Forum Discussion
markusestermann
Mar 16, 2023Copper Contributor
Fraud (prevention) resources/team at Microsoft
A client (Financial Industy) is asking me about the Fraud Resources at Microsoft (Azure).
Can you give me any hint how this is organized at Microsoft and whats the team size?
- Martin_J
Microsoft
Good afternoon Mister Estermann,
Thank you for engaging in the Tech Community space here.
Over 20 teams at Microsoft are involved in Preventing and Containment (pre-detection) and Detection, Investigation and Mitigation (post-detection) of fraud cases.
Exemplary, there is the Identity Anti-Abuse Team (https://review.learn.microsoft.com/en-us/identity/microsoft-identity-platform/anti-abuse?branch=main), which reports within the C+AI division of Microsoft, so reporting ultimately to Scott Guthrie.
Other examples are the Unauthorized Party Abuse (UPA) team (UPA = compromise when a bad actor gains access to a customer’s account, resource, subscription, or tenant AND abuses OR creates risk of abuse to the Azure platform) and the Human Intelligence Team (HIT) that investigate Azure fraud cases, and has locations in e.g. Redmond, Mexico City, Tallinn, Belgrade, Singapore and Auckland.
Based on the teams' assessments, Microsoft has recently updated its Fraud Policy:About nonpayment, fraud, and misuse - Partner Center | Microsoft Learn
All the above is in addition to our SOC (CDOC https://www.microsoft.com/en-us/msrc/cdoc), MSRC (Microsoft Security Response Center) and other Threat Detection, Prevention and Response teams across Microsoft (another example being the DART team).
For more information, as mentioned by my colleague Juanma in his response to your post, please engage either directly or by the help of your ISV Engagement Manager with TPD: https://learn.microsoft.com/en-us/partner-center/technical-benefits
Kind regards,
Martin J.
- markusestermannCopper Contributor
Martin_J Thanks for your reply!
Im going to check if the answer ("more than 20 teams") is sufficient for the client. Otherwise I will open a request with TPD. Kind Regards, markus