Digital Security Tips and Solutions - Microsoft Security Blog

June 29, 2022 • 6 min read

Microsoft at RSA 2022: Envisioning the future of security

The 2022 RSA Conference was a great success, drawing 26,000 attendees to three days of cutting-edge security sessions, tutorials, seminars, and special events at Moscone Center in San Francisco. Microsoft Security was on the ground, interacting with customers and security professionals at Microsoft’s 20-plus earned sessions, as well as showcasing new solutions like Microsoft Entra that help realize our goal of comprehensive security.

Photo of a person looking at a mobile phone

June 30, 2022 • 17 min read

Toll fraud malware: How an Android application can drain your wallet

Toll fraud malware, a subcategory of billing fraud in which malicious applications subscribe users to premium services without their knowledge or consent, is one of the most prevalent types of Android malware – and it continues to evolve.

Developer with facing monitors with her back to the camera

June 30, 2022 • 14 min read

Using process creation properties to catch evasion techniques

We developed a robust detection method in Microsoft Defender for Endpoint that can catch known and unknown variations of a process execution class used by attackers to evade detection. This class of stealthy execution techniques include process doppelganging, process herpadering, and process ghosting.

Enterprise office worker in focused work with a neutral facial expression.

June 28, 2022 • 6 min read

How security leaders can help their teams avoid burnout

Maria Markstedter, CEO of Azeria Labs, shares insights on the growing interest in Arm assembly and strategies to help security professionals avoid burnout.

CISO (chief information security officer) presents to the board of executives on security topics in a conference room setting.

June 27, 2022 • 4 min read

4 breakthrough ideas for compliance and data security

Learn how Zero Trust and other data protection strategies can help you overcome four key challenges in compliance management and data governance.

CISO (chief information security officer) collaborating with practitioners in a security operations center.

June 23, 2022 • 6 min read

Detecting malicious key extractions by compromised identities for Azure Cosmos DB

Azure Cosmos DB is a fully managed NoSQL cloud database service for modern app development. It offers a variety of advanced built-in features, such as automatic worldwide data replication, lightning-fast response types, and a variety of APIs. In this blog post, we describe security practices for securing access to Azure Cosmos DB and show how monitoring relevant control plane operations can help in the detection of potentially compromised authorization.

Conference room table with four people in a meeting with Surface Laptop Go 2 and Surface 2-in-1‘s.

June 22, 2022 • 2 min read

Microsoft Defender for Office 365 receives highest award in SE Labs Enterprise Email Security Services test

Microsoft received an AAA Protection Award for Microsoft Defender for Office 365, the highest possible award that vendors can achieve in this test.

Photo of Microsoft Cyber Defense Operations Center with the word "Protect" in the foreground.

June 21, 2022 • 7 min read

Improving AI-based defenses to disrupt human-operated ransomware

To disrupt human-operated ransomware attacks as early as possible, we enhanced the AI-based protections in Microsoft Defender for Endpoint with a range of specialized machine learning techniques that swiftly identify and block malicious files, processes, or behavior observed during active attacks.

CEO of textile manufacturing plant working on shop floor analyzing data on her laptop.

June 20, 2022 • 3 min read

Securing your IoT with Edge Secured-core devices

To simplify your IoT security journey, today, we’re announcing the availability of Windows IoT Edge Secured-core devices available in the Azure Certified Device catalog from Lenovo, ASUS and AAEON, additionally we’re also announcing the availability of devices that meet the Microsoft sponsored Edge Compute Node protection profile which is governed with industry oversight, from Scalys and Eurotech. And learn more on Microsoft’s investments in MCU security.

June 20, 2022 • 6 min read

How one Microsoft software engineer works to improve access management

Igor Sakhnov, corporate vice president of Identity and Network Access Engineering, talks with software engineer Rebecca Nzioki about her journey to computer science and Microsoft’s Africa Development Center in Kenya.

A laptop and a mobile phone displaying Microsoft Defender.

June 16, 2022 • 3 min read

Making the world a safer place with Microsoft Defender for individuals

Microsoft Defender for individuals helps people keep their families safer online with simplified cybersecurity and cross-platform online protection.

Decision maker (DM) collaborating in an open, casual space.

June 15, 2022 • 6 min read

Why strong security solutions are critical to privacy protection

Former three-term Ontario Information and Privacy Commissioner Ann Cavoukian, Ph.D., talks about her seven foundational principles of privacy by design and the importance of data privacy.

CISO (chief information security officer) collaborating in a security operations center.

June 13, 2022 • 14 min read

The many lives of BlackCat ransomware

The use of an unconventional programming language, multiple target devices and possible entry points, and affiliation with prolific threat activity groups have made the BlackCat ransomware a prevalent threat and a prime example of the growing ransomware-as-a-service (RaaS) gig economy.