Microsoft Defender

Microsoft Defender helps prevent, detect, and respond to attacks across devices, identities, apps, email, data, workloads, and clouds. Explore threat intelligence, capabilities, and real-world guidance to help you get more out of Defender.

Refine Results

Filtered by

Clear All

Microsoft Defender

Refine results

Sort By

Content Type

Topic

Products and services

Publish date

Start Date

End Date

Retain Microsoft Security Experts

Microsoft Security Experts are now available to strengthen your team with managed security services. Learn how to defend against threats with security experts.

Get started
February 7, 2022

10 min read

Detect active network reconnaissance with Microsoft Defender for Endpoint

Active network reconnaissance is a critical component of the cybersecurity kill chain allowing for network topography and endpoint services to be mapped and used in targeted campaigns.
February 4, 2022

19 min read

ACTINIUM targets Ukrainian organizations

The Microsoft Threat Intelligence Center (MSTIC) is sharing information on a threat group named ACTINIUM, which has been operational for almost a decade and has consistently pursued access to organizations in Ukraine or entities related to Ukrainian affairs.
February 3, 2022

3 min read

Cyber Signals: Defending against cyber threats with the latest research, insights, and trends

We’re excited to introduce Cyber Signals, a cyber threat intelligence brief informed by the latest Microsoft threat data and research.
January 28, 2022

3 min read

Gartner® names Microsoft a Leader in the 2022 Magic Quadrant™ for Enterprise Information Archiving

We are honored that Gartner has listed Microsoft as a Leader in its 2022 Magic Quadrant for Enterprise Information Archiving in recognition of our ability to execute and completeness of vision.
Modernize your Security Operations Center with Microsoft Sentinel

Microsoft Sentinel is a cloud-native SIEM solution powered by AI and automation that delivers intelligent security analytics across your entire enterprise.

Learn more
January 27, 2022

6 min read

Measure the effectiveness of your Microsoft security with AttackIQ

Microsoft and AttackIQ are working together to automate testing using MITRE ATT&CK and a threat-informed defense.
January 26, 2022

9 min read

Evolved phishing: Device registration trick adds to phishers’ toolbox for victims without MFA

We uncovered a large-scale, multi-phase campaign that adds a novel technique to traditional phishing tactics by joining an attacker-operated device to an organization’s network to further propagate the campaign.
January 13, 2022

8 min read

Learn about 4 approaches to comprehensive security that help leaders be fearless

The last 18 months have put pressure on organizations to speed up their digital transformation as hybrid work continues to become the new normal.
January 10, 2022

10 min read

New macOS vulnerability, “powerdir,” could lead to unauthorized user data access

A new macOS vulnerability, “powerdir,” could allow an attacker to bypass the operating system’s TCC technology and gain unauthorized access to a user’s protected data.
Tailored AI insights from Microsoft Security Copilot

Empower your defenders to detect hidden patterns, harden defenses, and respond to incidents faster with generative AI.

Learn more
December 8, 2021

7 min read

New research shows IoT and OT innovation is critical to business but comes with significant risks

This year the need for much improved IoT and OT cybersecurity has become even more clear with the recent and now famous attacks.
December 8, 2021

6 min read

Improve kernel security with the new Microsoft Vulnerable and Malicious Driver Reporting Center

Windows 10 and Windows 11 have continued to raise the security bar for drivers running in the kernel.
December 2, 2021

5 min read

Behind the unprecedented effort to protect customers against the NOBELIUM nation-state attack

In the third of a four-part series on the NOBELIUM nation-state attack, we share how Microsoft product teams built new detections into products to better protect customers.
November 29, 2021

4 min read

How Red Canary and Microsoft can help reduce your alert fatigue

Learn how Red Canary’s security operations platform integrates with Microsoft Defender for Endpoint to help organizations overcome “alert fatigue” and identify serious security threats.