Skip to main content
Skip to main content
Security
Sign in

Zero Trust Adoption Report: How does your organization compare?

Read more Zero Trust Adoption Report: How does your organization compare?
Subscribe
Two male co-workers looking at computer screen and concentrating. Featured image for How to manage a side-by-side transition from your traditional SIEM to Azure Sentinel

How to manage a side-by-side transition from your traditional SIEM to Azure Sentinel

Learn whether a transitional or long-term side-by-side deployment can best serve your migration to Microsoft’s cloud-native SIEM.
Read more How to manage a side-by-side transition from your traditional SIEM to Azure Sentinel
Featured image for When coin miners evolve, Part 2: Hunting down LemonDuck and LemonCat attacks

When coin miners evolve, Part 2: Hunting down LemonDuck and LemonCat attacks

LemonDuck is an actively updated and robust malware primarily known for its botnet and cryptocurrency mining objectives. Today, beyond using resources for its traditional bot and mining activities, LemonDuck steals credentials, removes security controls, spreads via emails, moves laterally, and ultimately drops more tools for human-operated activity.
Read more When coin miners evolve, Part 2: Hunting down LemonDuck and LemonCat attacks
Three women grouped around whiteboard brainstorming ideas. Featured image for Attack AI systems in Machine Learning Evasion Competition

Attack AI systems in Machine Learning Evasion Competition

Today, we are launching MLSEC.IO, a new machine learning security evasion competition as an educational effort for the AI and security communities to exercise their muscle to attack critical AI systems in a realistic setting.
Read more Attack AI systems in Machine Learning Evasion Competition
Group of people at a conference table with laptops who appear to be have a healthy and positive discussion or meeting. Featured image for Microsoft at Black Hat 2021: Sessions, bug bounty updates, product news, and more

Microsoft at Black Hat 2021: Sessions, bug bounty updates, product news, and more

Get previews of Microsoft’s latest security solutions, information on virtual sessions, and more for Black Hat 2021.
Read more Microsoft at Black Hat 2021: Sessions, bug bounty updates, product news, and more
Featured image for BazaCall: Phony call centers lead to exfiltration and ransomware

BazaCall: Phony call centers lead to exfiltration and ransomware

Our continued investigation into BazaCall campaigns, those that use fraudulent call centers that trick unsuspecting users into downloading the BazaLoader malware, shows that this threat is more dangerous than what’s been discussed publicly in other security blogs and covered by the media.
Read more BazaCall: Phony call centers lead to exfiltration and ransomware
Featured image for Combing through the fuzz: Using fuzzy hashing and deep learning to counter malware detection evasion techniques

Combing through the fuzz: Using fuzzy hashing and deep learning to counter malware detection evasion techniques

A new approach for malware classification combines deep learning with fuzzy hashing. Fuzzy hashes identify similarities among malicious files and a deep learning methodology inspired by natural language processing (NLP) better identifies similarities that actually matter, improving detection quality and scale of deployment.
Read more Combing through the fuzz: Using fuzzy hashing and deep learning to counter malware detection evasion techniques
Man sitting on an indoor bench in front of windows working on a laptop with a security key fob or USB drive next to him on the bench. Featured image for How to protect your CAD data files with MIP and HALOCAD

How to protect your CAD data files with MIP and HALOCAD

SECUDE has integrated their HALOCAD solution with Microsoft Information Protection SDK which extends the data protection beyond the organization’s IT perimeter.
Read more How to protect your CAD data files with MIP and HALOCAD
A young woman works remotely on her laptop. Featured image for A guide to balancing external threats and insider risk

A guide to balancing external threats and insider risk

Rockwell Automation Vice President and Chief Information Security Officer Dawn Cappelli talks about assessing, measuring, and protecting against insider risk.
Read more A guide to balancing external threats and insider risk
Featured image for When coin miners evolve, Part 1: Exposing LemonDuck and LemonCat, modern mining malware infrastructure

When coin miners evolve, Part 1: Exposing LemonDuck and LemonCat, modern mining malware infrastructure

LemonDuck, an actively updated and robust malware that’s primarily known for its botnet and cryptocurrency mining objectives, adopted more sophisticated behavior and escalated its operations. Today, beyond using resources for its traditional bot and mining activities, LemonDuck steals credentials, removes security controls, spreads via emails, moves laterally, and ultimately drops more tools for human-operated activity.
Read more When coin miners evolve, Part 1: Exposing LemonDuck and LemonCat, modern mining malware infrastructure
Microsoft Cyber Defense Operations Center. Featured image for Microsoft acquires CloudKnox Security to offer unified privileged access and cloud entitlement management

Microsoft acquires CloudKnox Security to offer unified privileged access and cloud entitlement management

Today on the Official Microsoft Blog, Microsoft announced the acquisition of CloudKnox Security, a leader in Cloud Infrastructure Entitlement Management (CIEM). CloudKnox offers complete visibility into privileged access.
Read more Microsoft acquires CloudKnox Security to offer unified privileged access and cloud entitlement management
A group of designers collaborate on a project together using shared screen in U.S. office. Featured image for The evolution of a matrix: How ATT&CK for Containers was built

The evolution of a matrix: How ATT&CK for Containers was built

As containers become a major part of many organizations’ IT workloads, it becomes crucial to consider the unique security threats that target such environments when building security solutions. The first step in this process is understanding the relevant attack landscape.
Read more The evolution of a matrix: How ATT&CK for Containers was built
Featured image for Protecting customers from a private-sector offensive actor using 0-day exploits and DevilsTongue malware

Protecting customers from a private-sector offensive actor using 0-day exploits and DevilsTongue malware

The Microsoft Threat Intelligence Center (MSTIC) alongside the Microsoft Security Response Center (MSRC) has uncovered a private-sector offensive actor, or PSOA, that we are calling SOURGUM in possession of now-patched, Windows 0-day exploits (CVE-2021-31979 and CVE-2021-33771).
Read more Protecting customers from a private-sector offensive actor using 0-day exploits and DevilsTongue malware