Microsoft's Security Copilot now features AI agents designed to autonomously handle high-volume security tasks
#AI #Microsoft #MicrosoftSecurity #AIAgents #Cybersecurity #SecurityCopilot #AIinCybersecurity #CybersecurityUpdates
Recent searches
Search options
#microsoftsecurity
0 posts0 participants0 posts today
Microsoft's Bug Report Video Requirement Sparks Controversy in Infosec Community
A prominent vulnerability analyst has criticized Microsoft for demanding video proof of concept alongside bug reports, calling it a frustrating barrier to responsible disclosure. The incident highligh...
Having trouble with your Windows 10 or 11 PC? Check out our latest video: "How to Run Diagnostics on Windows 10 & 11: Step-by-Step Guide!" 
Get ready to troubleshoot like a pro! Watch now: 
https://bit.ly/3YtR1eT
Microsoft Discovery Hour: Secure your future with the AI-first end-to-end security platform Event
When: Wednesday, February 26, 2025, 1:00 – 2:00 PM Eastern Time
msevents.microsoft.com/event?id=933...
#microsoft #microsoftevent #microsoftevents #ai #microsoftsecurity #aisecurity #zerotrust #onlineevent #onlineevents #learning
Microsoft's New Sign-In Policy: A Double-Edged Sword for Security
In a significant shift, Microsoft is altering its sign-in process, which could expose users to greater security risks. Starting February 2025, the company will automatically keep users signed in unles...
https://news.lavx.hu/article/microsoft-s-new-sign-in-policy-a-double-edged-sword-for-security
Windows 11 Gets a Major Security Boost: KB5050009 and KB5050021 Updates Released
Microsoft has rolled out two critical updates for Windows 11, KB5050009 and KB5050021, addressing security vulnerabilities and enhancing user experience. These updates not only patch existing flaws bu...
Die indischen Betrugs-Callcenter haben offenbar inzwischen vom angeblichen #microsoftsecurity-Scam auf #paypalscam umgestellt. Gerade hatte ich einen in der Leitung. Da ich heute Feiertag habe und gut gelaunt war, hab ich das Spiel ca. 10 Minuten mitgespielt, bevor ich ihm gesagt habe, dass ich gar kein #PayPal-Konto habe.
Es ging die ganze Zeit darum, #anydesk auf einem meiner Geräte zu installieren und dann meine Daten abzugreifen.
Having trouble with your Windows 10 or 11 PC? Check out our latest video: "How to Run Diagnostics on Windows 10 & 11: Step-by-Step Guide!"
Get ready to troubleshoot like a pro! Watch now: https://bit.ly/3YtR1eT
Just learn that Microsoft didn’t delete my old hotmail account. I clearly did, I pressed the delete button and also believed it would get deleted in 2 years. After 10 years of inactivity, the account is still active but locked. WTF Microsoft. #tech #microsoft #microsoftsucks # #microsoftsecurity
Microsoft will base part of senior exec comp on security, add deputy CISOs to product groups - Charlie Bell, executive vice president of Microsoft security, speaks at the GeekW... - https://www.geekwire.com/2024/microsoft-will-base-part-of-senior-exec-comp-on-security-add-deputy-cisos-to-product-groups/ #cybersafetyreviewboard #microsoftsecurity #satyanadella #charliebell #microsoft
GeekWire · Microsoft will base part of senior exec comp on security, add deputy CISOs to product groupsCharlie Bell, executive vice president of Microsoft security, speaks at the GeekWire Summit in 2022. (GeekWire Photo / Dan DeLong) Microsoft is changing
Introducing Microsoft's new 7-lesson open-source course, “Security for Beginners”.
Small lessons that should take around 30-60 mins to complete and will teach you fundamental cybersecurity concepts.
Kick-start your security learning here: https://aka.ms/sec101-beginners
GitHubGitHub - microsoft/Security-101: 8 Lessons, Kick-start Your Cybersecurity Learning.8 Lessons, Kick-start Your Cybersecurity Learning. - microsoft/Security-101
To my Italian speaking followers!
Episode 2 of Defender for Podcast is out! We’ll try to organize the multitude of resources available for training in Microsoft Security: official resources such as the Learn platform, SC certifications and also the brand new Applied Skills.
https://itspecialist.cloud/en/defender-for-podcast-episode-2-formazione-microsoft-security/
Thanks @microsoftitalia for the hospitality in the beautiful Microsoft House in Milan!
IT Specialist Cloud · Defender for Podcast - Ep. 2 - Training in Microsoft SecurityWe're getting used to it! Here we are with the second episode of Defender for Podcast, where we talk about training!
I'm giving up on the Microsoft Defender 'Exposure Score'. It's flagging multiple devices (all Intel laptops running Windows 10) as vulnerable to CVE-2023-6129, which is specific to PowerPC architecture. If they spent less time flagging OpenSSL issues which are not exploitable and more time looking after their own code/infrastructure I'd be happy. #microsoftdefender #microsoftsecurity
Join us at InfoSec Jupyterthon 2024.
This online event, to be held on February 15-16, 2024, serves as an opportunity for infosec analysts and engineers to meet and engage with security practitioners using notebooks in their daily work. It is organized by our friends at Open Threat Research, together with folks from the Microsoft Threat Intelligence community.
Some of the topics to be covered in this year’s talks include:
Analyzing Active Directory with Bloodhound CE, Jupyter, and Python
Graphing ransomware & data leak sites trends with Plotly
Threat hunting in three dimensions
Guardians of Identity: OKTA’s underworld
Hacking proprietary protocols with pandas
Predicting Windows binary download links with Jupyter notebooks
Comparison of collaboration methods between MSTICpy and Splunk SIEM
Building a community around notebooks for DFIR and SecOps
Building data-driven security tools with Streamlit
Red teaming LLMs with Jupyter notebooks
Automating adversary emulation
Applying machine learning for C2 beaconing detection
https://www.microsoft.com/en-us/security/blog/2024/01/29/join-us-at-infosec-jupyterthon-2024/
Microsoft Security Blog · Join us at InfoSec Jupyterthon 2024 | Microsoft Security BlogJupyter notebooks are continuing to grow in popularity in information security as an alternative or supplement to mainstream security operations center (SOC) tools. Notebooks can be used interactively for threat detection and response, or as automated tasks in a larger pipeline. Their flexibility and ability to combine code, data analysis, and visualization in a single, […]
#Cybersécurité : Microsoft a été ciblé par le groupe de hackers Midnight Blizzard, précédemment connu sous le nom de Nobelium, qui a réussi à accéder à une petite quantité de comptes de messagerie internes, y compris ceux de l'équipe de direction. L'attaque, qui n'a pas exploité de failles dans les produits Microsoft, a été contenue rapidement sans preuve d'accès aux données clients. Microsoft renforce ses mesures de sécurité en réponse à cet incident, soulignant l'importance de la transparence et de l'amélioration continue de la cybersécurité. 
#TechNews #MicrosoftSecurity
https://www.lemagit.fr/actualites/366567277/Microsoft-victime-dune-intrusion-de-lAPT-russe-a-lorigine-de-lattaque-SolarWinds
LeMagIT.fr · Microsoft victime d’une intrusion de l’APT russe à l’origine de l’attaque SolarWinds
Let me introduce to you #LearningFriday! A weekly collection of interesting content related to #MicrosoftSecurity, #MicrosoftEntra, #Microsoft365.
Today, a very intriguing eBook by @rodtrent: Microsoft Sentinel SOC 101.
https://itspecialist.cloud/en/ebook-microsoft-sentinel-soc-101
Happy reading!
IT Specialist Cloud · eBook: Microsoft Sentinel SOC 101'ResourceFriday', which has been missing for a while: a very useful free eBook written by the legendary Rod Trent on using Microsoft Sentinel to detect and mitigate some of the most common and impactful cyberattacks.
𝗪𝗵𝗮𝘁 𝗶𝘀 𝗠𝗶𝗰𝗿𝗼𝘀𝗼𝗳𝘁 𝗦𝗲𝗰𝘂𝗿𝗶𝘁𝘆 𝗖𝗼𝗽𝗶𝗹𝗼𝘁?
"It is a generative AI-powered security solution that helps increase the efficiency and capabilities of defenders to improve security outcomes at machine speed and scale, while remaining compliant to responsible AI principles."
The primary focus of the Early Access Program is centered around:
𝗜𝗻𝗰𝗶𝗱𝗲𝗻𝘁 𝗿𝗲𝘀𝗽𝗼𝗻𝘀𝗲
𝗦𝗲𝗰𝘂𝗿𝗶𝘁𝘆 𝗽𝗼𝘀𝘁𝘂𝗿𝗲 𝗺𝗮𝗻𝗮𝗴𝗲𝗺𝗲𝗻𝘁
𝗦𝗲𝗰𝘂𝗿𝗶𝘁𝘆 𝗿𝗲𝗽𝗼𝗿𝘁𝗶𝗻𝗴
"Here's an explanation of how Microsoft Security Copilot works:
User prompts from security products are sent to Security Copilot.
Security Copilot then pre-processes the input prompt through an approach called grounding, which improves the specificity of the prompt, to help you get answers that are relevant and actionable to your prompt. Security Copilot accesses plugins for pre-processing, then sends the modified prompt to the language model.
Security Copilot takes the response from the language model and post-processes it. This post-processing includes accessing plugins to gain contextualized information.
Security Copilot returns the response, where the user can review and assess the response."
https://learn.microsoft.com/en-us/security-copilot/microsoft-security-copilot
𝗠𝗶𝗰𝗿𝗼𝘀𝗼𝗳𝘁 𝗗𝗶𝗴𝗶𝘁𝗮𝗹 𝗗𝗲𝗳𝗲𝗻𝘀𝗲 𝗥𝗲𝗽𝗼𝗿𝘁 𝟮𝟬𝟮𝟯 𝗶𝘀 𝗼𝘂𝘁!
It covers trends between July 2022 and June 2023 across nation-state activity, cybercrime, and defense techniques.
Report: https://aka.ms/aka.ms.mddrrep
Executive summary: https://aka.ms/aka.ms.mddrexecrep
𝗗𝗲𝗳𝗲𝗻𝗱𝗶𝗻𝗴 𝗻𝗲𝘄 𝘃𝗲𝗰𝘁𝗼𝗿𝘀: 𝗧𝗵𝗿𝗲𝗮𝘁 𝗮𝗰𝘁𝗼𝗿𝘀 𝗮𝘁𝘁𝗲𝗺𝗽𝘁 𝗦𝗤𝗟 𝗦𝗲𝗿𝘃𝗲𝗿 𝘁𝗼 𝗰𝗹𝗼𝘂𝗱 𝗹𝗮𝘁𝗲𝗿𝗮𝗹 𝗺𝗼𝘃𝗲𝗺𝗲𝗻𝘁
Nice write-up by Microsoft security researchers about new campaign where attackers attempted to move laterally to a cloud environment through a SQL Server instance.
Attackers are now attempting to move laterally into cloud environments via SQL Server instances—a method previously seen in VMs and Kubernetes clusters but not in SQL Server.
Today's audio version of the show is released early on Substack for those that want to listen in before it hits the major podcast networks on Friday.
Microsoft Security Insights Show Episode 158 - Peter Morin (LANtastic and DR-DOS) https://rodtrent.com/5m9