Home Enterprise Mobility + Security

Microsoft Advanced Threat Analytics

9 Conversations

Latest Activity

Custom List Message Item

ATA Attack Simulation playbook is now available to download here.

 

 

79 Views
3 Replies

Great Playbook indeed, thanks for sharing @Ophir Polotsky! According to the ATA team they`ve written this playbook so it contains:

 

  1. A step-by-step guide to simulating d
... Read More
Thanks for share! :)
Thanks for sharing!

I have several clients who have purchased thousands of EM+S licenses, but they did not purchase a license for everyon of their employees i.e., they did not purchase licenses for employees that seldom use a computer.

 

What is the appropriate way to use and

... Read More
59 Views
1 Reply

EMS+ is all about identity Security and NOT pc/computer centric. One licens pr user. 


Dean Gross wrote:

I have several clients who have purchased thousands of EM+S licenses

... Read More

Hi,

 

 

I am seeing a lot of "Suspicious Activity" in ATA relating to "Reconnaissance using directory services enumeration" from clients and servers.

I believe this was addressed in an earlier build of 1.7, am i safe to assume that these incidences are worthy

... Read More
119 Views
3 Replies

Hi,

As you mentioned this is a known issue with ATA 1.7.
In some cases this suspicious activity can be caused by legitimate security solutions running on endpoints and ser

... Read More
Best Response

Hi,

 

the the max pps supported by the ATA Center is 400 k.

if you have more than 400 k can you deploy in an hierachical mode?

 

max ppp in LGW is 10k this are hadcoded values or best practicies?

 

ther will be a new version with more capacity?

Read More
60 Views
2 Replies

Potentially even with 1.7 you can support more than 400K pps, we are in the progress of updating the docuementation for that actauly.
What is the amount you are dealing wi

... Read More

Hi,

if you have more than 400 k can you deploy in an hierachical mode? No. You can deploy multiple Centers (based on Geo/Domains/etc') and send alerts from all Centers to

... Read More

Hi,

My name is Michael Dubinsky and I lead the product and security research teams for Microsoft ATA.

 

I'm super excited to start the TechCommunity for ATA. Working together with each and everyone of our customers, partners and the entire community is wh

... Read More
36 Views
0 Reply

Lead security engineer, Michael Dubinsky demonstrates Microsoft Advanced Threat Analytics. He goes over attack scenarios shows how ATA detection works in near-real time. Also goes over how ATA integrates with existing SIEM solutions. 

 

Read More
66 Views
1 Reply
Really nice video about ATA features!

Watch Michael Dubinsky onstage at Microsoft Ignite conducting real-life hacks, and showcasing how Advanced Threat Analytics detects advanced targeted attacks.

 

https://www.youtube.com/watch?v=pt7nsmriloQ

 

Read More
125 Views
0 Reply

On August 31, 2016 Microsoft announced the public release of Advanced Threat Analytics (ATA) v 1.7! This is a key release for ATA with several exciting features and improvements.

 

In the last blog post where the team announced the ATA v 1.6 release, they

... Read More
131 Views
0 Reply