Microsoft released yesterday the March 2024 Patch Tuesday updates for Windows 11 and Windows 10 devices. The latest update includes fixes for two critical vulnerabilities in the Windows Hyper-V virtualization technology. This month’s Patch Tuesday updates address 60 security flaws in Windows and other components. There are 18 remote code execution (RCE) vulnerabilities and several…
The buzz around Microsoft Copilot has been well-documented. Since its inception, this intelligent AI assistant tool has offered users access to a wealth of information and resources to help them work more efficiently and effectively. It’s certainly part and parcel of Microsoft’s continued excellence in responsible AI integration across its estate. In this article, I’ll outline…
Last Update: Mar 15, 2022
Cloud Conversations is a weekly podcast that we’ll be featuring here on Petri. It’s about everything connected to cloud computing, including technologies like Azure, Microsoft 365, Power Platform, Microsoft Endpoint Manager (MEM), Microsoft Defender, Windows, Intune, and much more! Cloud Conversations – Matt Zorich on Azure Sentinel and KQL Matt Zorich is a Principal…
At its Ignite conference in September, Microsoft announced a serious of branding changes for Microsoft Defender and new features for Azure Sentinel.
Earlier this month, the Azure Sentinel and Microsoft Threat Intelligence Center (MSTIC) teams announced the public availability of ‘Fusion detection for ransomware’. Fusion is designed to automatically correlate security alerts that could be related to ransomware. More precisely, Microsoft said the Fusion machine learning model collates alerts detected in a specific timeframe during defense evasion…
Microsoft has gradually been transforming itself into a cloud and security company over the last few years. Now in public preview, Azure Sentinel brings many of the security features Microsoft uses to secure its own cloud environments to organizations that need to collect data from on-premise systems and cloud apps.
Last Update: Sep 13, 2023
Microsoft announced September 25th on its Security blog that Azure Sentinel has reached general availability. Based on Azure Monitor Log Analytics, Sentinel adds a cloud-native Security Information and Event Management (SIEM) solution to Azure’s already long list of services.
UEBA can identify unusual activity and help SOC teams identify if there is a compromised entity or a malicious insider.
Last week Microsoft announced improvements to its cloud-native SIEM product, Azure Sentinel. In an effort to make Sentinel more efficient for Security Operations (SecOps) teams, Microsoft has improved the quality of rules and includes more innate intelligence out-of-the-box. There’s also built-in support for SAP in preview. Plus, other features like UEBA and entity pages, which…
How to connect Windows Server to Microsoft’s modern cloud-native SIEM solution Azure Sentinel.