Endpoint security – Page 3 – Computer Security Articles

Two new machine learning protection features within the behavioral blocking and containment capabilities in Microsoft Defender ATP specialize in detecting threats by analyzing behavior, adding new layers of protection after an attack has started running.

The post In hot pursuit of elusive threats: AI-driven behavior-based blocking stops attacks in their tracks appeared first on Microsoft Security .

Microsoft Security

Bring your own LOLBin: Multi-stage, fileless Nodersok campaign delivers rare Node.js-based malware

September 26, 2019 admin AI and machine learning, cybersecurity, Endpoint security, fileless, Microsoft Defender Advanced Threat Protection, Microsoft security intelligence, nodersok, Security Intelligence

Credit to Author: Eric Avena| Date: Thu, 26 Sep 2019 17:34:41 +0000

We’ve discussed the challenges that fileless threats pose in security, and how Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP) employs advanced strategies to defeat these sophisticated threats. Part of the slyness of fileless malware is their use of living-off-the-land techniques, which refer to the abuse of legitimate tools, also called living-off-the-land binaries (LOLBins), that…

The post Bring your own LOLBin: Multi-stage, fileless Nodersok campaign delivers rare Node.js-based malware appeared first on Microsoft Security .

Microsoft Security

Deep learning rises: New methods for detecting malicious PowerShell

September 3, 2019 admin AI and machine learning, cybersecurity, deep learning, Endpoint security, machine learning, Microsoft Defender ATP, Microsoft security intelligence, Powershell, Security Intelligence, Threat protection

Credit to Author: Eric Avena| Date: Tue, 03 Sep 2019 16:00:03 +0000

We adopted a deep learning technique that was initially developed for natural language processing and applied to expand Microsoft Defender ATP’s coverage of detecting malicious PowerShell scripts, which continue to be a critical attack vector.

The post Deep learning rises: New methods for detecting malicious PowerShell appeared first on Microsoft Security .

Microsoft Security

Improve security and simplify operations with Windows Defender Antivirus + Morphisec

August 27, 2019 admin Endpoint security, Microsoft 365, Microsoft Intelligent Security Association (MISA), Threat protection, Windows Security

Credit to Author: Todd VanderArk| Date: Tue, 27 Aug 2019 16:00:04 +0000

Learn how Towne Properties uses Windows Defender Antivirus and Morphisec to protect against advanced memory-based attacks while simplifying operations.

The post Improve security and simplify operations with Windows Defender Antivirus + Morphisec appeared first on Microsoft Security .

Microsoft Security

From unstructured data to actionable intelligence: Using machine learning for threat intelligence

August 8, 2019 admin AI and machine learning, automation, cybersecurity, Endpoint security, indicators of compromise (IoC), machine learning, Microsoft Defender Advanced Threat Protection, Microsoft security intelligence, Security Intelligence, Threat Intelligence, TTPs, Windows Security

Credit to Author: Eric Avena| Date: Thu, 08 Aug 2019 16:30:12 +0000

Machine learning and natural language processing can automate the processing of unstructured text for insightful, actionable threat intelligence.

The post From unstructured data to actionable intelligence: Using machine learning for threat intelligence appeared first on Microsoft Security .