Even though the year was coming to an end, BTW Happy New Years, Microsoft Security related news was abundant this past month. There were good product update news which are worth reading through to keep up to speed. However, I would allocate some time over the next few weeks to read through the excellent articles in the General News section.
To receive this news in your inbox you can sign-up here.
General News
- Microsoft takes court action against fourth nation-state cybercrime group
- Spear phishing campaigns—they’re sharper than you think
- A behind the scenes look at how we secure the Microsoft 365 platform
- Microsoft Security—a Leader in 5 Gartner Magic Quadrants
- Data science for cybersecurity: A probabilistic time series model for detecting RDP inbound brute force attacks
- Zero Hype
- Improve cyber supply chain risk management with Microsoft Azure
- The quiet evolution of phishing
- Multi-stage downloader Trojan sLoad abuses BITS almost exclusively for malicious activities
- Go passwordless to strengthen security and reduce costs
- GALLIUM: Targeting global telecom
- How to secure your IoT deployment during the security talent shortage
- Ransomware response—to pay or not to pay?
- Finding a common language to describe AI security threats
- Norsk Hydro responds to ransomware attack with transparency
- Mobile threat defense and intelligence are a core part of cyber defense
- CISO series: Lessons learned from the Microsoft SOC—Part 3b: A day in the lifeVodafone chooses Microsoft security and compliance capabilities for its cloud transformation
Azure Security & Compliance News
- Azure Sentinel correlation rules: Active Lists out; make_list() in, the AAD/AWS correlation example
- Azure Sentinel correlation rules: the join KQL operator
- Using Azure Lighthouse and Azure Sentinel to Monitor Across Multiple Tenants
- Azure Sentinel: Syslog, CEF and other 3rd party connectors grand list
- Ingest Sample CEF data into Azure SentinelValidating ATP for Azure Storage Detections in Azure Security Center
Microsoft 365Security (All Up News)
- Introducing the integrated Microsoft Threat Protection solution (public preview)
- New enhancements to Office 365 Message Encryption
M365 Identity & Data Protection (Azure AD, Intune, AIP, MCAS)
- Advancing Azure Active Directory availability
- Step-by-Step: Managing Groups via Azure Active Directory PowerShell for Graph module
- Bring identities from disconnected ADs into Azure AD with just a few clicks!
- Passwordless – What’s it worth?
- Azure AD authentication to Windows VMs in Azure now in public preview
- Ring in the New Year with automated user provisioning from SAP SuccessFactors to Azure AD
- Known Issue with BitLocker Key rotation for Windows 10 1909 devices in Intune
- Mitsui said goodbye to ADFS using Azure AD new capability staged user rolloutSecuring ALL your cloud apps with Microsoft
M365 Threat Protection (Office ATP, Windows Defender ATP, Azure ATP/ATA)
- Advanced hunting data schema changes
- EDR capabilities for macOS have now arrived
- Office 365 ATP – Ignite Recap and Product Updates
- Introducing campaign views in Office 365 Advanced Threat Protection
- Announcing Updates to the M365 Attack SimulatorNew version of ORCA (Office 365 ATP Recommended Configuration Analyzer)
justdothebasics.com 