Azure Sentinel News
  • Home
    • Home – Layout 1
    • Home – Layout 2
    • Home – Layout 3
  • Security and Compliance
  • SOC
  • Threat Intelligence
  • Security Ochestration & Automated Response
  • SOAR
  • Security Operations
  • Artificial Intelligence
No Result
View All Result
  • Home
    • Home – Layout 1
    • Home – Layout 2
    • Home – Layout 3
  • Security and Compliance
  • SOC
  • Threat Intelligence
  • Security Ochestration & Automated Response
  • SOAR
  • Security Operations
  • Artificial Intelligence
No Result
View All Result
Azure Sentinel News
No Result
View All Result
Home Threat Intelligence

Microsoft brings endpoint & Azure security under Microsoft Defender

Azure Sentinel News Editor by Azure Sentinel News Editor
November 19, 2020
in Threat Intelligence
0
Microsoft brings endpoint & Azure security under Microsoft Defender
3.8kViews
1451 Shares Share on Facebook Share on Twitter

The Microsoft security platform formerly known as Microsoft Threat Protection has a new name and new capabilities, announced at Microsoft Ignite last week.

The new name, Microsoft Defender, brings Microsoft 365 Defender and Azure Defender under the same umbrella.

Microsoft 365 Defender

Microsoft Threat Protection is now known as Microsoft 365 Defender, an extended detection and response (XDR) solution for end user environments.

Microsoft 365 Defender comprises several components including Microsoft Defender for Endpoint (formerly Microsoft Defender Advanced Threat Protection). This aims to protect Windows, macOS, Android and iOS mobile devices from threats.

Microsoft Defender for Office 365 is the new name for what was formerly known as Office 365 Advanced Threat Protection. The solution, now in public preview, enables security teams to use priority account tagging protection for the most targeted and visible people in an organisation.

Further, Microsoft 365 also integrates Application Guard with Office, and connects it to the Safe Documents service. The public preview enables Microsoft 365 E5 customers to edit, print, and save changes to Office documents from outside their organisation, securely.

Application Guard works by opening documents in a secure, virtual container with its own instance of Windows 10 in a separate copy of the kernel. If the untrusted file is malicious, the attack is contained while user data and identity remain untouched. When a user wants to trust a document to save on the network or start collaborating in real time, Safe Documents will first check the document against known risks and threat profiles before allowing it to open.

Microsoft 365 has also added integration with the Windows platform Antimalware Scan Interface (AMSI) to scan Excel 4.0 macros, helping to further defeat obfuscation and evasion that an attacker may employ.

Azure Defender

Azure Defender replaces Azure Security Center’s cloud and workload protection for Azure and virtual machines, databases, containers, and IoT devices. While Azure Security Center remains as a central dashboard, Defender will become the default experiences later in September.

Azure Defender includes SQL database and virtual machine protection, enhanced container protection – specifically Kubernetes, and Azure Defender for IoT to protect IoT in operational technology networks.

Further, Defender can now integrate with the Azure Sentinel SIEM platform for deeper visibility and insights into an enterprise’s security. Azure Sentinel aggregates and analyzes data from Microsoft Defender and other Microsoft and third-party systems to provide an end-to-end view of an attack, prioritise critical threats and respond via automation playbooks. Defenders can connect any data with built-in connectors.

Microsoft Defender for Identity is the new name for Azure Advanced Threat Protection. It provides threat protection for people’s identities.

Reference: https://securitybrief.com.au/story/microsoft-brings-endpoint-azure-security-under-microsoft-defender

Azure Sentinel News Editor

Azure Sentinel News Editor

Related Posts

With new release, CrowdStrike targets Google Cloud, Azure and container adopters
Threat Intelligence

Tips for Parsing Syslog to Azure Sentinel

December 31, 2020
CRITICALSTART Adds Support for Microsoft Azure Sentinel to MDR Services
Threat Intelligence

Locate all the Preview Goodies in Your Azure Sentinel Console

December 30, 2020
Microsoft is quietly becoming a cybersecurity powerhouse
Threat Intelligence

How to Prohibit an Azure Sentinel Analyst from Editing a Playbook

December 29, 2020
Next Post
RiskIQ Joins Microsoft Intelligent Security Association

RiskIQ Joins Microsoft Intelligent Security Association

Microsoft introduces integrated Darktrace-a-like, Azure Sentinel

Microsoft introduces integrated Darktrace-a-like, Azure Sentinel

Security Unlocked—A new podcast exploring the people and AI that power Microsoft Security solutions

Security Unlocked—A new podcast exploring the people and AI that power Microsoft Security solutions

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Follow Us

  • 21.8M Fans
  • 81 Followers

Recommended

Microsoft’s newest sustainable datacenter region coming to Arizona in 2021

Microsoft’s newest sustainable datacenter region coming to Arizona in 2021

3 months ago
Vectra AI and Microsoft partner on security integration

How to Automate the Backup of Azure Sentinel Tables to Long-term Storage Using Cloud Shell

2 months ago
What’s New: Multiple playbooks to one analytic rule

What’s New: Multiple playbooks to one analytic rule

5 months ago
odix joins the Microsoft Intelligent Security Association (MISA) program extending FileWall security logs to Microsoft Azure Sentinel

odix joins the Microsoft Intelligent Security Association (MISA) program extending FileWall security logs to Microsoft Azure Sentinel

3 months ago

Instagram

    Please install/update and activate JNews Instagram plugin.

Categories

  • AI & ML
  • Artificial Intelligence
  • Incident Response
  • IR
  • KQL
  • Security and Compliance
  • Security Ochestration & Automated Response
  • Security Operations
  • SIEM
  • SOAR
  • SOC
  • Threat Intelligence
  • Uncategorized

Topics

anomaly automation Azure Azure DevOps Azure Security Center Azure Sentinel Azure Sentinel API Azure Sentinel Connector BlueVoyant Call cybersecurity Detection file GitHub Hunting Huntingy IAC incident response Incident Triage infrastructure as code Investigation jupyter LAQueryLogs MDR Microsoft microsoft 365 mssp Multitenancy Notebooks Pester Playbooks PowerShell python Records Security Sentinel Sharing SIEM signin Supply Chain teams Threat hunting Watchlists Workbooks XDR
No Result
View All Result

Highlights

New Search Capability for Azure Sentinel Incidents

Follow-up: Microsoft Tech Talks Practical Sentinel : A Day in the Life of a Sentinel Analyst

Changes in How Running Hunting Queries Works in Azure Sentinel

Azure Sentinel can now Analyze All Available Azure Active Directory Log Files

Replay Now Available – Microsoft Security Insights 036: Azure Sentinel with Rod Trent

Understanding the Little Blue Permissions Locks in Azure Sentinel Data Connectors

Trending

Microsoft’s newest sustainable datacenter region coming to Arizona in 2021
IR

The Holy Grail of Azure Sentinel Data Connections: The Azure Service Diagnostic Setting

by Azure Sentinel News Editor
February 22, 2021
0

The Azure Sentinel product group continues to crank out new Data Connector after new Data Connector. There...

Microsoft’s newest sustainable datacenter region coming to Arizona in 2021

New Items of Note on the Azure Sentinel GitHub Repo

February 18, 2021
Microsoft’s newest sustainable datacenter region coming to Arizona in 2021

Tuning the MCAS Analytics Rule for Azure Sentinel: System Alerts and Feature Deprecation

February 17, 2021
What’s new: Microsoft Teams connector in Public Preview

New Search Capability for Azure Sentinel Incidents

February 16, 2021
With new release, CrowdStrike targets Google Cloud, Azure and container adopters

Follow-up: Microsoft Tech Talks Practical Sentinel : A Day in the Life of a Sentinel Analyst

February 16, 2021

We bring you the best, latest and perfect Azure Sentinel News, Magazine, Personal Blogs, etc. Visit our landing page to see all features & demos.
LEARN MORE »

Recent News

  • The Holy Grail of Azure Sentinel Data Connections: The Azure Service Diagnostic Setting February 22, 2021
  • New Items of Note on the Azure Sentinel GitHub Repo February 18, 2021
  • Tuning the MCAS Analytics Rule for Azure Sentinel: System Alerts and Feature Deprecation February 17, 2021

Categories

  • AI & ML
  • Artificial Intelligence
  • Incident Response
  • IR
  • KQL
  • Security and Compliance
  • Security Ochestration & Automated Response
  • Security Operations
  • SIEM
  • SOAR
  • SOC
  • Threat Intelligence
  • Uncategorized

[mc4wp_form]

Copyright © 2020 - Azure Sentinel News

No Result
View All Result
  • Home
  • Security and Compliance
  • SOC
  • Threat Intelligence
  • Security Ochestration & Automated Response
  • SOAR
  • Security Operations
  • Artificial Intelligence

Copyright © 2020 Azure Sentinel News