Thursday, October 7, 2021

Microsoft Security Matters - September 2021 Edition

General News

A guide to combatting human-operated ransomware: Part 2

FoggyWeb: Targeted NOBELIUM malware leads to persistent backdoor

How nation-state attackers like NOBELIUM are changing cybersecurity

Catching the big fish: Analyzing a large-scale phishing-as-a-service operation

3 trends shaping identity as the center of modern security - Microsoft Security Blog

Security concept: Audit Trail - Microsoft Tech Community

Analyzing attacks that exploit the CVE-2021-40444 MSHTML vulnerability - Microsoft Security Blog

Unusual MIRAI variant looks for mining infrastructure - Microsoft Tech Community

3 steps to prevent and recover from ransomware - Microsoft Security Blog

 

Azure Defender & Sentinel News

General Availability of Azure Sentinel Threat Intelligence in Public and Azure Government cloud

Monitoring Azure Sentinel Analytical Rules – Push Health Notifications

Querying WHOIS/Registration Data Access Protocol (RDAP) with Azure Sentinel and Azure Functions

The Azure Sentinel Anomalies Simulator

Hunting for OMI Vulnerability Exploitation with Azure Sentinel

Azure Sentinel Notebooks Ninja Part 3: Overview of the Pre-built Notebooks - the Grand List - Microsoft Tech Community

Azure Sentinel To-Go! A Linux :penguin: Lab with AUOMS Set Up to Learn About the OMI Vulnerability :collision: - Microsoft Tech Community

Azure Sentinel Information Model Fall Release: Speed & Ease - Microsoft Tech Community

Azure sovereign clouds, Matrix visualization, Process Tree update in MSTICPy 1.4 (microsoft.com)

Azure Sentinel Notebooks Ninja Part 2: Getting Started with Azure Sentinel Notebooks - Microsoft Tech Community

Checking the health of your ADX cluster for long-term retention logs (microsoft.com)

What's New: Azure Sentinel - SOC Process Framework 8 Part Video Series! - Microsoft Tech Community

Azure Sentinel Ninja Training - the Sept 2021 update - Microsoft Tech Community

Using ASC to find machines affected by OMI vulnerabilities in Azure VM Management Extensions - Microsoft Tech Community

Azure Defender PoC Series - Azure Defender for Servers - Microsoft Tech Community

Introducing the Network Security Dashboard for Security Center (microsoft.com)

Sharing access to Workbooks in Azure Security Center - Microsoft Tech Community

Streamline your DDoS management with new Azure Firewall Manager capabilities

Boost your network security with new updates to Azure Firewall | Azure Blog and Updates | Microsoft Azure

 

Microsoft 365 Security (All Up News)

Basic Authentication and Exchange Online – September 2021 Update - Microsoft Tech Community

 

M365 Identity & Device Protection (Azure AD, Intune)

CloudKnox acquisition: what’s available now and what’s coming soon

Announcing Improved Identity Protection Signal Quality and Visibility - Microsoft Tech Community

Announcing General Availability of Azure AD-joined VMs support for Azure Virtual Desktop - Microsoft Tech Community

 

M365 Defender (Defender for Office, Defender for Endpoint, Defender for Identity, MCAS)

Defend against zero-day exploits with Microsoft Defender Application Guard

Microsoft Cloud App Security (MCAS) Ninja Training | September 2021 - Microsoft Tech Community

Attack Simulation Training: Service Availability in New Regions - Microsoft Tech Community

Microsoft Defender for Identity - new exclusion settings now in Public Preview - Microsoft Tech Community

The Attack Simulation Training landing page is now customizable - Microsoft Tech Community

Announcing Enhanced Malicious OAuth Activity Detection Capabilities in App Governance - Microsoft Tech Community

Microsoft Defender for Endpoint Device Control Device Installation update

Announcing performance analyzer for Microsoft Defender Antivirus - Microsoft Tech Community

Zero Trust and CMMC Compliance with Microsoft Defender for Identity - Microsoft Tech Community

Automatically triage phish submissions in Microsoft Defender for Office 365

 

M365 Compliance & Governance

Become a Microsoft 365 Advanced eDiscovery Ninja - Microsoft Tech Community

Co-authoring on Microsoft Information Protection encrypted documents is now generally available - Microsoft Tech Community

Announcing Microsoft 365 Endpoint Data Loss Prevention public preview to US government customers - Microsoft Tech Community

Microsoft Unified DLP update September 2021

 

Posted at https://sl.advdat.com/3aih3b2