Skip to content

Microsoft Secure

Clear All Apply Filters (156) Loading...
Your selected filters are:

    Blog Posts

    note-3

    March-April 2018 test results: More insights into industry AV tests

    By
    In a previous post, in the spirit of our commitment to delivering industry-leading protection, customer choice, and transparency on the quality of our solutions, we shared insights and context into the results of AV-TEST’s January-February 2018 test cycle. We released a transparency report to help our customers and the broader security community to stay informed...

    Read more

    Hawkeye Keylogger – Reborn v8: An in-depth campaign analysis

    By
    Much of cybercrime today is fueled by underground markets where malware and cybercriminal services are available for purchase. These markets in the deep web commoditize malware operations. Even novice cybercriminals can buy malware toolkits and other services they might need for malware campaigns: encryption, hosting, antimalware evasion, spamming, and many others. Hawkeye Keylogger is an...

    Read more

    EMS_business scenario planning 1

    Assessing Microsoft 365 security solutions using the NIST Cybersecurity Framework

    By , Senior Product Marketing Manager, Microsoft 365 Security Product Marketing
    This blog is part of a series that responds to common questions we receive from customers about deployment of Microsoft 365 security solutions. In this series, you’ll find context, answers, and guidance for deployment and driving adoption within your organization. Check out our last blog New FastTrack benefit: Deployment support for Co-management on Windows 10 devices....

    Read more

    fig-1-overview-exploit-process

    Taking apart a double zero-day sample discovered in joint hunt with ESET

    By
    In late March 2018, I analyzed an interesting PDF sample found by ESET senior malware researcher Anton Cherepanov. The sample was initially reported to Microsoft as a potential exploit for an unknown Windows kernel vulnerability. During my investigation in parallel with ESET researchers, I was surprised to discover two new zero-day exploits in the same PDF....

    Read more

    The need and opportunity for adaptive prevention in the cloud

    By
    This post is authored by Michael Bargury, Data Scientist, C+E Security.  The need The cloud introduces new security challenges, which differ from classic ones by diversity and scale. Once a Virtual Machine (VM) is up and running with an open internet port, it is almost instantaneously subject to vulnerability scanning and Brute Force (BF) attacks....

    Read more

    fig-3-zero-trust-network-model-for-azure-ad-applications

    Building Zero Trust networks with Microsoft 365

    By
    The traditional perimeter-based network defense is obsolete. Perimeter-based networks operate on the assumption that all systems within a network can be trusted. However, today’s increasingly mobile workforce, the migration towards public cloud services, and the adoption of Bring Your Own Device (BYOD) model make perimeter security controls irrelevant. Networks that fail to evolve from traditional...

    Read more

    fig5-multilayered-ML-models-non-pe

    Machine learning vs. social engineering

    By
    Machine learning is a key driver in the constant evolution of security technologies at Microsoft. Machine learning allows Microsoft 365 to scale next-gen protection capabilities and enhance cloud-based, real-time blocking of new and unknown threats. Just in the last few months, machine learning has helped us to protect hundreds of thousands of customers against ransomware,...

    Read more

    VBS-secure-memory-enclave

    Virtualization-based security (VBS) memory enclaves: Data protection through isolation

    By
    The escalating sophistication of cyberattacks is marked by the increased use of kernel-level exploits that attempt to run malware with the highest privileges and evade security solutions and software sandboxes. Kernel exploits famously gave the WannaCry and Petya ransomware remote code execution capability, resulting in widescale global outbreaks. Windows 10 remained resilient to these attacks,...

    Read more