Event banner

Microsoft Detection and Response Team (DART) AMA

Event Ended
Tuesday, Mar 15, 2022, 09:00 AM PDT
In-Person

Event details

We are very excited to announce our Microsoft Detection and Response Team (DART) AMA!   About DART: Our job is to respond to compromises and help our customers become cyber-resilient. This is al...
Trevor_Rusher
Updated Feb 16, 2022
AMA
cyberjanit0r's avatar
cyberjanit0r
Copper Contributor
Mar 15, 2022
What recommendations does the DART team have regarding WSL2 detection logging for malicious activity and system hardening?
richarddavis2197's avatar
richarddavis2197
Icon for Microsoft rankMicrosoft
Mar 15, 2022
Hi Nate, Pretty much the same as any Linux environment: minimize unnecessary services, harden accounts, etc. I know in September of 2021 there was a Russian malware variant that used a Linux loader (compiled Python) to inject into Windows processes -- it was quickly added to Defender and is now detected.
Date and Time
Mar 15, 20229:00 AM - 10:00 AM PDT