Microsoft customers can get ongoing analysis and access additional threat actor details, related detections, IOCs, and hunting queries through Intel Profiles in Microsoft Defender Threat Intelligence and Threat Analytics in Microsoft 365 Defender.

Catch the top announcements in AI, identity, data protection, and endpoint management from #MSSecure . Read the blog: msft.it/6013gBkKT #InfoSec

I created a public RiskIQ project with domains and IP addresses which Citizen Lab has linked to Pegasus infrastructure over the years. Sadly no way to indicate a timeframe for each of the entries. community.riskiq.com/projects/c345b…

Feeling inspired after #MSIgnite ?

Check out our collection of educational resources to get the most out of innovations across cloud security, threat protection, and more: msft.it/6011dnvrx #CybersecurityTraining

It's Cybersecurity Awareness Month! This year, we highlight these four best practices:

1. Enabling multifactor authentication
2. Protecting your identity
3. Updating software
4. Recognizing #Phishing

Learn more: msft.it/6011dHz75 #BeCyberSmart

🔎 The threat hunt concludes with the second blog in our series.

Learn about our hunting strategies and approach to threat intelligence innovation through openness and transparency: msft.it/6010jfZgs #ThreatHunting #IncidentResponse

Brush up on the basics: What is malware?

Learn about how malware works, the common types, and how you can detect and remove it: msft.it/6010jLosA #Malware #CybersecurityTips

Watch Vasu Jakkal and Charlie Bell share fresh insights about today’s threat landscape. Register for this digital event now: msft.it/6012jmNBK
#BeFearless #ThreatIntelligence

Ransomware has a new business model based on extortion. A newly released threat intelligence brief provides the latest insights and data on ransomware​. Learn more: msft.it/6011jiNKX #CyberSignals #Ransomware

Threat intelligence that’s relevant, timely, and actionable. Learn what’s new in security at this digital event. Register now: msft.it/6016jM4VA
#BeFearless #ThreatIntelligence

Join Charlie Bell at the Stop Ransomware with Microsoft Security digital event to learn how threat intelligence can help organizations prepare for the worst. Register now: msft.it/6017jZvsN
#MicrosoftSecurity #ThreatIntelligence

Microsoft has disrupted activity by SEABORGIUM, a Russia-based actor launching persistent phishing, credential and data theft, intrusions, and hack-and-leak campaigns tied to espionage. More details + TTPs in this MSTIC blog: msft.it/6018jVwFO

See demos of Microsoft Defender Threat Intelligence and Defender External Attack Surface Management.

Register now: msft.it/6018jRx1I
#BeFearless #ThreatIntelligence

During a cyberattack, every second counts. See a year’s worth of cybercrime through a single 60-second window: msft.it/6010jKC12 #SecurityInsider #Cyberattack

Microsoft puts its RiskIQ acquisition to work tcrn.ch/3Sjndwv by Frederic Lardinois

Watch 👀 on-demand: In this webinar, RiskIQ's Steve Ginty explores #cybersecurity in government agencies, the digital supply chains providing software used across the federal computing landscape, and the shifts and challenges in the federal IT space: bit.ly/3EcumXe

Microsoft discovered and patched a 0-day exploit (CVE-2022-22047) that #KNOTWEED , an Austria-based private sector offensive actor, used to deploy #Subzero malware. Analysis of campaigns, tactics, & payloads in this #MSTIC blog w/ Security Response RiskIQ: msft.it/6017j1vJ1

Microsoft security researchers observed a new #Magecart tactic: using obfuscation techniques to deliver and hide skimming scripts - a shift from injecting scripts via vulnerability exploitation. Read the analysis, which includes RiskIQ research, here: bit.ly/3Go1tKi

.Microsoft Threat Intelligence analysts track H0lyGh0st, a threat actor group targeting small and midsize businesses. Here are actions to take to detect these malware families: msft.it/6017bAHxv #H0lyGh0st #Ransomware