Microsoft – Page 20 – PossibleThreat Articles

Credit to Author: Microsoft Threat Intelligence| Date: Wed, 14 Jun 2023 16:00:00 +0000

Microsoft attributes several campaigns to a distinct Russian state-sponsored threat actor tracked as Cadet Blizzard (DEV-0586), including the WhisperGate destructive attack, Ukrainian website defacements, and the hack-and-leak front “Free Civilian”.

The post Cadet Blizzard emerges as a novel and distinct Russian threat actor appeared first on Microsoft Security Blog.

Microsoft Security

Public preview: Improve Win32 app security via app isolation

June 23, 2023 0 Comments

Credit to Author: David Weston and Sumit Lahiri| Date: Wed, 14 Jun 2023 15:36:51 +0000

The frequency and impact of zero-day vulnerabilities have witnessed a substantial increase over the years. Attackers frequently exploit either unknown or unpatched vulnerabilities. That’s why we are thrilled to announce the preview of Win32 app isolation.

The post Public preview: Improve Win32 app security via app isolation appeared first on Microsoft Security Blog.

Microsoft Security

How Microsoft and Sonrai integrate to eliminate attack paths

June 23, 2023 0 Comments hybrid work

Credit to Author: Eugene Tcheby and Tally Shea| Date: Tue, 13 Jun 2023 16:00:00 +0000

Cloud development challenges conventional thinking about risk. Sonrai integrates with Microsoft Sentinel to monitor threats across vectors and automate responses by leveraging security orchestration, automation, and response playbooks, and Microsoft Defender for Cloud to provide visibility across the entire digital estate by identifying possible attack paths and remediating vulnerabilities.

The post How Microsoft and Sonrai integrate to eliminate attack paths appeared first on Microsoft Security Blog.

Microsoft Security

Forrester names Microsoft a Leader in the 2023 Enterprise Email Security Wave

June 13, 2023 0 Comments forrester waves

Credit to Author: Rob Lefferts| Date: Mon, 12 Jun 2023 16:00:00 +0000

Microsoft Defender for Office 365 is recognized as a Leader in Forrester’s 2023 Enterprise Email Security Wave Report.

The post Forrester names Microsoft a Leader in the 2023 Enterprise Email Security Wave appeared first on Microsoft Security Blog.

Microsoft Security

Detecting and mitigating a multi-stage AiTM phishing and BEC campaign

June 9, 2023 0 Comments

Credit to Author: Microsoft Threat Intelligence| Date: Thu, 08 Jun 2023 16:00:00 +0000

Microsoft Defender Experts observed a multi-stage adversary-in-the-middle (AiTM) and business email compromise (BEC) attack targeting banking and financial services organizations over two days. This attack originated from a compromised trusted vendor, involved AiTM and BEC attacks across multiple supplier/partner organizations for financial fraud, and did not use a reverse proxy like typical AiTM attacks.

The post Detecting and mitigating a multi-stage AiTM phishing and BEC campaign appeared first on Microsoft Security Blog.

Microsoft Security

Join our digital event to learn what’s new in Microsoft Entra

June 9, 2023 0 Comments

Credit to Author: Irina Nechaeva| Date: Wed, 07 Jun 2023 16:00:00 +0000

Join us at the digital event Reimagine secure access with Microsoft Entra to explore how to make identity your first line of defense and to hear about innovative products.

The post Join our digital event to learn what’s new in Microsoft Entra appeared first on Microsoft Security Blog.

Microsoft Security

Why a proactive detection and incident response plan is crucial for your organization

June 6, 2023 0 Comments Security strategies

Credit to Author: Brooke Lynn Weenig and Matt Suiche| Date: Tue, 06 Jun 2023 16:00:00 +0000

Matt Suiche of Magnet Forensics talks about top security threats for organizations and strategies for effective incident response.

The post Why a proactive detection and incident response plan is crucial for your organization appeared first on Microsoft Security Blog.

Microsoft Security

XDR meets IAM: Comprehensive identity threat detection and response with Microsoft

June 6, 2023 0 Comments Security strategies

Credit to Author: Rob Lefferts and Alex Weinert| Date: Wed, 31 May 2023 16:00:00 +0000

Identity-based attacks are on the rise, making identity protection more important than ever. Explore our blog post to learn how Microsoft’s Identity Threat Detection and Response can help.

The post XDR meets IAM: Comprehensive identity threat detection and response with Microsoft appeared first on Microsoft Security Blog.

Microsoft Security

New macOS vulnerability, Migraine, could bypass System Integrity Protection

June 6, 2023 0 Comments

Credit to Author: Microsoft Threat Intelligence| Date: Tue, 30 May 2023 16:00:00 +0000

A new vulnerability, which we refer to as “Migraine”, could allow an attacker with root access to bypass System Integrity Protection (SIP) in macOS and perform arbitrary operations on a device.

The post New macOS vulnerability, Migraine, could bypass System Integrity Protection appeared first on Microsoft Security Blog.

Microsoft Security

Volt Typhoon targets US critical infrastructure with living-off-the-land techniques

May 24, 2023 0 Comments

Credit to Author: Microsoft Threat Intelligence| Date: Wed, 24 May 2023 19:00:00 +0000

Chinese state-sponsored actor Volt Typhoon is using stealthy techniques to target US critical infrastructure, conduct espionage, and dwell in compromised environments.

The post Volt Typhoon targets US critical infrastructure with living-off-the-land techniques appeared first on Microsoft Security Blog.