Security Insider
Explore the latest cybersecurity insights and updates.
Threat watch
Extortion economics: Ransomware’s new business model offers new insights for defenders
Hear from frontline experts on the development of ransomware as a service. From programs and payloads to access brokers and affiliates, learn about the tools, tactics, and targets cybercriminals favor, and get guidance to help protect your organization.
Special Report: Ukraine
Microsoft shares insights into cyberattacks against Ukraine, highlighting details in the attack and context around the scope, scale, and methods of Russia-based nation state attackers.
View report
Ransomware, evolved: Meet the threat players, learn about the attack phases, and prepare your defense
Get a glimpse of the criminal players who operate within the underground ransomware economy. We’ll help you understand the motivations and mechanics of ransomware attacks and provide you with best practices for protection as well as backup and recovery.
Explore infographic
Threat Actor Insights
Microsoft Security is actively tracking threat actors across observed nation state, ransomware, and criminal activities. These insights represent publicly published activity from Microsoft Security threat researchers and provide a centralized catalog of actor profiles from the referenced blogs.
Threat Actors
Behind the scenes
Security expert spotlight
“My job is to spot these pre-ransomware acts as early as possible. If you are only looking for the ransomware payload, itself – you're too late.”
Emily Hacker
Threat Intelligence Analyst at Microsoft
Behind the scenes with cybercrime and counter ransomware expert Nick Carr
Nick Carr, Cybercrime Intelligence Team Lead at the Microsoft Threat Intelligence Center, discusses ransomware trends, explains what Microsoft is doing to protect customers from ransomware, and describes what organizations can do if they’ve been affected by it.
Walk through the world of attack surface management
Steve Ginty, director of cyber intelligence at Microsoft, talks about the importance of knowing your external attack surface, provides tips on effective security readiness, and identifies the most important step you can take to protect yourself against threat actors online.
Perspectives
Three ways to protect against new-wave ransomware
Explore infographic
The scale and scope of worldwide cybercrime in 60 seconds
Read Cyberthreat Minute
Cybercrime and nation-state attacks on the rise.
Read Microsoft Digital Defense Report
Microsoft Security Summit Session
Human operated ransomware—what it is and how to protect your organization from attack
Human operated ransomware is one of the most prevalent and top-of-mind threats for security professionals. Join our technical research team and learn about what developments Microsoft is seeing in the threat landscape, as well as how we can help your business mitigate these types of attacks.
Video
Building Resilience: Countering Foreign Influence Operations with Brad Smith
Microsoft president and vice chair, Brad Smith provided opening remarks at an event hosted by the Reagan Institute’s Center for Freedom and Democracy, Countering Foreign Influence Operations: Developing a Whole of Society Approach to Build Resilience.
Trending blogs and articles
Continuing the fight against private sector cyberweapons
July 27, 2022Commercialized cyberweapons continue to threaten consumers, businesses and governments. Microsoft believes that allowing private sector offensive actors, or PSOAs, to develop and sell surveillance and intrusion capabilities to unscrupulous governments and business interests endangers basic human rights.
Toll fraud malware: How an Android application can drain your wallet
June 30, 2022When it comes to data security, your workstation isn’t the only target. In this blog, we break down an emerging threat targeting Android users signing up for premium subscriptions and draining their accounts.
Improving AI-based defenses to disrupt human-operated ransomware
June 21, 2022In the fight against emerging cyberthreats, attacks can take many forms and origin points. In this exploration, we dive into the tactics of human-operated ransomware attacks and how AI is becoming a growing ally in our defense.
The many lives of Blackcat ransomware
June 13, 2022With the growing use of Blackcat ransomware attacks it’s important that organizations evaluate their defense strategies. In this blog we look at the origins and tactics of Blackcat ransomware and how you can be proactive in your defense.
Exposing POLONIUM activity and infrastructure targeting Israeli organizations
June 2, 2022The Lebanese threat group, POLONIUM appears to have launched several attacks at various Israeli organizations. In this blog, we take a closer look at the history of this group, and what their activity means for cybersecurity abroad.
How to improve risk management using Zero Trust architecture
May 23, 2022Risk management is a core aspect of decision-making for any business. Here we detail the role of Zero Trust architecture and its use in improving risk management across various industries and organizations.
Learn more about cybersecurity solutions
Follow Microsoft
