Microsoft – Page 35 – PossibleThreat Articles

Credit to Author: Microsoft 365 Defender Threat Intelligence Team| Date: Thu, 22 Sep 2022 16:00:00 +0000

Microsoft discovered an attack where attackers installed a malicious OAuth application in compromised tenants and used their Exchange servers to launch spam runs.

The post Malicious OAuth applications used to compromise email servers and spread spam appeared first on Microsoft Security Blog.

Microsoft Security

Rewards plus: Fake mobile banking rewards apps lure users to install info-stealing RAT on Android devices

September 21, 2022 0 Comments cybersecurity, Microsoft security intelligence, Mobile Security, mobile threats

Credit to Author: Microsoft 365 Defender Threat Intelligence Team| Date: Wed, 21 Sep 2022 17:00:00 +0000

A fake mobile banking rewards app delivered through a link in an SMS campaign has been making the rounds, targeting customers of Indian banking institutions. Users who install the mobile app are unknowingly installing an Android malware with remote access trojan (RAT) capabilities.

The post Rewards plus: Fake mobile banking rewards apps lure users to install info-stealing RAT on Android devices appeared first on Microsoft Security Blog.

Microsoft Security

The art and science behind Microsoft threat hunting: Part 2

September 21, 2022 0 Comments cybersecurity, dart, microsoft detection and response team (dart), Threat protection

Credit to Author: Matt Thomas| Date: Wed, 21 Sep 2022 16:00:00 +0000

In this follow-up post in our series about threat hunting, we talk about some general hunting strategies, frameworks, tools, and how Microsoft incident responders work with threat intelligence.

The post The art and science behind Microsoft threat hunting: Part 2 appeared first on Microsoft Security Blog.

Microsoft Security

New Windows 11 security features are designed for hybrid work

September 20, 2022 0 Comments cybersecurity

Credit to Author: Christine Barrett| Date: Tue, 20 Sep 2022 17:00:00 +0000

With Windows 11, you can protect your valuable data and enable secure hybrid work with the latest advanced security. We’re proud to announce the new security features you heard about this spring are now available.

The post New Windows 11 security features are designed for hybrid work appeared first on Microsoft Security Blog.

Microsoft Security

Test your team’s security readiness with the Gone Phishing Tournament

September 15, 2022 0 Comments cybersecurity

Credit to Author: Christine Barrett| Date: Thu, 15 Sep 2022 16:00:00 +0000

In partnership with Microsoft, Terranova created the Gone Phishing Tournament, an online phishing initiative that uses real-world simulations to establish accurate phishing clickthrough rates and additional benchmarking statistics for user behaviors.

The post Test your team’s security readiness with the Gone Phishing Tournament appeared first on Microsoft Security Blog.

Microsoft Security

Implementing a Zero Trust strategy after compromise recovery

September 14, 2022 0 Comments cybersecurity

Credit to Author: Matt Thomas| Date: Wed, 14 Sep 2022 16:00:00 +0000

After a compromise recovery follows what we call a Security Strategic Recovery. This is the plan for moving forward to get up to date with security posture all over the environment. The plan consists of different components like securing privileged access and extended detection and response, but it all points in the same direction: moving ahead with Zero Trust Strategy over traditional network-based security.

The post Implementing a Zero Trust strategy after compromise recovery appeared first on Microsoft Security Blog.

Microsoft Security

Secure your endpoints with Transparity and Microsoft

September 13, 2022 0 Comments cybersecurity, Microsoft Intelligent Security Association (MISA), misa

Credit to Author: Christine Barrett| Date: Tue, 13 Sep 2022 16:00:00 +0000

When it comes to cybersecurity, the ability to normalize and correlate disparate logs from different devices, appliances, and resources is key, as is the ability to react quickly when under attack. In this blog post, we explore the importance of EPP as an essential component in your security strategy.

The post Secure your endpoints with Transparity and Microsoft appeared first on Microsoft Security Blog.

Microsoft Security

The art and science behind Microsoft threat hunting: Part 1

September 8, 2022 0 Comments cybersecurity, Detection and Response Team (DART), microsoft security experts, Threat protection

Credit to Author: Christine Barrett| Date: Thu, 08 Sep 2022 16:00:00 +0000

At Microsoft, we define threat hunting as the practice of actively looking for cyberthreats that have covertly (or not so covertly) penetrated an environment. This involves looking beyond the known alerts or malicious threats to discover new potential threats and vulnerabilities.

The post The art and science behind Microsoft threat hunting: Part 1 appeared first on Microsoft Security Blog.

Microsoft Security

Microsoft investigates Iranian attacks against the Albanian government

September 8, 2022 0 Comments cybersecurity, europium, Microsoft security intelligence

Credit to Author: Paul Oliveria| Date: Thu, 08 Sep 2022 15:00:00 +0000

Shortly after the destructive cyberattacks on the Albanian government in mid-July, the Microsoft Detection and Response Team (DART) was engaged to lead an investigation into the attacks.

The post Microsoft investigates Iranian attacks against the Albanian government appeared first on Microsoft Security Blog.

Microsoft Security

Profiling DEV-0270: PHOSPHORUS’ ransomware operations

September 7, 2022 0 Comments cybersecurity, Microsoft security intelligence, phosphorus

Credit to Author: Paul Oliveria| Date: Wed, 07 Sep 2022 21:00:00 +0000

Microsoft threat intelligence teams have been tracking multiple ransomware campaigns tied to DEV-0270, also known as Nemesis Kitten, a sub-group of Iranian actor PHOSPHORUS.

The post Profiling DEV-0270: PHOSPHORUS’ ransomware operations appeared first on Microsoft Security Blog.