Microsoft Security—detecting empires in the cloud
Microsoft threat analysts have detected another evolution in GADOLINIUM’s tooling that the security community should understand when establishing defenses.
Microsoft delivers unified SIEM and XDR to modernize security operations
The new Microsoft Defender is the most comprehensive XDR in the market today and prevents, detects, and responds to threats across identities, endpoints, applications, email, IoT, infrastructure, and cloud platforms.
Microsoft announces cloud innovation to simplify security, compliance, and identity
Simplifying security, compliance, and identity: Announcing Microsoft Defender, enhancements to Data Loss Prevention, and decentralized identity pilots
Vectra and Microsoft join forces to step up detection and response
SOCs combine NDR visibility with EDR insight, couples them with analytics from sources in the SIEM to detect and stop attacks evading perimeter defenses.
Accelerate your adoption of SIEM using Azure Sentinel and a new offer from Microsoft
Security operations teams need the cost savings and efficiency benefits of the cloud now more than ever. Accelerate your adoption of Azure Sentinel with an Azure credit offer.
Microsoft Security: How to cultivate a diverse cybersecurity team
A diverse cybersecurity team will help you generate the innovative ideas you need to confront today and tomorrow’s cyber threats.
Empower your analysts to reduce burnout in your security operations center
Strategic use of automation and metrics can help you create a continuous learning culture that keeps your team engaged in the work.
Making Azure Sentinel work for you
A new white paper outlines best practice recommendations for configuring data sources for incident response and proactively hunting for threats using Azure Sentinel.
Lessons learned from the Microsoft SOC—Part 3d: Zen and the art of threat hunting
This blog provides lessons learned on how Microsoft hunts for threats in our IT environment and how you can apply these lessons to building or improving your threat hunting program. This is the seventh in a series.
Feeling fatigued? Cloud-based SIEM relieves security team burnout
Most CISOs and CSOs are worried that a growing volume of alerts is causing burnout among their teams, according to new research from IDG.
Modernizing the security operations center to better secure a remote workforce
The modern SOC will use machine learning to help humans protect organizations in a multi-cloud, IoT world.
Open-sourcing new COVID-19 threat intelligence
While the world faces the common threat of COVID-19, defenders are working overtime to protect users all over the globe from cyber-criminals using COVID-19 as a lure to mount attacks.