Skip to main content
Skip to main content
Microsoft Security
Sign in
• 4 min read

Microsoft showcases the future of comprehensive security at RSA 2022

Read more Microsoft showcases the future of comprehensive security at RSA 2022
Subscribe
Cable cords plugged into a middle of row switch configuration Featured image for Anatomy of a DDoS amplification attack
• 8 min read

Anatomy of a DDoS amplification attack

Amplification attacks are one of the most common distributed denial of service (DDoS) attack vectors. These attacks are typically categorized as flooding or volumetric attacks, where the attacker succeeds in generating more traffic than the target can process, resulting in exhausting its resources due to the amount of traffic it receives.
Read more Anatomy of a DDoS amplification attack
Security practitioner looking at desktop screens and working to investigate threats. Featured image for How to improve risk management using Zero Trust architecture
• 5 min read

How to improve risk management using Zero Trust architecture

Risk management plays a critical role in helping organizations with their security posture enhancement. Taking insider incidents as an example, they are not only costly to organizations but also time-consuming to be contained. As such, the ROI is maximized in effectively protecting the organizations’ assets as well as ensuring their business operations. Risk management is an ongoing activity. Are the long-established risk management programs in the enterprises staying on top of the evolving digital and threat landscapes?
Read more How to improve risk management using Zero Trust architecture
Featured image for Beneath the surface: Uncovering the shift in web skimming
• 10 min read

Beneath the surface: Uncovering the shift in web skimming

Web skimming campaigns now employ various obfuscation techniques to deliver and hide the skimming scripts. It’s a shift from earlier tactics where attackers conspicuously injected the malicious scripts into e-commerce platforms and content management systems (CMSs) via vulnerability exploitation, making this threat highly evasive to traditional security solutions.
Read more Beneath the surface: Uncovering the shift in web skimming
Featured image for Rise in XorDdos: A deeper look at the stealthy DDoS malware targeting Linux devices
• 22 min read

Rise in XorDdos: A deeper look at the stealthy DDoS malware targeting Linux devices

Observing a 254% increase in activity over the last six months from a versatile Linux trojan called XorDdos, the Microsoft 365 Defender research team provides in-depth analysis into this stealthy malware's capabilities and key infection signs.
Read more Rise in XorDdos: A deeper look at the stealthy DDoS malware targeting Linux devices
A picture of a truck on a winding road Featured image for So you want to be a CISO: What you should know about data protection
• 6 min read

So you want to be a CISO: What you should know about data protection

Learn how insider threats, data siloes, and shifting responsibilities are all affecting data management—and how security professionals can diminish risks to the organization.
Read more So you want to be a CISO: What you should know about data protection
Worker in focused work with a neutral facial expression. Featured image for Easy authentication and authorization in Azure Active Directory with No-Code Datawiza
• 5 min read

Easy authentication and authorization in Azure Active Directory with No-Code Datawiza

The acceleration of cloud journeys fueled by the pandemic, and ever-increasing concerns about data security and information privacy, have made access management one of the hottest topics.
Read more Easy authentication and authorization in Azure Active Directory with No-Code Datawiza
Two people in the subway looking at a mobile device. Featured image for In hot pursuit of ‘cryware’: Defending hot wallets from attacks
• 14 min read

In hot pursuit of ‘cryware’: Defending hot wallets from attacks

The rise in cryptocurrency market capitalization paved the way to the emergence of threats Microsoft security researchers are referring to as “cryware”—information stealers focused on gathering and exfiltrating data from non-custodial cryptocurrency wallets.
Read more In hot pursuit of ‘cryware’: Defending hot wallets from attacks
Camera focused on laptop screen showing security dashboard while security decision makers present to the board of executives on security topics. Featured image for Center for Threat-Informed Defense, Microsoft, and industry partners streamline MITRE ATT&CK® matrix evaluation for defenders
• 5 min read

Center for Threat-Informed Defense, Microsoft, and industry partners streamline MITRE ATT&CK® matrix evaluation for defenders

The Center for Threat-Informed Defense, along with Microsoft and industry partners, collaborated on a repeatable methodology and a web-based calculator, aiming to streamline MITRE ATT&CK® use for defenders.
Read more Center for Threat-Informed Defense, Microsoft, and industry partners streamline MITRE ATT&CK® matrix evaluation for defenders
Microsoft Cyber Defense Operations Center. Featured image for Microsoft security experts outline next steps after compromise recovery
• 3 min read

Microsoft security experts outline next steps after compromise recovery

A compromise recovery, in general, means that we are implementing several years of work in cybersecurity in only six weeks. It is intense, and it changes how administrators work and how systems break. The main goals are to take back control, keep that control, and add this mindset to the customer.
Read more Microsoft security experts outline next steps after compromise recovery
Cybersecurity professionals collaborating in S O C with colorful line art overlaid. Featured image for Building a safer world together with our partners—introducing Microsoft Security Experts
• 8 min read

Building a safer world together with our partners—introducing Microsoft Security Experts

Technology alone is not enough to defend against cybercrime. It’s critical, but it’s the combination of leading technologies, comprehensive threat intelligence, and highly skilled people that makes for a truly effective security posture.
Read more Building a safer world together with our partners—introducing Microsoft Security Experts
Featured image for Ransomware-as-a-service: Understanding the cybercrime gig economy and how to protect yourself
• 34 min read

Ransomware-as-a-service: Understanding the cybercrime gig economy and how to protect yourself

Microsoft coined the term “human-operated ransomware” to clearly define a class of attack driven by expert humane intelligence at every step of the attack chain and culminate in intentional business disruption and extortion. In this blog, we explain the ransomware-as-a-service affiliate model and disambiguate between the attacker tools and the various threat actors at play during a security incident.
Read more Ransomware-as-a-service: Understanding the cybercrime gig economy and how to protect yourself
Security practitioner or information worker working from home office. Featured image for This World Password Day consider ditching passwords altogether
• 5 min read

This World Password Day consider ditching passwords altogether

Learn how Microsoft is helping to make your accounts more secure—without a password.
Read more This World Password Day consider ditching passwords altogether