Blog

Windows-11-notebook-tablet

March 2024 Patch Tuesday Updates Fix Critical Hyper-V Vulnerabilities

Microsoft released yesterday the March 2024 Patch Tuesday updates for Windows 11 and Windows 10 devices. The latest update includes fixes for two critical vulnerabilities in the Windows Hyper-V virtualization technology. This month’s Patch Tuesday updates address 60 security flaws in Windows and other components. There are 18 remote code execution (RCE) vulnerabilities and several…

View Article
copilot key windows 11 pcs hero approved

How to Enable Microsoft Copilot Effectively: A Quick Guide

The buzz around Microsoft Copilot has been well-documented. Since its inception, this intelligent AI assistant tool has offered users access to a wealth of information and resources to help them work more efficiently and effectively. It’s certainly part and parcel of Microsoft’s continued excellence in responsible AI integration across its estate. In this article, I’ll outline…

View Article
Cloud Conversations

Cloud Conversations – Matt Zorich on Azure Sentinel and KQL

Last Update: Mar 15, 2022

 Cloud Conversations is a weekly podcast that we’ll be featuring here on Petri. It’s about everything connected to cloud computing, including technologies like Azure, Microsoft 365, Power Platform, Microsoft Endpoint Manager (MEM), Microsoft Defender, Windows, Intune, and much more! Cloud Conversations – Matt Zorich on Azure Sentinel and KQL Matt Zorich is a Principal…

View Article

Microsoft Brings Integrated SIEM and XDR Tools to Defender and Azure Sentinel

At its Ignite conference in September, Microsoft announced a serious of branding changes for Microsoft Defender and new features for Azure Sentinel.

View Article

Azure Sentinel Gets Fusion AI Early Ransomware Detection in Preview

Earlier this month, the Azure Sentinel and Microsoft Threat Intelligence Center (MSTIC) teams announced the public availability of ‘Fusion detection for ransomware’. Fusion is designed to automatically correlate security alerts that could be related to ransomware. More precisely, Microsoft said the Fusion machine learning model collates alerts detected in a specific timeframe during defense evasion…

View Article

Cloud-Native SIEM and Built-in AI for Analytics with Azure Sentinel

Microsoft has gradually been transforming itself into a cloud and security company over the last few years. Now in public preview, Azure Sentinel brings many of the security features Microsoft uses to secure its own cloud environments to organizations that need to collect data from on-premise systems and cloud apps.

View Article

Azure Sentinel, Microsoft’s Cloud-Native SIEM Solution, Is Now Generally Available

Last Update: Sep 13, 2023

Microsoft announced September 25th on its Security blog that Azure Sentinel has reached general availability. Based on Azure Monitor Log Analytics, Sentinel adds a cloud-native Security Information and Event Management (SIEM) solution to Azure’s already long list of services.

View Article

Understanding How Azure Sentinel and Entity Behavior Analytics Deliver Actionable Intelligence

UEBA can identify unusual activity and help SOC teams identify if there is a compromised entity or a malicious insider.

View Article

Microsoft Azure Sentinel gets SAP Support, Plus UEBA and Entity Pages Reach GA

Last week Microsoft announced improvements to its cloud-native SIEM product, Azure Sentinel. In an effort to make Sentinel more efficient for Security Operations (SecOps) teams, Microsoft has improved the quality of rules and includes more innate intelligence out-of-the-box. There’s also built-in support for SAP in preview. Plus, other features like UEBA and entity pages, which…

View Article

Monitor Windows Server Security Using Azure Sentinel Part 1 – Set Up a Workspace and Data Connector

How to connect Windows Server to Microsoft’s modern cloud-native SIEM solution Azure Sentinel.

View Article
Go to page