Microsoft has announced some important updates coming to the SIEM Migration experience. These new capabilities are designed to more context-aware translations to streamline the process of moving from Splunk to Microsoft Sentinel. The Schema mappings feature is designed to help customers migrate from Splunk to Microsoft Sentinel. It allows administrators to define how each type...
Microsoft announced yesterday a public preview of SOC optimization for Microsoft Sentinel customers. The feature provides actionable tailored recommendations, allowing organizations to pinpoint data utilization gaps and thwart various cyber threats. Microsoft emphasized the importance of security teams optimizing both processes and outcomes. They should consistently adjust their security controls to adapt to evolving threat…
Microsoft has announced the general availability of the Amazon Web Services (AWS) S3 connector for Microsoft Sentinel. This new connector allows organizations to ingest service logs from various AWS services directly into Sentinel. Microsoft Sentinel is a security solution that provides a central hub for monitoring security events, automating responses, and providing insights into security…
Nasuni has announced a new integration with Microsoft Sentinel. This release enables organizations to automatically detect security threats and initiate responses in enterprise environments. Nasuni’s file data platform offers a cloud-native solution to help organizations manage and store their data. The unified platform combines primary file storage, backup, disaster recovery, and file-sharing capabilities. Some key…
Microsoft has announced the release of Microsoft Sentinel All-in-One v2. The latest version is designed to help customers reduce costs and speed up the deployment and configuration process. Microsoft Sentinel is a cloud-based Security Information and Event Management (SIEM) solution for Microsoft 365 and Microsoft Azure. Formerly known as Azure Sentinel, the tool allows customers…
Microsoft has released a new Azure DDoS Protection solution for Microsoft Sentinel. The new service leverages Azure DDoS Protection logs to automatically track and block DDoS sources to mitigate sophisticated attacks. Microsoft Sentinel is a cloud-based security solution that allows security teams to detect and mitigate threats, monitor security events, and analyze data in their…
Last Update: Feb 02, 2023
Microsoft announced yesterday some important updates for Microsoft Sentinel. This release brings a new feature that allows IT admins to manually create incident reports for investigation and remediation. Microsoft Sentinel is a cloud-based security information and event manager (SIEM) solution that helps organizations to analyze large volumes of data in enterprise environments. It leverages threat…
Last Update: Feb 02, 2023
Microsoft has released a new guided hunting notebook for its Microsoft Sentinel solution. The notebook enables organizations to leverage machine learning to detect, investigate as well as block low and slow password spray campaigns. Password spraying is a type of brute force attack that allows malicious actors to gain unauthorized access to computer systems. Hackers…
Last Update: Nov 19, 2024
Microsoft has announced some important updates for Microsoft Sentinel, its scalable cloud-native SIEM tool that provides AI-powered security analytics in enterprise environments. The Redmond giant has launched a new solution in public preview that should help IT Admins to detect Apache Log4j vulnerabilities. Last week, Microsoft acknowledged the emergence of an Apache Log4j vulnerability (CVE-2021-44228)…