Windows 10 S – Computer Security Articles

Attack inception: Compromised supply chain within a supply chain poses new risks

July 26, 2018 admin coin miner, cryptocurrency mining, cybersecurity, in-browser cryptocurrency miner, Security Intelligence, Security Response, software supply chain, supply chain attack, windows, Windows 10, Windows 10 in S mode, Windows 10 S, Windows Defender Antivirus, Windows Defender Application Control, Windows Defender ATP, Windows Defender AV

Credit to Author: Windows Defender ATP| Date: Thu, 26 Jul 2018 13:00:13 +0000

A new software supply chain attack unearthed by Windows Defender Advanced Threat Protection (Windows Defender ATP) emerged as an unusual multi-tier case. Unknown attackers compromised the shared infrastructure in place between the vendor of a PDF editor application and one of its software vendor partners, making the apps legitimate installer the unsuspecting carrier of a

Microsoft Security

Machine learning vs. social engineering

July 8, 2018 admin antispam, Artificial Intelligence, cybersecurity, fileless malware, JavaScript, machine learning, macro malware, macros, malware, Next-gen antivirus, non-PE threats, phishing, phishing attacks, Security Intelligence, Security Response, Social engineering, VBScript, windows, Windows 10, Windows 10 S, Windows Defender Antivirus, Windows Defender ATP, Windows Defender AV

Credit to Author: Windows Defender ATP| Date: Thu, 07 Jun 2018 13:00:56 +0000

Machine learning is a key driver in the constant evolution of security technologies at Microsoft. Machine learning allows Microsoft 365 to scale next-gen protection capabilities and enhance cloud-based, real-time blocking of new and unknown threats. Just in the last few months, machine learning has helped us to protect hundreds of thousands of customers against ransomware,

Microsoft Security

Machine learning vs. social engineering

June 7, 2018 admin Artificial Intelligence, cybersecurity, machine learning, Next-gen antivirus, non-PE threats, phishing, phishing attacks, Security Intelligence, Security Response, Social engineering, windows, Windows 10, Windows 10 S, Windows Defender Antivirus, Windows Defender ATP, Windows Defender AV

Credit to Author: Windows Defender ATP| Date: Thu, 07 Jun 2018 13:00:56 +0000

Microsoft Security

Hunting down Dofoil with Windows Defender ATP

April 4, 2018 admin Advanced hunting, CoinMiner, cryptocurrency mining, cybersecurity, Dofoil, malware research, Namecoin, process hollowing, windows, Windows 10, Windows 10 S, Windows Defender Antivirus, Windows Defender ATP, Windows Defender AV, Windows Defender Exploit Guard

Credit to Author: Windows Defender ATP| Date: Wed, 04 Apr 2018 15:00:18 +0000

Dofoil is a sophisticated threat that attempted to install coin miner malware on hundreds of thousands of computers in March, 2018. In previous blog posts we detailed how behavior monitoring and machine learning in Windows Defender AV protected customers from a massive Dofoil outbreak that we traced back to a software update poisoning campaign several

Microsoft Security

Poisoned peer-to-peer app kicked off Dofoil coin miner outbreak

March 13, 2018 admin behavior monitoring, code injection, CoinMiner, cryptocurrency mining, cybersecurity, Electroneum, machine learning, MediaGet, Namecoin, smoke loader, Windows 10, Windows 10 S, Windows Defender ATP, Windows Defender AV

Credit to Author: Windows Defender Research| Date: Tue, 13 Mar 2018 22:27:06 +0000

On March 7, we reported that a massive Dofoil campaign attempted to install malicious cryptocurrency miners on hundreds of thousands of computers. Windows Defender Antivirus, with its behavior monitoring, machine learning technologies, and layered approach to security detected and blocked the attack within milliseconds.Windows 10 S, a special configuration of Windows 10 providing Microsoft-verified security,

Microsoft Security

How artificial intelligence stopped an Emotet outbreak

February 14, 2018 admin Artificial Intelligence, banking trojans, cybersecurity, emotet, machine learning, malware, Security Intelligence, Security Response, windows, Windows 10, Windows 10 S, Windows Defender Antivirus, Windows Defender AV

Credit to Author: Windows Defender ATP| Date: Wed, 14 Feb 2018 14:43:26 +0000

At 12:46 a.m. local time on February 3, a Windows 7 Pro customer in North Carolina became the first would-be victim of a new malware attack campaign for Trojan:Win32/Emotet. In the next 30 minutes, the campaign tried to attack over a thousand potential victims, all of whom were instantly and automatically protected by Windows Defender

Microsoft Security

Now you see me: Exposing fileless malware

January 24, 2018 admin cybersecurity, fileless malware, malware research, Powershell, Reflective DLL loading, research, script-based attacks, Windows 10, Windows 10 S, Windows Defender Antivirus, Windows Defender ATP, Windows Defender AV, Windows Defender Exploit Guard

Credit to Author: Windows Defender ATP| Date: Wed, 24 Jan 2018 14:00:21 +0000

Attackers are determined to circumvent security defenses using increasingly sophisticated techniques. Fileless malware boosts the stealth and effectiveness of an attack, and two of last years major ransomware outbreaks (Petya and WannaCry) used fileless techniques as part of their kill chains. The idea behind fileless malware is simple: If tools already exist on a device