Credit to Author: Todd VanderArk| Date: Tue, 17 Dec 2019 17:00:41 +0000
It’s complex work to define a security strategy for IoT—especially with a 3-million-person shortage of cybersecurity pros. But there is a way to augment existing security teams and resources.
The post How to secure your IoT deployment during the security talent shortage appeared first on Microsoft Security.
Read moreCredit to Author: Todd VanderArk| Date: Mon, 16 Dec 2019 17:00:07 +0000
As part of Microsoft’s Detection and Response Team (DART) Incident Response engagements, we regularly get asked by customers about “paying the ransom” following a ransomware attack.
The post Ransomware response—to pay or not to pay? appeared first on Microsoft Security.
Read moreCredit to Author: Todd VanderArk| Date: Fri, 13 Dec 2019 17:00:40 +0000
As artificial intelligence (AI) and machine learning systems become increasingly important to our lives, it’s critical that when they fail we understand how and why. Many research papers have been dedicated to this topic, but inconsistent vocabulary has limited their usefulness. In collaboration with Harvard University’s Berkman Klein Center, Microsoft published a series of materials that…
The post Finding a common language to describe AI security threats appeared first on Microsoft Security.
Read moreCredit to Author: Eric Avena| Date: Thu, 12 Dec 2019 17:30:26 +0000
Many of today’s threats evolve to incorporate as many living-off-the-land techniques as possible into the attack chain. The PowerShell-based downloader Trojan known as sLoad, however, puts all its bets on BITS. Background Intelligent Transfer Service (BITS) is a component of the Windows operating system that provides an ability to transfer files in an asynchronous and…
The post Multi-stage downloader Trojan sLoad abuses BITS almost exclusively for malicious activities appeared first on Microsoft Security.
Read moreCredit to Author: Todd VanderArk| Date: Thu, 12 Dec 2019 17:00:10 +0000
Microsoft Threat Intelligence Center (MSTIC) is raising awareness of the ongoing activity by a group we call GALLIUM, targeting telecommunication providers.
The post GALLIUM: Targeting global telecom appeared first on Microsoft Security.
Read moreCredit to Author: Todd VanderArk| Date: Thu, 12 Dec 2019 00:00:56 +0000
Joy Chik, Microsoft CVP, Identity, explains how passwordless works and provides steps to begin preparing your organization to eliminate passwords.
The post Go passwordless to strengthen security and reduce costs appeared first on Microsoft Security.
Read moreCredit to Author: Eric Avena| Date: Wed, 11 Dec 2019 17:00:56 +0000
In 2019, we saw phishing attacks reach new levels of creativity and sophistication. Read about the most notable phishing techniques we spotted in the past year.
The post The quiet evolution of phishing appeared first on Microsoft Security.
Read moreCredit to Author: Todd VanderArk| Date: Mon, 09 Dec 2019 17:00:03 +0000
To keep government agencies secure in the cloud, we must keep pace and stay ahead of cyber attackers by defending the cyber supply chain with Microsoft Azure.
The post Improve cyber supply chain risk management with Microsoft Azure appeared first on Microsoft Security.
Read moreCredit to Author: Todd VanderArk| Date: Tue, 03 Dec 2019 17:00:21 +0000
Gartner has named Microsoft Security a Leader in five Magic Quadrants, which demonstrates balanced progress and effort in all execution and vision categories.
The post Microsoft Security—a Leader in 5 Gartner Magic Quadrants appeared first on Microsoft Security.
Read moreCredit to Author: Todd VanderArk| Date: Mon, 02 Dec 2019 17:00:15 +0000
Spear phishing campaigns can be highly effective—but they aren’t foolproof. If you understand how they work, you can put measures in place to reduce their power.
The post Spear phishing campaigns—they’re sharper than you think appeared first on Microsoft Security.
Read more