Wow!! What a month of Microsoft Security & Compliance Announcements.  There’s a little bit of everything in this edition with new product features to Gartner MQ updates.  As with every month, all the content is great but the ones that are italicized are worth prioritizing.

General News

• Microsoft: Russian state hackers are using IoT devices to breach enterprise networks
• IT Governance: Everyone needs it even when they think they don’t
• Microsoft’s confidential computing improves security for banks
• Tips for securing your privileged accounts
• Windows Server vNext Extending support for FIDO2 security keys to hybrid environments
• European power company energizes its security and governance with cloud monitoring tools
• How offense and defense came together to plug a hole in a popular Microsoft program
• IT company automates security, adds value to offerings for midsize customers with Azure Sentinel
• JASK Deepens Visibility to Security Data Through Advanced SIEM Platform and Joins Microsoft Intelligent Security Association
• From unstructured data to actionable intelligence: Using machine learning for threat intelligence
• From MSFT DART:  Protect against BlueKeep
• Advancing Windows Security
• MSRC:  August 2019 Security Update
• Microsoft, in partnership with EY and Edelman, created this very cool Incident Response Reference Guide
• Join us on Sunday, November 3^rd Microsoft Cybersecurity Summit
• MSRC:  Scalable infrastructure for investigations and incident response

Azure Security & Compliance News

• Detect Network beaconing via Intra-Request time delta patterns in Azure Sentinel
• Microsoft Opens Azure Security Lab, Raises Top Azure Bounty to $40K
• Cross-tenant management is now supported in Azure Security Center
• Azure Security Center launched new SQL recommendations
• Secure connectivity from On-Premise to Azure Database for MySQL using Point-to-Site Gateway
• Better security with enhanced access control experience in Azure Files
• Collecting Azure PaaS services logs in Azure Sentinel
• Securing Connectivity to Azure Database for PostgreSQL
• Azure Sentinel The Syslog and CEF source configuration grand list
• Azure Sentinel Agent: Collecting telemetry from on-prem and IaaS server
• Azure Security Center single click remediation and Azure Firewall JIT support
• Just-in-time (JIT) VM access for Azure Firewall is now generally available
• Upcoming Changes to Fusion in Azure Sentinel
• Azure Security Center Monitoring Agent Deployment Options
• Azure Event Hubs support for Azure Active Directory based access control generally available!
• Best practices for designing an Azure Sentinel or Azure Security Center Log Analytics workspace
• Set up automated threat responses in Azure Sentinel Preview
• Announcing the General Availability of SQL Data Discovery & Classification
• Azure Security Center Webinar: Secure Score (Webinar)

Microsoft 365Security (All Up News)

• Check out the Microsoft Graph Security sample application!
• Allow Microsoft Teams External Chat While Securing Guest Access
• Introducing the new Microsoft Graph Security API add-on for Splunk!
• Microsoft 365 Tenant-Level Services Licensing Guidance

M365 Identity & Data Protection (Azure AD, Intune, AIP, MCAS)

• KuppingerCole names Microsoft the top overall IDaaS leader
• 
• Microsoft once again a leader in the Gartner MQ for Access Management
• AAD Dynamic Groups, Controlled MFA Registration, Intune + Admin Templates and AIP Log Analytics
• Understanding Unified Labeling migration
• New Exact Data Match (EDM) classification helps you better detect and protect sensitive information
• Azure AD provisioning, now with more apps and better insights
• monday.com jumpstarts onboarding enterprise clients with Azure AD Single Sign-On
• One simple action you can take to prevent 99.9 percent of attacks on your accounts
• Azure AD Mailbag: Tips for Azure AD reporting and monitoring your day-to-day activities
• Advanced security for any app in your organization
• Azure Information Protection Documentation Update for August 2019
• AzureAD custom roles are in public preview now!
• Understanding Unified Labeling migration
• Intro to querying Azure AD sign-in and audit logs held in Azure Monitor from PowerShell
• Azure AD Application Proxy enables access to on-premises reports from Power BI Mobile application
• Announcing the general availability of two key features in Azure AD B2C
• Example how to create Azure AD access reviews using Microsoft Graph app permissions with PowerShell
• What’s new with Microsoft Cloud App Security
• Germany-based machinery provider expands global footprint with Azure AD B2C
• Learn how to deploy Azure AD from the experts (Webinar Series)

M365 Threat Protection (Office ATP, Windows Defender ATP, Azure ATP/ATA)

• Gartner names Microsoft a Leader in 2019 Endpoint Protection Platforms Magic Quadrant
• General availability of Microsoft Defender Advanced Threat Protection for US GCC High customers
• Microsoft Defender ATP Streaming API – Public Preview – DIY example
• Advanced hunting updates: USB events, machine-level actions, and schema changes
• ZDNet: Top Windows Defender expert: These are the threats security hasn’t yet solved
• PCMag:  Windows Defender Achieves ‘Best Antivirus’ Status
• Customize and schedule mail protection reports in Office 365 to be automatically sent to your inbox
• Blue Hexagon Integrates With Microsoft Defender Advanced Threat Protection (ATP) For Real-time Prevention Against Cyberattacks
• MetaDefender ICAP with Windows Defender Antivirus: World-class security for hybrid environments
• TechRepublic:  Microsoft’s new vulnerability tracking service is about IT productivity
• How Microsoft Advanced Threat Protection is helping NHS trusts improve their cyber security (Video)
• Microsoft Defender ATP ‘Ask Me Anything’ August 2019 – Summary
• AttackIQ Integrates With Microsoft to Validate Endpoint Configuration and Controls of Microsoft Defender Advanced Threat Protection (ATP)
• Texas-based healthcare system boosts protection for 30,000 devices in less than a month
• Hunting for reconnaissance activities using LDAP search filters
• The built-in antivirus on Windows 10 continues to achieve top scores in industry tests!

M365 Compliance & Governance

• Register now for the Compliance pre-day at Microsoft Ignite on 11/3/2019
• Journaling can help your organization respond to legal, regulatory, and organizational compliance requirements
• An optimal Guide to configure a basic Governance Team for Office 365?