Microsoft Defender for Office 365 protection against recent EcoSpoofing attacks techcommunity.microsoft.com/t5/microsoft-d…

What an amazing vibe to kickoff a conference!! #ExpertsLiveEU is about to start people!! are you ready ?!

My favorite talk at #ExpertsLiveEU is on: „the goulash guardians: the perfect receipe for #ransomware resistance, Hungarian style“ with Robert Hedblom and Dieter Wijckmans. Exciting!

Global Threat Report 2024 github.com/blackorbird/AP…

''Red Teaming in the age of EDR: Evasion of Endpoint Detection Through Malware Virtualisation'' #infosec #pentest #redteam #blueteam blog.fox-it.com/2024/09/25/red…

In this live episode from #WPNinjaSummit 2024, hosts Frans Oudendorp ☁ | MVP & 🏴‍☠️ Alex Benoit 🏴‍☠️ sit down with Maayan Bar-Niv and Ran Marom to delve into the world of #DefenderForCloudApps and its role in enhancing security across the cloud. Don’t miss this out -> youtu.be/ETrtdGH_D7c?si…

I created the first draft of a website for the EDR telemetry project to help people quickly compare vendor telemetry visibility. What do you think about it? Are there any specific features you want to see for the website? Built with ChatGPT 4o with canvas (wanted to test it

Microsoft observed a 146% rise in adversary-in-the-middle (AiTM) attacks over the last year, indicating that cybercriminals are continuing to find ways to compromise accounts that are protected by multifactor authentication (MFA).

We're all on this rock together, starting a new orbit around the Sun. Here's to new opportunities, discoveries, and moments of joy in 2025! Happy New Year from all of us at NASA 💫

In case you missed it microsoft.com/en-us/security…

New Defender for Endpoint feature just dropped: Aggregated reporting. This feature seems to bridge a gap of otherwise capped data collected. Check the supported tables also action types in the docs 📖 #XDR #MDE learn.microsoft.com/en-us/defender…

Defender for Identity now has an API ▫️List of sensors ▫️Update sensor settings ▫️Get a deployment package ▫️Get the access key ▫️Update the access key ▫️Delete a sensor techcommunity.microsoft.com/blog/microsoft…

Ransomware actors evading EDR by pivoting through unsupported or unmonitored devices isn’t new. I wrote about this trend repeatedly - most recently in my blog post earlier this year. My team constantly extends our collection methods to detect threats on even the most exotic

This is Mars! 140 million miles away!

Microsoft is testing a new Defender for Endpoint capability that will block traffic to and from undiscovered endpoints to thwart attackers' lateral network movement attempts. bleepingcomputer.com/news/microsoft…

April 2025 version of MCRA is out! This release of the Microsoft Cybersecurity Reference Architectures (MCRA) focuses on updates for standards/mappings, product/technology changes, and more. Download PowerPoint (including slide notes) from usual site - aka.ms/MCRA

New ‘Bring Your Own Installer (BYOI)’ technique allows to bypass EDR securityaffairs.com/177494/hacking…

Last Thursday, we launched a blog and website addressing how to measure email security effectiveness, given the lack of real-world tests and vendors' push for multi-product solutions. We analyzed the data, and the results are very interesting 🧵 We compared environments

OAuth abuse is rising. Microsoft Defender now helps detect risky grants in Salesforce. A key step in securing cloud identity flows. techcommunity.microsoft.com/blog/microsoft…

A new phishing technique dubbed 'CoPhish' weaponizes Microsoft Copilot Studio agents to deliver fraudulent OAuth consent requests via legitimate and trusted Microsoft domains. Microsoft told BleepingComputer they plan on fixing it in a future update. bleepingcomputer.com/news/security/…