Microsoft has released CVE-2023-23397 to address the critical elevation of privilege (EoP) vulnerability affecting Microsoft Outlook for Windows. We strongly recommend all customers update Microsoft Outlook for Windows to remain secure. Learn more ⬇️ msft.it/6018504d4

Introducing #MSSecure, our first flagship event designed just for security professionals. From product announcements, breakouts on XDR and AI, and Ask The Experts sessions—we have you covered. Check out what's in store: msft.it/601852zZA #AI

With hacktivist groups like KillNet targeting healthcare organizations, we observed an increase in DDoS attacks against this sector in the past three months. UDP flood accounted for 53% of these attacks. Get more info and protection guidance: msft.it/60145NW6E

The unique vegetable shortage in Britain has driven inflation up to 10.4%. What a rotten Brexit.

Manipulated content online is becoming more prevalent and sophisticated. Project Providence from @Truepic and Microsoft helps verify image authenticity to combat misinformation. A pilot project is helping Ukrainians document war damage to cultural sites. bit.ly/3JLWogU

Get ready to rock. 🤘 We’ll be celebrating our birthday all week long with 80s throwbacks.

We're looking forward to #RSAC on April 24–27! Connect with Microsoft during that week to learn how we're delivering industry-leading solutions in comprehensive security. Check out what's in store: msft.it/6012g1eRy

As the use of DevOps services increases, so does attackers’ interest. Learn how defenders can use our new DevOps threat matrix to understand the techniques attackers may use to target DevOps environments. msft.it/6014gGdg4

Microsoft detected a unique operation in which threat actors, tracked as MERCURY and DEV-1084, carried out destructive actions in both on-premises and cloud environments. Learn more about the observed activity and tools and get TTPs and protection info: msft.it/6019gGFEV

Discover the trends Microsoft Threat Intelligence anticipates for DDoS attacks in 2023 and beyond. Check out the details: msft.it/6015g1kdz #ThreatIntelligence

Great writeup on MERCURY and DEV-1084 ▫️ On-prem to cloud ▫️AADInternals used for credential extraction ▫️ Sync account had GA Protect your environment with the released IOCs and new detections for #Sentinel including UEBA usage👍 #security #mde #m365d microsoft.com/en-us/security…

A threat group tracked by Microsoft as DEV-0196 is linked to an Israel-based private sector offensive actor (PSOA) known as QuaDream, which reportedly sells a suite of exploits, malware, and infra. Read our analysis in collaboration with The Citizen Lab: msft.it/6010gy5fA

Microsoft has observed phishing attacks targeting accounting and tax return preparation firms to deliver the Remcos remote access trojan, among threats that take advantage of current events and major news headlines like Tax Day. Read our analysis here: msft.it/6013gJcG7

We’re updating our name to Microsoft Threat Intelligence, reflecting our unified security research efforts to uncover and understand threats across a broad and complex landscape – from the endpoint to the cloud and everything in between.

The Microsoft Threat Intelligence community is made up of over 8,000 world-class experts, security researchers, analysts, and threat hunters, analyzing 65 trillion signals daily to discover threats and deliver timely and hyper-relevant insight to protect customers.

Our research covers a broad spectrum of threats, including threat actors and the infrastructure that enables them, as well as the tools and techniques they use in their attacks. We are committed to contributing threat research to the community to help improve security for all.

We're excited to share that Microsoft Threat Intelligence is shifting to a new threat actor naming taxonomy aligned with the theme of weather to help bring better clarity and context to the threats that we track. msft.it/6014gzqWe

Today we’re excited to announce Copilot in Microsoft Viva which harnesses the power of next-generation AI to help organizations optimize both employee engagement and productivity to drive business performance 💜 microsoft.com/en-us/microsof…

Microsoft 365 Defender detects the exploitation, malware, & malicious activity in these Lace Tempest attacks. Customers can use the detailed published reports in Microsoft 365 Defender & Microsoft Defender Threat Intelligence to investigate further & remediate affected assets.

Today we're announcing that the next Windows LTSC releases will be available in the second half of 2024: Windows 11 Enterprise LTSC and Windows 11 IoT Enterprise LTSC. techcommunity.microsoft.com/t5/windows-it-…