Skip to main content
Skip to main content
Microsoft
Security
Security
Security
Home
Solutions
Cloud security
Compliance management
Identity & access management
Identity & access management
Decentralized identity blockchain
Identity & access management overview
Identity compromise protection
Identity governance
Seamless user experiences
Secure app access
Unified identity management
Information protection & governance
Risk management
Secure remote work
Threat protection
Zero Trust
Products
App & email security
App & email security
Azure Dedicated HSM
Azure Key Vault
Microsoft Cloud App Security
Microsoft Defender for Office 365
Compliance
Compliance
Compliance management
Information protection & governance
Risk management
Endpoint security
Endpoint security
Azure Defender for IoT
Azure IoT Central
Azure Sphere
Microsoft Defender for Endpoint
Microsoft Defender for Identity
Microsoft Endpoint Manager
Identity & access management
Identity & access management
Azure Active Directory
Conditional Access
External identities
Identity protection
Multifactor authentication (MFA)
Passwordless Authentication
Privileged Identity Management (PIM)
SSO solution: Secure app access with single sign-on
Network security
Network security
Azure Application Gateway
Azure DDoS Protection
Azure Firewall
Azure Firewall manager
Azure Front-door
Azure VPN Gateway
Azure Web Application Firewall
Privacy management
Security posture
Security posture
Azure Security Center
Microsoft Secure Score
SIEM & XDR
SIEM & XDR
Azure Defender
Azure Defender for IoT
Azure Sentinel
Microsoft 365 Defender
Microsoft Defender for Endpoint
Partners
Find a partner
Government partners
Industry alliances
Microsoft Intelligent Security Association
Partners overview
Resources
Intelligence reports
Security blog
Security operations
Security technical content
Service Trust Portal
Trust Center
Webinars, whitepapers & more
More
All Microsoft
Microsoft 365
Azure
Office 365
Dynamics 365
Power Platform
Windows 10
Products & Services
Products & Services
Windows Server
Enterprise Mobility + Security
Power BI
Teams
Visual Studio
Microsoft Advertising
Emerging Technologies
Emerging Technologies
AI
Internet of Things
Azure Cognitive Services
Quantum
Microsoft HoloLens
Mixed Reality
Developer & IT
Developer & IT
Docs
Developer Center
Windows Dev Center
Windows IT Pro Center
FastTrack
Power Platform
Partner
Partner
Partner Network
Solution Providers
Partner Center
Cloud Hosting
Industries
Industries
Education
Financial services
Government
Health
Manufacturing & resources
Retail
Other
Other
Security
Licensing
AppSource
Azure Marketplace
Events
Research
View Sitemap
Search
Search Microsoft.com
Cancel
Sign in
Ransomware
Featured image for Microsoft Digital Defense Report 2020: Cyber Threat Sophistication on the Rise
September 29, 2020
Microsoft Digital Defense Report 2020: Cyber Threat Sophistication on the Rise
A new report from Microsoft shows it is clear that threat actors have rapidly increased in sophistication over the past year, using techniques that make them harder to identify.
Read more
Microsoft Digital Defense Report 2020: Cyber Threat Sophistication on the Rise
Featured image for Inside Microsoft Threat Protection: Attack modeling for finding and stopping lateral movement
June 10, 2020
Inside Microsoft Threat Protection: Attack modeling for finding and stopping lateral movement
Microsoft Threat Protection uses a data-driven approach for identifying lateral movement, combining industry-leading optics, expertise, and data science to deliver automated discovery of some of the most critical threats today.
Read more
Inside Microsoft Threat Protection: Attack modeling for finding and stopping lateral movement
Featured image for Ransomware groups continue to target healthcare, critical services; here’s how to reduce risk
April 28, 2020
Ransomware groups continue to target healthcare, critical services; here’s how to reduce risk
Multiple ransomware groups that have been accumulating access and maintaining persistence on target networks for several months activated dozens of ransomware deployments in the first two weeks of April 2020.
Read more
Ransomware groups continue to target healthcare, critical services; here’s how to reduce risk
Featured image for Microsoft works with healthcare organizations to protect from popular ransomware during COVID-19 crisis: Here’s what to do
April 1, 2020
Microsoft works with healthcare organizations to protect from popular ransomware during COVID-19 crisis: Here’s what to do
Microsoft identified several dozens of hospitals with vulnerable gateway and VPN appliances. We sent these hospitals a first-of-its-kind notification with important info about the vulnerabilities, how attackers can take advantage of them, and a strong recommendation to apply security updates.
Read more
Microsoft works with healthcare organizations to protect from popular ransomware during COVID-19 crisis: Here’s what to do
Featured image for Latest Astaroth living-off-the-land attacks are even more invisible but not less observable
March 23, 2020
Latest Astaroth living-off-the-land attacks are even more invisible but not less observable
Astaroth is back sporting significant changes. The updated attack chain maintains Astaroth’s complex, multi-component nature and continues its pattern of detection evasion.
Read more
Latest Astaroth living-off-the-land attacks are even more invisible but not less observable
Featured image for Secured-core PCs: A brief showcase of chip-to-cloud security against kernel attacks
March 17, 2020
Secured-core PCs: A brief showcase of chip-to-cloud security against kernel attacks
Secured-core PCs combine virtualization, operating system, and hardware and firmware protection. Along with Microsoft Defender ATP, Secured-core PCs provide end-to-end protection against advanced attacks that leverage driver vulnerabilities to gain kernel privileges.
Read more
Secured-core PCs: A brief showcase of chip-to-cloud security against kernel attacks
Featured image for Human-operated ransomware attacks: A preventable disaster
March 5, 2020
Human-operated ransomware attacks: A preventable disaster
In human-operated ransomware attacks, adversaries exhibit extensive knowledge of systems administration and common network security misconfigurations, perform thorough reconnaissance, and adapt to what they discover in a compromised network.
Read more
Human-operated ransomware attacks: A preventable disaster
October 23, 2018
Top 10 security steps in Microsoft 365 that political campaigns can take today
With the U.S. midterm elections rapidly approaching, campaigns must be vigilant in protecting against cyberattacks to their online collaboration tools, including email. Microsoft has compiled a list of 10 high-impact, easy-to-implement security settings that any campaign or election organization should consider for increased security in Microsoft 365.
Read more
Top 10 security steps in Microsoft 365 that political campaigns can take today
Featured image for Attack inception: Compromised supply chain within a supply chain poses new risks
July 26, 2018
Attack inception: Compromised supply chain within a supply chain poses new risks
A new software supply chain attack unearthed by Windows Defender Advanced Threat Protection (Windows Defender ATP) emerged as an unusual multi-tier case. Unknown attackers compromised the shared infrastructure in place between the vendor of a PDF editor application and one of its software vendor partners, making the app’s legitimate installer the unsuspecting carrier of a…
Read more
Attack inception: Compromised supply chain within a supply chain poses new risks
Featured image for Virtualization-based security (VBS) memory enclaves: Data protection through isolation
June 5, 2018
Virtualization-based security (VBS) memory enclaves: Data protection through isolation
The escalating sophistication of cyberattacks is marked by the increased use of kernel-level exploits that attempt to run malware with the highest privileges and evade security solutions and software sandboxes. Kernel exploits famously gave the WannaCry and Petya ransomware remote code execution capability, resulting in widescale global outbreaks. Windows 10 remained resilient to these attacks,…
Read more
Virtualization-based security (VBS) memory enclaves: Data protection through isolation
1
2
3
Next Page
