. Stop by to talk shop, ask questions, or just get a clearer view of why our AI-first, end-to-end platform is designed to help you move faster, respond with precision, and adapt to new threats with confidence.<\/p>\n

Connect with the experts at our VIP Mixer<\/p>\n

You\u2019re invited to connect with the people behind the defense at our VIP Mixer on Wednesday, Aug. 6. Join Microsoft Security for an evening of conversations, insights, and connections with our threat intelligence, incident response, and Security Copilot teams, alongside your peers from across the security community.<\/p>\n

Whether you’re exploring how to put AI agents to work, navigating advanced threats, or evolving your detection and response strategy, this is your chance to meet the experts and teams helping defenders stay ahead.<\/p>\n

Security is a team sport, and we would like to thank Armor, Cyberproof, Forescout, Ontinue and Security Risk Advisors members of the Microsoft Intelligent Security Association (MISA) for sponsoring this event.<\/p>\n

Drinks and appetizers will be provided. Request to attend today!<\/p>\n

Session Spotlight: Gain practical strategies for unmasking cyber threats<\/p>\n

Thursday, August 7 | 12:15\u201312:40 PM
In a threat landscape shaped by AI and threat actors, cybersecurity teams need more than tools; they need the right mindset, collaboration models, and playbooks to stay ahead. During our main stage session, we will bring together frontline experts from Microsoft Security\u2014Sherrod DeGrippo, Director, Threat Intelligence Strategy, Aarti Borkar, Corporate Vice President, Customer Success and Incident Response, Andrew Rapp, Leader, Incident Response and Simeon Kakpovi, \u2014to share how they approach high-impact intrusions and what defenders everywhere can take away from it.
This session will offer practical strategies grounded in real-world operations, including:
\u2022 How to build tighter alignment across threat intel, IR, and detection teams
\u2022 Approaches to reduce friction and accelerate signal-to-action response time
\u2022 Lessons from tracking threat actors focused on social engineering and ransomware
\u2022 Ways to adapt red teaming and detection in a rapidly evolving AI landscape
Whether you’re refining your team\u2019s structure or looking for sharper ways to think about advanced threats, this conversation will deliver actionable insight you can bring back to your own environment.
Inside Look: How Microsoft Red Teams Stay in Sync
Wednesday, August 6 | 11:25\u201311:45 AM
What happens when red teams operate not in isolation, but as a connected part of a broader defense ecosystem?
Microsoft security experts Ram Shankar Siva Kumar (founder of the AI Red Team) and Craig Nelson (Microsoft Red Team) will explore how traditional and AI red teams work side by side to proactively test Microsoft\u2019s products, platforms, and AI systems.
You\u2019ll hear how these teams:
\u2022 Identify systemic risks across cloud and enterprise services
\u2022 Probe generative AI systems for jailbreaks and indirect misuse
\u2022 Collaborate with MSRC and threat researchers to close the loop from discovery to defense
\u2022 Embed red teaming into engineering cycles, not just as a check, but as a design influence
Whether you\u2019re red-teaming your own products or rethinking how to operationalize adversarial testing, this session will offer lessons in collaboration, tooling, and mindset from two of the most advanced offensive security teams in the industry.<\/p>\n

Exchange ideas with other MISA members
The Microsoft booth will include a featured partner demo station where 7 partners from the Microsoft Intelligent Security Association (MISA) will showcase how their solutions together with Microsoft Security technology help defend our mutual customers from cybersecurity threats.
Connect with us at the Microsoft booth to find out more.<\/p>\n

Connect with us at Black Hat US
Cybersecurity is a team sport and defending against threats takes a cohesive approach that brings multiple disciplines and experts across specialties together. We\u2019re committed to eliminating internal silos to focus on threat hunting that supports a comprehensive defense.<\/p>\n

You\u2019ll hear more of this approach and how it can benefit your organization at Black Hat US.
\u2022 Check out Microsoft Security executives at the AI Summit at Black Hat (separate pass required)
\u2022 Request to attend our VIP Mixer to meet the experts behind Microsoft threat intelligence, incident response, and the Microsoft Security Response Center.
\u2022 Discover how our end-to-end platform can help you strengthen resilience and elevate your security posture.
\u2022 Get an exclusive $200 briefings and $100 business hall pass discount to share with your customers and prospects.
\u2022 Sign up for a one-on-one meeting with Microsoft Security experts.
\u2022 Listen to our Threat Intelligence Podcast.
Visit us in Booth #2246 for a live demo and learn how our AI-powered cybersecurity can protect your organization.
Hope to see you at Black Hat!<\/p>\n

The post Microsoft at Black Hat USA 2025: A unified approach to modern cyber defense<\/a> appeared first on Microsoft Security Blog<\/a>.<\/p>\n

https:\/\/blogs.technet.microsoft.com\/mmpc\/feed\/<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"

Credit to Author: Elliot Volkman| Date: Fri, 18 Jul 2025 16:00:00 +0000<\/strong><\/p>\n

Microsoft will spotlight its AI-first, end-to-end security platform at Black Hat USA 2025. Read our blog post for details on how to connect with us there and what to expect from our participation.<\/p>\n

The post Microsoft at Black Hat USA 2025: A unified approach to modern cyber defense<\/a> appeared first on Microsoft Security Blog<\/a>.<\/p>\n","protected":false},"author":4,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"colormag_page_container_layout":"default_layout","colormag_page_sidebar_layout":"default_layout","footnotes":""},"categories":[10759,10378],"tags":[],"class_list":["post-25934","post","type-post","status-publish","format-standard","hentry","category-microsoft","category-security"],"_links":{"self":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts\/25934","targetHints":{"allow":["GET"]}}],"collection":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/users\/4"}],"replies":[{"embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/comments?post=25934"}],"version-history":[{"count":0,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts\/25934\/revisions"}],"wp:attachment":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/media?parent=25934"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/categories?post=25934"},{"taxonomy":"post_tag","embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/tags?post=25934"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}