Microsoft has introduced a new Azure Active Directory Identity Protection alerts feature in Microsoft 365 Defender. The feature is designed to help organizations prevent threat actors from gaining unauthorized access to enterprise networks via compromised accounts. With this release, IT admins can now configure policies to trigger Identity Protection alerts when one or more user…
Microsoft has announced the general availability of several new security capabilities in its Microsoft Authenticator app. The first new feature that the company highlighted today is number matching support, which prompts users to enter a number displayed on the sign-in screen to verify their identities. Last month, Microsoft warned about the rise in MFA fatigue…
Microsoft has partnered with Yubico to announce new security solutions to help organizations prevent phishing attacks against Azure, Office 365, and remote desktop environments. The new security tools are designed to make it harder for malicious actors to target privileged Azure customers. YubiKey is a USB-like hardware authentication device that lets users secure access to…
Microsoft has published an advisory about a server misconfiguration that may have compromised the sensitive data of some potential customers. The leak, dubbed “BlueBleed,” was first discovered by security researchers at threat intelligence firm SOCRadar on September 24. The Microsoft Security Response Center explained that the misconfigured Azure Blob Storage instance made data related to…
Microsoft has recently discovered a new ransomware campaign that’s targeting organizations within the transportation and logistics industries across Poland and Ukraine. The novel Prestige ransomware strain was first found on October 11, and the attackers targeted a wide range of systems within an hour. The Microsoft Threat Intelligence Center (MSTIC) explained that it has been…
Microsoft announced several new security features and services at its Ignite 2022 conference this week. Specifically, the company introduced two new security solutions called Defender for DevOps and Defender Cloud Security Posture Management. Microsoft Defender for DevOps is a service that enables developers to detect and remediate code vulnerabilities during the software development life cycle….
Last week, cybersecurity researchers warned that the North Korean hacking group “Lazarus” exploited Dell hardware drivers to deploy a Windows rootkit. The phishing campaign was discovered by security firm ESET in the Fall of 2021, and it targeted Aerospace experts and political journalists in Europe. According to the ESET’s report, the North Korean state-backed advanced…
Last Update: Oct 07, 2022
Protecting your brand and your employees from phishing attacks is a critical first step to keeping your environment secure.
Microsoft has partnered with Experian to bring identity theft protection monitoring capabilities to its Microsoft Defender for individuals solution. The feature enables Microsoft 365 subscribers to monitor personal and family identity details for security breaches on the public internet and the dark web. Microsoft Defender for individuals launched back in June to help users manage…
Last Update: Sep 29, 2022
Russell Smith, Editorial Director of Petri, talks to Maurice Cote from Devolutions about the difference between cybersecurity and IT security and what it means for IT departments.