Skip to content
Microsoft Secure

Detecting threat actors in recent German industrial attacks with Windows Defender ATP

When a Germany-based industrial conglomerate disclosed in December 2016 that it was breached early that year, the breach was revealed to be a professionally run industrial espionage attack. According to the German press, the intruders used the Winnti family of malware as their main implant, giving them persistent access to the conglomerate’s network as early...

Read more

Are Viruses Making a Comeback?

In the six or seven years that we have been publishing the Microsoft Security Intelligence Report (SIR) I have seen many trends emerge over time.  The threat landscape is constantly changing as attackers try to find methods that will help them compromise the systems they target.  For several years viruses (file infectors) seemed to be...

Read more

On The Origins of Malware: Are Malware Hosting Sites in Your State or Region?

Systems that host and distribute malware are located all over the world.  These systems have typically been compromised and are being used for illicit purposes unbeknownst to the administrators of the systems.  These compromised machines can be personal computers located in homes and small businesses, as well as servers in data centers.  Some background informationTo...

Read more

RSA Conference 2013: Thank-you RSA Attendees!

The RSA Conference in San Francisco is over for another year.  I want to thank all those conference attendees that attended one of the many activities Microsoft had going on during the week or took time to visit our booth. Special thanks to those conference attendees that attended the breakout session that Jeff Jones and...

Read more

Microsoft Security Intelligence Report Volume 13 Released

This morning, Adrienne Hall, General Manager for Trustworthy Computing delivered a keynote speech at RSA Europe and announced the availability of the Microsoft Security Intelligence Report volume 13 (SIRv13).  It’s hard to believe that it’s been over six years since we published the first volume of the report.  The report has evolved a lot since...

Read more