Everyone hold on because it will be a wild ride of news filled week for Microsoft Security Matters Newsletter.  As normal, provided below is the recap of last month’s (Oct 2019) Microsoft Security News.  Later this week, I will have a Microsoft Ignite wrap that will focus on Microsoft Security and there is a ton of great news plus new product features.

 For awareness, in addition to the monthly newsletter, I am publishing a weekly version that can be accessed here.  Make sure to bookmark this link to get the great content below on a weekly basis.

General News

• Recent cyberattacks require us all to be vigilant
• New Secured-core PC requirements designed to protect against targeted firmware attacks
• New cyberattacks targeting sporting and anti-doping organizations

Azure Security & Compliance News

• Azure Sentinel: Collecting logs from Microsoft Services and Applications
• Measuring your return on investment of Azure as a compliance platform
• Identifying Threat Hunting opportunities in your data
• Integrating Azure Security Center with Azure Sentinel
• Accessing Azure Security Center Alerts in Splunk using Graph Security API Integration
• Table Level RBAC In Azure Sentinel
• How to use Azure Monitor Workbooks to map Sentinel data

Microsoft 365Security (All Up News)

• Bringing the security and manageability of Windows for IoT to the intelligent edge
• Virtualization-Based Security: Enabled by Default
• Security baseline (Sept2019Update) for Windows 10 v1903 and Windows Server v1903
• Extended Security Updates and Configuration Manager
• Assessing your Zero Trust readiness with the Microsoft Maturity Model
• Microsoft’s Zero Trust journey
• Security baseline (DRAFT) for Chromium-based Microsoft Edge, version 78

M365 Identity & Data Protection (Azure AD, Intune, AIP, MCAS)

• All your creds are belong to us!
• New capability simplifies bulk management for users and groups
• How to Restrict Access to AIP Audit Logs to a Single Country or Region
• 16 new built-in roles—including Global reader—now available in preview
• Announcing ServiceNow, Microsoft Teams and Planner integration with Microsoft Secure Score
• Users can now check their sign-in history for unusual activity
• Microsoft Intune helps high-security customers authenticate using derived credentials on mobile
• Staged rollout to cloud authentication now in public preview
• Introducing Endpoint Security node within the improved Microsoft Device Management
• Protect your highly regulated files in Teams with Microsoft 365 Enterprise
• Azure Information Protection Documentation Update for October 2019

M365 Threat Protection (Office ATP, Windows Defender ATP, Azure ATP/ATA)

• Forrester names Microsoft a Leader in 2019 Endpoint Security Suites Wave
• Manage Windows Defender Firewall with Microsoft Defender ATP and Intune
• Tamper protection now generally available for Microsoft Defender ATP customers
• Experts on demand: now generally available
• Webinar: Fighting the “Unknown Unknowns” with Microsoft and Morphisec
• Introducing remote deployment guidance for Microsoft Defender ATP and Office 365 ATP

M365 Compliance & Governance

• Introducing new videos on security and risk fundamentals of the Microsoft cloud environment