Microsoft Defender for Endpoint News and Insights

An employee in the tech industry works at a standing desk in UK office.

Feb 22, 2021

3 min read

What we like about Microsoft Defender for Endpoint

Microsoft Defender for Endpoint provides the right security intelligence for Expel to analyze rich data and provide support for their customers.

Feb 11, 2021

9 min read

Web shell attacks continue to rise

A year ago, we reported the steady increase in the use of web shells in attacks worldwide. The latest Microsoft 365 Defender data shows that this trend not only continued, it accelerated. Read our investigation into the escalating prevalence of web shells.

Commercial contextual lifestyle image of adult female working in Azure on Surface Book 3 inside.

Jan 21, 2021

3 min read

Blue Cedar partners with Microsoft to combat BYOD issues

IT and security teams have been searching for a solution to accommodate BYOD that won’t compromise network security.

Jan 14, 2021

11 min read

Increasing resilience against Solorigate and other sophisticated attacks with Microsoft Defender

This blog is a guide for security administrators using Microsoft 365 Defender and Azure Defender to identify and implement security configuration and posture improvements that harden enterprise environments against Solorigate’s attack patterns.

Dec 18, 2020

17 min read

Analyzing Solorigate, the compromised DLL file that started a sophisticated cyberattack, and how Microsoft Defender helps protect customers

We, along with the security industry and our partners, continue to investigate the extent of the Solorigate attack. While investigations are underway, we want to provide the defender community with intel to understand the scope and impact, remediation guidance, and detections and protections we have built as a result.

Dec 9, 2020

4 min read

EDR in block mode stops IcedID cold

Endpoint detection and response (EDR) in block mode in Microsoft Defender for Endpoint turns EDR detections into real-time blocking of threats. Learn how it stopped an IcedID attack.

Looking into a conference room or board room meeting including people sitting around table in a room with international time clocks.

Dec 8, 2020

2 min read

Digital Defense integrates with Microsoft to detect attacks missed by traditional endpoint security

Cybercriminals have ramped up their initial compromises through phishing and pharming attacks using a variety of tools and tactics that, while numerous, are simple and can often go undetected.

Sep 22, 2020

8 min read

Microsoft announces cloud innovation to simplify security, compliance, and identity

Simplifying security, compliance, and identity: Announcing Microsoft Defender, enhancements to Data Loss Prevention, and decentralized identity pilots

An image of a man in hooded sweater/sweatshirt inside a secure room who is looking at data and a geographic area displayed on a large monitor which is behind glass walls with reflections.

Aug 24, 2020

<1 minute read

Microsoft and Corrata integrate to extend cloud app security to mobile endpoints

Corrata’s Microsoft Cloud App Security integration addresses risk mitigation through endpoint-based discovery and control for cloud apps.

An image of a group of tech workers having a meeting around a table.

Aug 20, 2020

2 min read

Gartner announces the 2020 Magic Quadrant for Unified Endpoint Management

Gartner has listed Microsoft as a Leader in its 2020 Magic Quadrant for Unified Endpoint Management.

Jun 24, 2020

12 min read

Defending Exchange servers under attack

Exchange servers are high-value targets. These attacks also tend to be advanced threats with highly evasive, fileless techniques. Keeping these servers safe from these advanced attacks is of utmost importance.

Image of two executives in the tech industry chat while seated in common area of UK office.

Jun 23, 2020

4 min read

CISO Stressbusters: 4 tips for getting the first 6 months right as a new CISO

CISO Stressbusters: CISO guidance and support from around the world.