2023-06-09 00:00   Detecting and mitigating a multi-stage AiTM phishing and BEC campaign    #Microsoft Security Blog #安全文章 Microsoft Defender Experts observed a multi-stage adversary-in-the-middle (AiTM) and business email compromise (BEC) attack targeting banking and financial services organizations over two days. This attack originated from a compromised trusted vendor, involved AiTM and BEC attacks across multiple su

2023-06-08 10:22   Join our digital event to learn what’s new in Microsoft Entra    #Microsoft Security Blog #安全文章 Join us at the digital event Reimagine secure access with Microsoft Entra to explore how to make identity your first line of defense and to hear about innovative products.The post Join our digital event to learn what’s new in Microsoft Entra appeared first on Microsoft Security Blog.

2023-06-07 00:00   Why a proactive detection and incident response plan is crucial for your organization    #Microsoft Security Blog #安全文章 Matt Suiche of Magnet Forensics talks about top security threats for organizations and strategies for effective incident response.The post Why a proactive detection and incident response plan is crucial for your organization appeared first on Microsoft Security Blog.

2023-06-01 00:00   XDR meets IAM: Comprehensive identity threat detection and response with Microsoft    #Microsoft Security Blog #安全文章 Identity-based attacks are on the rise, making identity protection more important than ever. Explore our blog post to learn how Microsoft’s Identity Threat Detection and Response can help.The post XDR meets IAM: Comprehensive identity threat detection and response with Microsoft appeared first on Mi

2023-05-31 00:00   New macOS vulnerability, Migraine, could bypass System Integrity Protection    #Microsoft Security Blog #安全文章 A new vulnerability, which we refer to as “Migraine”, could allow an attacker with root access to bypass System Integrity Protection (SIP) in macOS and perform arbitrary operations on a device.The post New macOS vulnerability, Migraine, could bypass System Integrity Protection appeared first on Micr

2023-05-25 03:00   Volt Typhoon targets US critical infrastructure with living-off-the-land techniques    #Microsoft Security Blog #安全文章 Chinese state-sponsored actor Volt Typhoon is using stealthy techniques to target US critical infrastructure, conduct espionage, and dwell in compromised environments.The post Volt Typhoon targets US critical infrastructure with living-off-the-land techniques appeared first on Microsoft Security Blo

2023-05-23 23:00   Microsoft Build 2023: Announcing new identity, compliance, and security features from Microsoft Security    #Microsoft Security Blog #安全文章 Microsoft Build 2023 is the place to discover new features and technologies, share ideas, and boost your skills. Learn about the new identity and compliance features we're announcing. The post Microsoft Build 2023: Announcing new identity, compliance, and security features from Microsoft Security ap

2023-05-19 18:00   Cyber Signals: Shifting tactics fuel surge in business email compromise    #Microsoft Security Blog #安全文章 Business email operators seek to exploit the daily sea of email traffic to lure victims into providing financial and other sensitive business information. The post Cyber Signals: Shifting tactics fuel surge in business email compromise appeared first on Microsoft Security Blog.

2023-05-16 04:22   Microsoft Security highlights from RSA Conference 2023    #Microsoft Security Blog #安全文章 At RSA Conference April 24 to 26, 2023, Microsoft Security shared solution news and insights. Watch Vasu Jakkal’s keynote on-demand (video courtesy of RSA conference). The post Microsoft Security highlights from RSA Conference 2023 appeared first on Microsoft Security Blog.

2023-05-16 00:00   Microsoft Security highlights from RSA Conference 2023    #Microsoft Security Blog #安全文章 At RSA Conference April 24 to 26, 2023, Microsoft Security shared solution news and insights. Watch Vasu Jakkal’s keynote on-demand (video courtesy of RSA conference). The post Microsoft Security highlights from RSA Conference 2023 appeared first on Microsoft Security Blog.

2023-05-04 21:00   How Microsoft can help you go passwordless this World Password Day    #Microsoft Security Blog #安全文章 Learn how guessing, replay, phishing, and multifactor authentication fatigue attacks demonstrate the ongoing vulnerability of passwords, and why going passwordless makes your organization more secure while improving user experience.The post How Microsoft can help you go passwordless this World Passw

2023-05-04 04:22   Forrester names Microsoft a Leader in 2023 Infrastructure-as-a-Service Platform Native Security report    #Microsoft Security Blog #安全文章 Forrester recognizes Microsoft’s strong vision and significant investments in Infrastructure-as-a-Service Platform Native Security offerings.The post Forrester names Microsoft a Leader in 2023 Infrastructure-as-a-Service Platform Native Security report appeared first on Microsoft Security Blog.

2023-04-28 05:22   Why you should practice rollbacks to prevent data loss in a ransomware attack    #Microsoft Security Blog #安全文章 Tanya Janca, Founder and Chief Executive Officer of We Hack Purple, shares insights on application security and offers strategies to protect against data loss from ransomware attacks.The post Why you should practice rollbacks to prevent data loss in a ransomware attack appeared first on Microsoft Se

2023-04-27 00:22   Healthy security habits to fight credential breaches: Cyberattack Series    #Microsoft Security Blog #安全文章 This is the second in an ongoing series exploring some of the most notable cases of the Microsoft Incident Response Team. In this story, we’ll explore how organizations can adopt a defense-in-depth security posture to help protect against credential breaches and ransomware attacks.The post Healthy s

2023-04-26 06:22   Microsoft announces the 2023 Microsoft Security Excellence Awards winners    #Microsoft Security Blog #安全文章 At the fourth annual Microsoft Security Excellence Awards, we recognized outstanding contributions from Microsoft Intelligent Security Association (MISA) members and celebrated the next generation of security defenders. See all the finalists and winners.The post Microsoft announces the 2023 Microsof