Skip to main content
Skip to main content
Security
Sign in

How nation-state attackers like NOBELIUM are changing cybersecurity

Read more How nation-state attackers like NOBELIUM are changing cybersecurity
Subscribe
Adult female wearing Microsoft Modern USB-C Headset sitting at a desk while working on a Surface Go 3 with Surface Go Typecover in laptop mode with Microsoft Edge displayed. Microsoft Word is being presented on the large monitor. Featured image for A simpler, more integrated approach to data governance

A simpler, more integrated approach to data governance

Today, I’m excited to share the general availability of Microsoft Azure Purview, giving organizations that holistic understanding of their data that is so critically important. Azure Purview addresses the need for full visibility across all the places where your data lives, making it easier to manage, glean insights, and govern.
Read more A simpler, more integrated approach to data governance
Featured image for FoggyWeb: Targeted NOBELIUM malware leads to persistent backdoor

FoggyWeb: Targeted NOBELIUM malware leads to persistent backdoor

In-depth analysis of newly detected NOBELIUM malware: a post-exploitation backdoor that Microsoft Threat Intelligence Center (MSTIC) refers to as FoggyWeb. NOBELIUM uses FoggyWeb to remotely exfiltrate the configuration database of compromised AD FS servers, decrypted token-signing certificate, and token-decryption certificate, as well as to download and execute additional components.
Read more FoggyWeb: Targeted NOBELIUM malware leads to persistent backdoor
Female developer coding her workspace in an enterprise office, using Visual Studio on a multi-monitor set up. Featured image for A guide to combatting human-operated ransomware: Part 2

A guide to combatting human-operated ransomware: Part 2

In this post, we will tackle the risks of human-operated ransomware and detail DART’s security recommendations for tactical containment actions and post-incident activities in the event of an attack.
Read more A guide to combatting human-operated ransomware: Part 2
Shot of a young businesswoman using a laptop at her desk in a modern office. Featured image for 3 trends shaping identity as the center of modern security

3 trends shaping identity as the center of modern security

In the face of increasingly advanced threats, complex multi-cloud environments, and an evolving trust fabric, identity is emerging as a critical player to deliver the next generation of security, governance, and privacy services.
Read more 3 trends shaping identity as the center of modern security
Featured image for Catching the big fish: Analyzing a large-scale phishing-as-a-service operation

Catching the big fish: Analyzing a large-scale phishing-as-a-service operation

With over 100 available phishing templates that mimic known brands and services, the BulletProofLink operation is responsible for many of the phishing campaigns that impact enterprises today. We are sharing these findings so the broader community can build on them and use them to enhance email filtering rules as well as threat detection technologies like sandboxes to better catch these threats.
Read more Catching the big fish: Analyzing a large-scale phishing-as-a-service operation
Black female developer wearing headphones; coding at her PC workspace in an enterprise office, using Visual Studio on a multi-monitor set up. Featured image for A guide to combatting human-operated ransomware: Part 1

A guide to combatting human-operated ransomware: Part 1

As human-operated ransomware is on the rise, Microsoft’s Detection and Response Team (DART) shares how they investigate these attacks and what to consider when faced with a similar event in your organization.
Read more A guide to combatting human-operated ransomware: Part 1
Featured image for Analyzing attacks that exploit the CVE-2021-40444 MSHTML vulnerability

Analyzing attacks that exploit the CVE-2021-40444 MSHTML vulnerability

This blog details our in-depth analysis of the attacks that used the CVE-2021-40444, provides detection details and investigation guidance for Microsoft 365 Defender customers, and lists mitigation steps for hardening networks against this and similar attacks.
Read more Analyzing attacks that exploit the CVE-2021-40444 MSHTML vulnerability
Photograph of young adult female using Lenovo YOGA SLIM 7 and mobile phone in studio on blue background. Featured image for The passwordless future is here for your Microsoft account

The passwordless future is here for your Microsoft account

Beginning today, you can break free from your password and go passwordless with your Microsoft account.
Read more The passwordless future is here for your Microsoft account
Aerial view of office building‘s interior entrance hall. Close-up of two separate groups of people standing together on an elevated walkway, chatting. Two others are walking on ground floor below. Featured image for Afternoon Cyber Tea: Learn how to stop misinformation threats from nation-state bad actors

Afternoon Cyber Tea: Learn how to stop misinformation threats from nation-state bad actors

Head of Mandiant Intelligence at FireEye Sandra Joyce talks with Microsoft’s Ann Johnson about the cybersecurity threats to US elections and how to fight them.
Read more Afternoon Cyber Tea: Learn how to stop misinformation threats from nation-state bad actors
Woman with glasses sitting at a community table in common area reading on a Surface laptop. She looks as though she may be thinking, or learning. Featured image for Combat attacks with security solutions from Trustwave and Microsoft

Combat attacks with security solutions from Trustwave and Microsoft

Cyberattacks and ransomware demands are on the rise. Microsoft security solutions and managed security service providers help organizations enable a proactive cybersecurity approach.
Read more Combat attacks with security solutions from Trustwave and Microsoft
Two female developers collaborating while working remotely. One developer has personalized her laptop with stickers. Featured image for Why diversity is important for a strong cybersecurity team

Why diversity is important for a strong cybersecurity team

LinkedIn Chief Information Security Officer Geoff Belknap talks with Microsoft’s Bret Arsenault about recruiting cybersecurity talent and solving the skills gap.
Read more Why diversity is important for a strong cybersecurity team
Operations manager meets with a shop foreman. Featured image for 3 steps to prevent and recover from ransomware

3 steps to prevent and recover from ransomware

Learn real-world steps for protecting against the latest ransomware and other malicious cyberattacks.
Read more 3 steps to prevent and recover from ransomware