As Microsoft heads into a new fiscal year it’s time to add some new sections to the newsletter.  You will notice that the there are several familiar sections for those that have received the newsletter in the past but I have added two new sections:  Azure Security & Compliance and M365 Compliance.  The goal of adding these new sections is to provide the reader of this newsletter with a comprehensive recap of all Microsoft Security & Compliance News.

General News

• The evolution of Microsoft Threat Protection—July update
• Microsoft acquires BlueTalon, simplifying data privacy and governance across modern data estates
• Diversity and cybercrime: Solving puzzles and stopping bad guys
• Inside the MSRC – Building your own security incident response process
• Hospital fends off malware attack with Microsoft Defender Advanced Threat Protection
• Microsoft Intelligent Security Association welcomes members of the Microsoft Virus Initiative
• AI is becoming the ‘linchpin of cybersecurity’: Microsoft (video)
• Eliminating memory safety issues through safe systems programming
• Preparing your enterprise to eliminate passwords
• New machine learning model sifts through the good to unearth the bad in evasive malware
• CISO series: Better cybersecurity requires a diverse and inclusive approach to AI and machine learning

Azure Security & Compliance News

• Azure publishes guidance for secure cloud adoption by governments
• General availability for the Azure Security Center for IoT announced
• Always-on, real-time threat protection with Azure Cosmos DB – part one
• Always-on, real-time threat protection with Azure Cosmos DB – part two
• Accessing virtual machines behind Azure Firewall with Azure Bastion
• How to Create Azure Monitor Alerts for Non-Compliant Azure Policies
• Sending Proofpoint TAP logs to Azure Sentinel
• Tip: Easily use JSON fields in Sentinel
• Detect Network beaconing via Intra-Request time delta patterns in Azure Sentinel
• Threat detection for Azure service layer in Azure Security Center
• Threat detection for cloud native compute in Azure Security Center
• Threat detection for VMs & servers in Azure Security Center
• Survival Guide to Drive your Secure Score Up in Azure Security Center

Microsoft 365Security (All Up News)

• Security baseline for Office 365 ProPlus (v1907, July 2019) – DRAFT
• Delivering major enhancements in Windows Defender Application Control with the Windows 10 May 2019 Update
• Dismantling a fileless campaign: Microsoft Defender ATP’s Antivirus exposes Astaroth attack
• Microsoft 365 guest sharing settings reference
• Windows 10:  Comprehensive protection for your credentials with Credential Guard and HVCI

M365 Identity & Data Protection (Azure AD, Intune, AIP, MCAS)

• Azure AD B2B collaboration direct federation with SAML and WS-Fed providers now in public preview
• Microsoft Intune announces general availability of security baselines
• Yet another step in building a world without passwords
• Announcing the public preview of Azure AD support for FIDO2-based passwordless sign-in
• Your Pa$$word doesn’t matter
• Authentication Methods–Usage & Insights
• Zscaler drives identity management into its security cloud with Azure AD
• Azure AD Application Proxy now supports SAML-based applications!
• New Pre-Integrated Apps Available in Azure AD 
• Presenting the new Unfamiliar Sign-in Properties
• Azure Information Protection Documentation Update for July 2019
• Microsoft Intune announces support for macOS FileVault disk encryption management
• End of support for TLS 1.0 and 1.1 in Microsoft Cloud App Security
• 3 strategies for building an information protection program
• Identity Protection and B2B users
• Identity and access management, best practices for architecting in the cloud.

M365 Threat Protection (Office ATP, Windows Defender ATP, Azure ATP/ATA)

• Microsoft’s Threat & Vulnerability Management solution now generally available
• Microsoft Defender ATP alert categories are now aligned with MITRE ATT&CK!
• Microsoft Defender ATP for Mac is here!
• How automation brings value to your security teams
• MDATP Monitoring network connection behind forward proxy – Public Preview
• Microsoft Defender ATP Evaluation lab is now available in public preview
• MDATP – Download files for in-depth investigation
• The Golden Hour remake – Defining metrics for a successful security operations
• Microsoft Defender Advanced Threat Protection is now available as an offer to US GCC High customers
• Empower security teams to easily report suspicious emails & content and receive instant feedback
• Title Maximizing Your Security Posture with Azure Advanced Threat Protection
• Azure ATP:  New preview detection: Suspected NTLM authentication tampering
• MDATP Streaming API – Public Preview – DIY example
• How Windows Defender Antivirus integrates hardware-based system integrity for informed, extensive endpoint protection

M365 Compliance

• User Activity based Expiration Policy for Office 365 groups is now in Private Preview!
• Supervision policies in Office 365