Microsoft Security Saturday – 12/4/2021

Behind the unprecedented effort to protect customers against the NOBELIUM nation-state attackThis is the third in a four-part blog series on the NOBELIUM nation-state cyberattack. In December 2020, Microsoft began sharing details with the world about what became known as the most sophisticated nation-state cyberattack in history. Microsoft’s four-part video series “Decoding NOBELIUM” pulls the curtain back on the NOBELIUM incident and how world-class threat hunters from Microsoft and around the industry came together to take on the most sophisticated nation-state attack in history.

More control and better insights for your Zero Trust deploymentsMany of you have asked for more empowering and easier to use tools for protection and investigation in your identity environment. So today we’re delighted to offer a closer look at the new Azure AD Conditional Access and Identity Protection capabilities that help you better protect your identities while making your job easier.

Announcing Preview of New Security Management Capabilities for Microsoft Defender for Endpoint.We are excited to announce that Microsoft Defender for Endpoint has extended its configuration management capabilities. Together with Microsoft Endpoint Manager, we’ve integrated security management in a single, dedicated console for unified endpoint security management. Without the need to deploy and use additional tools and infrastructure, you can now manage security settings (initially AV, EDR and firewall policies) across devices, with Microsoft Endpoint Manager serving as a single management platform.  

Introducing Azure AD custom security attributesThis public preview of Microsoft Azure Active Directory (Azure AD) custom security attributes and user attributes in ABAC (Attribute Based Access Control) conditions builds on the previous public preview of ABAC conditions for Azure Storage.

Webinar: Defending your cloud against AD FS attacksPlease join us for our upcoming free webinar in partnership with the SANS Institute happening on Wednesday, December 8, 2021 at 10:30am EST.  This session will be led by Microsoft experts, Dana Baril, Senior Security Research Lead, Roberto Rodriguez, Principal Threat Researcher, and Mor Rubin, Senior Security Researcher. We’ll provide insights and recommendations to protect your organization against AD FS attacks in hybrid cloud environments.

Updated Hunting and Investigation Experiences for Microsoft Defender for Office 365Cyber security has become embedded in the day-to-day activities of every organization, and more so as organizations shift and adopt a hybrid working model. Organizations want customized security tools that fit their existing IT environment and meet their needs of efficiency and effectiveness. Keeping this in mind, we continue to invest in Microsoft Defender for Office 365 and offer the best protection tools to manage detected threats, possible misses, and focus on continually improving investigation and response capabilities.

Microsoft 365 compliance feature enhancements now available to US government customersMicrosoft 365 Compliance features continue to gain momentum in the GCC, GCC High and DoD clouds with customers. Today we are excited to announce broad range of new capabilities that were recently made available which further enrich the value we already have delivered. For additional information on Microsoft 365 compliance features available in US government clouds

Co-Authoring files with sensitivity labelsDid you know the Azure Information Protection (AIP) client can now be used for co-authoring files with sensitivity labels? We cover this optional feature in this blog post, providing an overview of its advantages, prerequisites, and limitations. This allows organizations to make a conscious decision on whether to enable co-authoring for files with sensitivity labels.