{"id":89377,"date":"2019-05-08T09:00:18","date_gmt":"2019-05-08T16:00:18","guid":{"rendered":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/\/?p=89377"},"modified":"2023-05-15T22:57:19","modified_gmt":"2023-05-16T05:57:19","slug":"3-investments-improve-identity-management-microsoft","status":"publish","type":"post","link":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2019\/05\/08\/3-investments-improve-identity-management-microsoft\/","title":{"rendered":"3 investments Microsoft is making to improve identity management"},"content":{"rendered":"<p>As a large enterprise with global reach, Microsoft has the same security risks as its customers. We have a distributed, mobile workforce who access corporate resources from external networks. Many individuals struggle to remember complex passwords or reuse one password across many accounts, which makes them vulnerable to attackers. As Microsoft has embraced digital transformation for our own business, we shifted to a security strategy that places strong employee identities at the center. Many of our customers are on a similar journey and may find value in our current identity management approach.<\/p>\n<p>Our goal is to reduce the risk of compromised identity and empower people to be efficient and agile whether they\u2019re on our network or not.<\/p>\n<p>Our identity management solutions focus on three key areas:<\/p>\n<ul>\n<li><a href=\"https:\/\/www.microsoft.com\/en-us\/itshowcase\/improving-security-by-protecting-elevated-privilege-accounts-at-microsoft\" target=\"_blank\" rel=\"noopener noreferrer\">Securing administrator accounts<\/a>.<\/li>\n<li><a href=\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2018\/05\/01\/building-a-world-without-passwords\/\" target=\"_blank\" rel=\"noopener noreferrer\">Eliminating passwords<\/a>.<\/li>\n<li>Simplifying identity provisioning.<\/li>\n<\/ul>\n<p>Read on for more details for each of these investment areas, advice on scaling your investment to meet your budget, and a wrap-up of some key insights that can help you smoothly implement new policies.<\/p>\n<h3>Securing administrator accounts<\/h3>\n<p>Our administrators have access to Microsoft\u2019s most sensitive data and systems, which makes them a target of attackers. To improve protection of our organization, it\u2019s important to limit the number of people who have privileged access and implement elevated controls for when, how, and where administrator accounts can be used. This helps reduce the odds that a malicious actor will gain access.<\/p>\n<p>There are three practices that we advise:<\/p>\n<ul>\n<li><strong>Secure devices<\/strong>\u2014Establish a separate device for administrative tasks that is updated and patched with the most recent software and operating system. Set the security controls at high levels and prevent administrative tasks from being executed remotely.<\/li>\n<li><strong>Isolated identity<\/strong>\u2014Issue an administrator identity from a separate namespace or forest that cannot access the internet and is different from the user\u2019s information worker identity. Our administrators are required to use a smartcard to access this account.<\/li>\n<li><strong>Non-persistent access<\/strong>\u2014Provide zero rights by default to administration accounts. Require that they request just-in-time (JIT) privileges that gives them access for a finite amount of time and logs it in a system.<\/li>\n<\/ul>\n<p>Budget allocations may limit the amount that you can invest in these three areas; however, we still recommend that you do all three at the level that makes sense for your organization. Calibrate the level of security controls on the secure device to meet your risk profile.<\/p>\n<h3>Eliminating passwords<\/h3>\n<p>The security community has recognized for several years that passwords are not safe. Users struggle to create and remember dozens of complex passwords, and attackers excel at acquiring passwords through methods like password spray attacks and phishing. When Microsoft first explored the use of Multi-Factor Authentication (MFA) for our workforce, we issued smartcards to each employee. This was a very secure authentication method; however, it was cumbersome for employees. They found workarounds, such as forwarding work email to a personal account, that made us less safe.<\/p>\n<p>Eventually we realized that eliminating passwords was a much better solution. This drove home an important lesson: as you institute policies to improve security, always remember that a great user experience is critical for adoption.<\/p>\n<p>Here are steps you can take to prepare for a password-less world:<\/p>\n<ul>\n<li><strong>Enforce MFA<\/strong>\u2014Conform to the fast identity online (FIDO) 2.0 standard, so you can require a PIN and a biometric for authentication rather than a password. Windows Hello is one good example, but choose the MFA method that works for your organization.<\/li>\n<li><strong>Reduce legacy authentication workflows<\/strong>\u2014Place apps that require passwords into a separate user access portal and migrate users to modern authentication flows most of the time. At Microsoft only 10 percent of our users enter a password on a given day.<\/li>\n<li><strong>Remove passwords<\/strong>\u2014Create consistency across Active Directory and <a href=\"https:\/\/azure.microsoft.com\/en-us\/services\/active-directory\/\" target=\"_blank\" rel=\"noopener noreferrer\">Azure Active Directory (Azure AD)<\/a> to enable administrators to remove passwords from identity directory.<\/li>\n<\/ul>\n<h3>Simplifying identity provisioning<\/h3>\n<p>We believe the most underrated identity management step you can take is to simplify identity provisioning. Set up your identities with access to exactly the right systems and tools. If you provide too much access, you put the organization at risk if the identity becomes compromised. However, under-provisioning may encourage people to request access for more than they need in order to avoid requesting permission again.<\/p>\n<p>We take these two approaches:<\/p>\n<ul>\n<li><strong>Set up role-based access<\/strong>\u2014Identify the systems, tools, and resources that each role needs to do their job. Establish access rules that make it easy to give a new user the right permissions when you set up their account or they change roles.<\/li>\n<li><strong>Establish an identity governance process<\/strong>\u2014Make sure that as people move roles they don\u2019t carry forward access they no longer need.<\/li>\n<\/ul>\n<p>Establishing the right access for each role is so important that if you are only able to follow one of our recommendations focus on identity provisioning and lifecycle management.<\/p>\n<h3>What we learned<\/h3>\n<p>As you take steps to improve your identity management, keep in mind the following lessons Microsoft has learned along the way:<\/p>\n<ul>\n<li><strong>Enterprise-level cultural shifts<\/strong>\u2014Getting the technology and hardware resources for a more secure enterprise can be difficult. Getting people to modify their behavior is even harder. To successfully roll out a new initiative, plan for enterprise-level cultural shifts.<\/li>\n<li><strong>Beyond the device<\/strong>\u2014Strong identity management works hand-in-hand with healthy devices.<\/li>\n<li><strong>Security starts at provisioning<\/strong>\u2014Don\u2019t put governance off until later. Identity governance is crucial to ensure that companies of all sizes can audit the access privileges of all accounts. Invest early in capabilities that give the right people access to the right things at the right time.<\/li>\n<li><strong>User experience<\/strong>\u2014We found that if you combine user experience factors with security best practices, you get the best outcome.<\/li>\n<\/ul>\n<h3>Learn more<\/h3>\n<p>For more details on how identity management fits within the overall Microsoft security framework and our roadmap forward, watch the <a href=\"https:\/\/info.microsoft.com\/US-SCRTY-WBNR-FY19-02Feb-12-Speakingofsecurity-Identitymanagement-1341_01Registration-ForminBody.html\" target=\"_blank\" rel=\"noopener noreferrer\">Speaking of security: Identity management<\/a> webinar.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Learn how Microsoft approaches identity management with tips you can apply to your own organization\u2014no matter your budget.<\/p>\n","protected":false},"author":96,"featured_media":89438,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"ep_exclude_from_search":false,"_classifai_error":"","footnotes":""},"content-type":[3659],"topic":[3673,3678],"products":[3702,3703],"threat-intelligence":[],"tags":[3809],"coauthors":[1916],"class_list":["post-89377","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","content-type-best-practices","topic-identity-and-access-management","topic-multifactor-authentication","products-microsoft-entra","products-microsoft-entra-id","tag-security-strategies"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v23.9 - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>3 investments Microsoft is making to improve identity management<\/title>\n<meta name=\"description\" content=\"Learn how Microsoft approaches identity management with tips you can apply to your own organization\u2014no matter your budget.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2019\/05\/08\/3-investments-improve-identity-management-microsoft\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"3 investments Microsoft is making to improve identity management\" \/>\n<meta property=\"og:description\" content=\"Learn how Microsoft approaches identity management with tips you can apply to your own organization\u2014no matter your budget.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2019\/05\/08\/3-investments-improve-identity-management-microsoft\/\" \/>\n<meta property=\"og:site_name\" content=\"Microsoft Security Blog\" \/>\n<meta property=\"article:published_time\" content=\"2019-05-08T16:00:18+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2023-05-16T05:57:19+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-content\/uploads\/2019\/05\/3-investments-Microsoft-is-making-full-size.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"2000\" \/>\n\t<meta property=\"og:image:height\" content=\"1200\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"Microsoft Security Team\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:image\" content=\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-content\/uploads\/2019\/05\/3-investments-Microsoft-is-making-full-size.jpg\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Microsoft Security Team\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"4 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2019\/05\/08\/3-investments-improve-identity-management-microsoft\/#article\",\"isPartOf\":{\"@id\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2019\/05\/08\/3-investments-improve-identity-management-microsoft\/\"},\"author\":[{\"@id\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/author\/microsoft-secure-blog-staff\/\",\"@type\":\"Person\",\"@name\":\"Microsoft Security Team\"}],\"headline\":\"3 investments Microsoft is making to improve identity management\",\"datePublished\":\"2019-05-08T16:00:18+00:00\",\"dateModified\":\"2023-05-16T05:57:19+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2019\/05\/08\/3-investments-improve-identity-management-microsoft\/\"},\"wordCount\":983,\"publisher\":{\"@id\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/#organization\"},\"image\":{\"@id\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2019\/05\/08\/3-investments-improve-identity-management-microsoft\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-content\/uploads\/2019\/05\/3-investments-Microsoft-is-making-banner.jpg\",\"keywords\":[\"Security strategies\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2019\/05\/08\/3-investments-improve-identity-management-microsoft\/\",\"url\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2019\/05\/08\/3-investments-improve-identity-management-microsoft\/\",\"name\":\"3 investments Microsoft is making to improve identity management\",\"isPartOf\":{\"@id\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2019\/05\/08\/3-investments-improve-identity-management-microsoft\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2019\/05\/08\/3-investments-improve-identity-management-microsoft\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-content\/uploads\/2019\/05\/3-investments-Microsoft-is-making-banner.jpg\",\"datePublished\":\"2019-05-08T16:00:18+00:00\",\"dateModified\":\"2023-05-16T05:57:19+00:00\",\"description\":\"Learn how Microsoft approaches identity management with tips you can apply to your own organization\u2014no matter your budget.\",\"breadcrumb\":{\"@id\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2019\/05\/08\/3-investments-improve-identity-management-microsoft\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2019\/05\/08\/3-investments-improve-identity-management-microsoft\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2019\/05\/08\/3-investments-improve-identity-management-microsoft\/#primaryimage\",\"url\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-content\/uploads\/2019\/05\/3-investments-Microsoft-is-making-banner.jpg\",\"contentUrl\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-content\/uploads\/2019\/05\/3-investments-Microsoft-is-making-banner.jpg\",\"width\":1600,\"height\":600,\"caption\":\"People working outside a security department.\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2019\/05\/08\/3-investments-improve-identity-management-microsoft\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"3 investments Microsoft is making to improve identity management\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/#website\",\"url\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/\",\"name\":\"Microsoft Security Blog\",\"description\":\"Expert coverage of cybersecurity topics\",\"publisher\":{\"@id\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/#organization\",\"name\":\"Microsoft Security Blog\",\"url\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-content\/uploads\/2018\/08\/cropped-cropped-microsoft_logo_element.png\",\"contentUrl\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-content\/uploads\/2018\/08\/cropped-cropped-microsoft_logo_element.png\",\"width\":512,\"height\":512,\"caption\":\"Microsoft Security Blog\"},\"image\":{\"@id\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/#\/schema\/logo\/image\/\"}}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"3 investments Microsoft is making to improve identity management","description":"Learn how Microsoft approaches identity management with tips you can apply to your own organization\u2014no matter your budget.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2019\/05\/08\/3-investments-improve-identity-management-microsoft\/","og_locale":"en_US","og_type":"article","og_title":"3 investments Microsoft is making to improve identity management","og_description":"Learn how Microsoft approaches identity management with tips you can apply to your own organization\u2014no matter your budget.","og_url":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2019\/05\/08\/3-investments-improve-identity-management-microsoft\/","og_site_name":"Microsoft Security Blog","article_published_time":"2019-05-08T16:00:18+00:00","article_modified_time":"2023-05-16T05:57:19+00:00","og_image":[{"width":2000,"height":1200,"url":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-content\/uploads\/2019\/05\/3-investments-Microsoft-is-making-full-size.jpg","type":"image\/jpeg"}],"author":"Microsoft Security Team","twitter_card":"summary_large_image","twitter_image":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-content\/uploads\/2019\/05\/3-investments-Microsoft-is-making-full-size.jpg","twitter_misc":{"Written by":"Microsoft Security Team","Est. reading time":"4 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2019\/05\/08\/3-investments-improve-identity-management-microsoft\/#article","isPartOf":{"@id":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2019\/05\/08\/3-investments-improve-identity-management-microsoft\/"},"author":[{"@id":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/author\/microsoft-secure-blog-staff\/","@type":"Person","@name":"Microsoft Security Team"}],"headline":"3 investments Microsoft is making to improve identity management","datePublished":"2019-05-08T16:00:18+00:00","dateModified":"2023-05-16T05:57:19+00:00","mainEntityOfPage":{"@id":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2019\/05\/08\/3-investments-improve-identity-management-microsoft\/"},"wordCount":983,"publisher":{"@id":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/#organization"},"image":{"@id":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2019\/05\/08\/3-investments-improve-identity-management-microsoft\/#primaryimage"},"thumbnailUrl":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-content\/uploads\/2019\/05\/3-investments-Microsoft-is-making-banner.jpg","keywords":["Security strategies"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2019\/05\/08\/3-investments-improve-identity-management-microsoft\/","url":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2019\/05\/08\/3-investments-improve-identity-management-microsoft\/","name":"3 investments Microsoft is making to improve identity management","isPartOf":{"@id":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2019\/05\/08\/3-investments-improve-identity-management-microsoft\/#primaryimage"},"image":{"@id":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2019\/05\/08\/3-investments-improve-identity-management-microsoft\/#primaryimage"},"thumbnailUrl":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-content\/uploads\/2019\/05\/3-investments-Microsoft-is-making-banner.jpg","datePublished":"2019-05-08T16:00:18+00:00","dateModified":"2023-05-16T05:57:19+00:00","description":"Learn how Microsoft approaches identity management with tips you can apply to your own organization\u2014no matter your budget.","breadcrumb":{"@id":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2019\/05\/08\/3-investments-improve-identity-management-microsoft\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.microsoft.com\/en-us\/security\/blog\/2019\/05\/08\/3-investments-improve-identity-management-microsoft\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2019\/05\/08\/3-investments-improve-identity-management-microsoft\/#primaryimage","url":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-content\/uploads\/2019\/05\/3-investments-Microsoft-is-making-banner.jpg","contentUrl":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-content\/uploads\/2019\/05\/3-investments-Microsoft-is-making-banner.jpg","width":1600,"height":600,"caption":"People working outside a security department."},{"@type":"BreadcrumbList","@id":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2019\/05\/08\/3-investments-improve-identity-management-microsoft\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/"},{"@type":"ListItem","position":2,"name":"3 investments Microsoft is making to improve identity management"}]},{"@type":"WebSite","@id":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/#website","url":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/","name":"Microsoft Security Blog","description":"Expert coverage of cybersecurity topics","publisher":{"@id":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/#organization","name":"Microsoft Security Blog","url":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/#\/schema\/logo\/image\/","url":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-content\/uploads\/2018\/08\/cropped-cropped-microsoft_logo_element.png","contentUrl":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-content\/uploads\/2018\/08\/cropped-cropped-microsoft_logo_element.png","width":512,"height":512,"caption":"Microsoft Security Blog"},"image":{"@id":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/#\/schema\/logo\/image\/"}}]}},"msxcm_display_generated_audio":false,"distributor_meta":false,"distributor_terms":false,"distributor_media":false,"distributor_original_site_name":"Microsoft Security Blog","distributor_original_site_url":"https:\/\/www.microsoft.com\/en-us\/security\/blog","push-errors":false,"_links":{"self":[{"href":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-json\/wp\/v2\/posts\/89377"}],"collection":[{"href":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-json\/wp\/v2\/users\/96"}],"replies":[{"embeddable":true,"href":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-json\/wp\/v2\/comments?post=89377"}],"version-history":[{"count":0,"href":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-json\/wp\/v2\/posts\/89377\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-json\/wp\/v2\/media\/89438"}],"wp:attachment":[{"href":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-json\/wp\/v2\/media?parent=89377"}],"wp:term":[{"taxonomy":"content-type","embeddable":true,"href":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-json\/wp\/v2\/content-type?post=89377"},{"taxonomy":"topic","embeddable":true,"href":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-json\/wp\/v2\/topic?post=89377"},{"taxonomy":"products","embeddable":true,"href":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-json\/wp\/v2\/products?post=89377"},{"taxonomy":"threat-intelligence","embeddable":true,"href":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-json\/wp\/v2\/threat-intelligence?post=89377"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-json\/wp\/v2\/tags?post=89377"},{"taxonomy":"author","embeddable":true,"href":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-json\/wp\/v2\/coauthors?post=89377"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}