Just another day of IR, Threat-Hunting & Microsoft Security
The following post is part of a series of articles that will focus on the many capabilities and options of Azure Sentinel, from the beginning with deployment, through configure connectors to the setting and using...
When talking security investigation and forensics, please take the word “prevent” out of the dictionary because organizations realize that stopping complicated cyber attacks in many situations is unrealistic. Note: this post is an introduction for...
Digital information and evidence taken from a computer are used to aid in an investigation. While computer forensics was originally limited largely to online fraud and hacking, today, it serves as a powerful investigative tool...
This post is a part of series posts the focus on Windows Information Protection from the basic to deployment and configuration. Windows Information Protection (WIP), previously known as enterprise data protection (EDP), helps to protect...
New one-click remediation capability in Microsoft365 with Microsoft Intune SecurityTasks that extend latest announced TVM feature in MDATP Microsoft Defender ATP is Microsoft security service for companies that want not just anti-malware protection but also...
The Cyber Kill Chain framework is part of the Intelligence driven defense model for identification and prevention of cyber intrusions activity. The model identifies what the adversaries must complete in order to achieve their objective. There...
Microsoft and Lookout have partnered to enable organizations to securely embrace mobile device in the security workplace. The integration combines Lookout Mobile Endpoint Security with Microsoft 365 Security (aka Office 365 & EMS & Windows)....
There is a phishing attack in Office 365, the SharePoint Phishing Attack or PhishPoint. Attackers are now using Microsoft SharePoint to run phishing attacks and to target Office 365 end-user credentials and even injecting some...
