Subscribe
Featured image for Microsoft open sources CodeQL queries used to hunt for Solorigate activity

Microsoft open sources CodeQL queries used to hunt for Solorigate activity

We are sharing the CodeQL queries that we used to analyze our source code at scale and rule out the presence of the code-level indicators of compromise (IoCs) and coding patterns associated with Solorigate so that other organizations may perform a similar analysis.
Read more Microsoft open sources CodeQL queries used to hunt for Solorigate activity
A woman having a Microsoft Teams in her living room home office on her Acer TravelMate P6. Featured image for Becoming resilient by understanding cybersecurity risks: Part 3—a security pro’s perspective

Becoming resilient by understanding cybersecurity risks: Part 3—a security pro’s perspective

Get insights on how to work with business leaders to manage risk and defend against sophisticated cyber threats.
Read more Becoming resilient by understanding cybersecurity risks: Part 3—a security pro’s perspective
Man in a collared shirt working on a server station inside a secure room. Coworkers and large monitors are in the background. Featured image for Microsoft listed as a Representative Vendor in 2020 Gartner Market Guide for Insider Risk Management Solutions

Microsoft listed as a Representative Vendor in 2020 Gartner Market Guide for Insider Risk Management Solutions

Microsoft listed as a Representative Vendor in the 2020 Market Guide for Insider Risk Management Solutions. Insider Risk Management is used worldwide to identify and manage insider risks, while maintaining employee privacy.
Read more Microsoft listed as a Representative Vendor in 2020 Gartner Market Guide for Insider Risk Management Solutions
Real people. IT professionals build and maintain the LinkedIn server farm which operates on 100% renewable energy. Power is hydro-generated and managed efficiently on-site with minimum new draw from external grid. State-of-the-art facility uses eco-friendly solutions such as using reclaimed water to cool the data center. Featured image for Securing Azure datacenters with continuous IoT/OT monitoring

Securing Azure datacenters with continuous IoT/OT monitoring

Learn how Microsoft ensures operational resilience for Azure datacenters with Azure Defender for IOT and Azure Sentinel
Read more Securing Azure datacenters with continuous IoT/OT monitoring
An employee in the tech industry works at a standing desk in UK office. Featured image for What we like about Microsoft Defender for Endpoint

What we like about Microsoft Defender for Endpoint

Microsoft Defender for Endpoint provides the right security intelligence for Expel to analyze rich data and provide support for their customers.
Read more What we like about Microsoft Defender for Endpoint
Featured image for Turning the page on Solorigate and opening the next chapter for the security community

Turning the page on Solorigate and opening the next chapter for the security community

The recent SolarWinds attack is a moment of reckoning. Today, as we close our own internal investigation of the incident, we continue to see an urgent opportunity for defenders everywhere to unify and protect the world in a more concerted way. We also see an opportunity for every company to adopt a Zero Trust plan…
Read more Turning the page on Solorigate and opening the next chapter for the security community
Adult male in an office setting sitting at a desk with his hand poised over the keyboard of a black Microsoft Surface Pro 7 in laptop mode. Microsoft Excel visible on labptop and Microsoft PowerBI screen seen on monitor. Featured image for 6 strategies to reduce cybersecurity alert fatigue in your SOC

6 strategies to reduce cybersecurity alert fatigue in your SOC

Alert fatigue is a top of mind challenge when it comes to security monitoring. As a result, organizations are constantly trying to improve their human capabilities, processes, and technology to address the challenge. Microsoft is uniquely positioned to take on this problem by tapping into the end-to-end capabilities of our Extended detection and response (XDR) offering that doesn’t just span the key security domains of concern but is also tightly integrated across those domains and powered by intelligence.
Read more 6 strategies to reduce cybersecurity alert fatigue in your SOC
Adult female meeting in a conference room while using Microsoft Teams Together Mode on a Surface Hub 2S 85” device. Featured image for Afternoon Cyber Tea: Evaluating individual and organizational cyber risk in a pandemic

Afternoon Cyber Tea: Evaluating individual and organizational cyber risk in a pandemic

The pandemic is exposing weaknesses in cybersecurity—learn why an integrated security solution can help combat emerging cyber threats.
Read more Afternoon Cyber Tea: Evaluating individual and organizational cyber risk in a pandemic
Man in hooded sweater/sweatshirt inside a secure room who is looking at data and a geographic area displayed on a large monitor which is behind glass walls with reflections. Featured image for A playbook for modernizing security operations

A playbook for modernizing security operations

What’s the future of security operations? Dave Kennedy, Founder of Binary Defense, shares his insights on threat hunting, incident response, and more with Microsoft.
Read more A playbook for modernizing security operations
Featured image for Web shell attacks continue to rise

Web shell attacks continue to rise

A year ago, we reported the steady increase in the use of web shells in attacks worldwide. The latest Microsoft 365 Defender data shows that this trend not only continued, it accelerated. Read our investigation into the escalating prevalence of web shells.
Read more Web shell attacks continue to rise
Man with beard sitting behind a computer monitor with his hand to his chin thinking or looking up. Featured image for Why threat protection is critical to your Zero Trust security strategy

Why threat protection is critical to your Zero Trust security strategy

The corporate network perimeter has been completely redefined. Many IT leaders are adopting a Zero Trust security model where identities play a critical role in helping act as the foundation of their modern cybersecurity strategy. As a result, cybercriminals have shifted their focus and identities are increasingly under attack.
Read more Why threat protection is critical to your Zero Trust security strategy
Microsoft Cyber Defense Operations Center Featured image for Sophisticated cybersecurity threats demand collaborative, global response

Sophisticated cybersecurity threats demand collaborative, global response

Since December, the United States, its government, and other critical institutions including security firms have been addressing the world’s latest serious nation-state cyberattack, sometimes referred to as ‘Solorigate’ or ‘SUNBURST.’ As we shared earlier this is a moment of reckoning for our industry and needs a unified response of defenders across public and private sectors.
Read more Sophisticated cybersecurity threats demand collaborative, global response