Microsoft Security Matters Newsletter – October 2021 Edition

Published Nov 09 2021 05:55 AM 1,243 Views

General News

Microsoft finds new macOS vulnerability, Shrootless, that could bypass System Integrity Protection -...

Microsoft Digital Defense Report shares new insights on nation-state attacks - Microsoft Security Bl...

New insights on cybersecurity in the age of hybrid work - Microsoft Security Blog

NOBELIUM targeting delegated administrative privileges to facilitate broader attacks - Microsoft Sec...

New Microsoft Sysmon report in VirusTotal improves security - Microsoft Security Blog

Franken-phish: TodayZoo built from other phishing kits - Microsoft Security Blog

Strengthening cyber defenses for nonprofits - Microsoft On the Issues

Defenders wanted—building the new cybersecurity professionals - Microsoft Security Blog

Windows 11 Security — Our Hacker-in-Chief Runs Attacks and Shows Solutions (microsoft.com)

Iran-linked DEV-0343 targeting defense, GIS, and maritime sectors - Microsoft Security Blog

 

Azure Security & Defender for Cloud News

New enhancements added to network security dashboard - Microsoft Tech Community

Agent Based IoT security with Azure Defender for IoT - Microsoft Tech Community

Microsoft Defender for Cloud Server Monitoring Dashboard - Microsoft Tech Community

What’s New: Azure Security Benchmark Workbook (Preview) (microsoft.com)

Azure network security helps reduce cost and risk according to Forrester TEI study - Microsoft Secur...

Securing an Azure Kubernetes Service deployment - Microsoft Tech Community

 

Sentinel News

Automatically Extend Multiple Suppression Rules on Security Alerts - Microsoft Tech Community

Monitoring Microsoft Sentinel Analytical Rules – Push Health Notifications - Microsoft Tech Communit...

MITRE ATT&CK technique coverage with Sysmon for Linux - Microsoft Tech Community

What’s New: Azure Sentinel Threat Intelligence Workbook (microsoft.com)

Analyzing Endpoints Forensics - Azure Sentinel Connector - Microsoft Tech Community

Automate threat response with Azure Sentinel | Azure Friday - Microsoft Tech Community

 

Microsoft 365 Security (All Up News)

Microsoft achieves a Leader placement in Forrester Wave for XDR - Microsoft Security Blog

Fight the phish—see how Microsoft Learn can help - Microsoft Tech Community

 

M365 Identity & Device Protection (Azure AD, Intune)

Microsoft recognized by the IDC MarketScape as a Leader in Worldwide Advanced Authentication for AAD...

 

M365 Defender (Defender for Office, Defender for Endpoint, Defender for Identity, MCAS)

Web content filtering now generally available on Windows - Microsoft Tech Community

Announcing live response for macOS and Linux - Microsoft Tech Community

Microsoft Defender for Endpoint: Defending Windows Server 2012 R2 and 2016

 

M365 Compliance & Governance

How the Microsoft 365 App Compliance program helps enable a secure Teams app ecosystem - Microsoft T...

The Microsoft Information Protection (MIP) Ninja Training is here! - Microsoft Tech Community

Adaptive Policy Scopes Microsoft 365 Records Management

Scanning and labeling AWS S3 Buckets with Azure Purview - Microsoft Tech Community

%3CLINGO-SUB%20id%3D%22lingo-sub-2942713%22%20slang%3D%22en-US%22%3EMicrosoft%20Security%20Matters%20Newsletter%20%E2%80%93%20October%202021%20Edition%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-2942713%22%20slang%3D%22en-US%22%3E%3CP%3E%3CSTRONG%3EGeneral%20News%3C%2FSTRONG%3E%3C%2FP%3E%0A%3CP%3E%3CA%20href%3D%22https%3A%2F%2Fwww.microsoft.com%2Fsecurity%2Fblog%2F2021%2F10%2F28%2Fmicrosoft-finds-new-macos-vulnerability-shrootless-that-could-bypass-system-integrity-protection%2F%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%22%3EMicrosoft%20finds%20new%20macOS%20vulnerability%2C%20Shrootless%2C%20that%20could%20bypass%20System%20Integrity%20Protection%20-%20Microsoft%20Security%20Blog%3C%2FA%3E%3C%2FP%3E%0A%3CP%3E%3CA%20href%3D%22https%3A%2F%2Fwww.microsoft.com%2Fsecurity%2Fblog%2F2021%2F10%2F25%2Fmicrosoft-digital-defense-report-shares-new-insights-on-nation-state-attacks%2F%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%22%3EMicrosoft%20Digital%20Defense%20Report%20shares%20new%20insights%20on%20nation-state%20attacks%20-%20Microsoft%20Security%20Blog%3C%2FA%3E%3C%2FP%3E%0A%3CP%3E%3CA%20href%3D%22https%3A%2F%2Fwww.microsoft.com%2Fsecurity%2Fblog%2F2021%2F10%2F27%2Fnew-insights-on-cybersecurity-in-the-age-of-hybrid-work%2F%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%22%3ENew%20insights%20on%20cybersecurity%20in%20the%20age%20of%20hybrid%20work%20-%20Microsoft%20Security%20Blog%3C%2FA%3E%3C%2FP%3E%0A%3CP%3E%3CA%20href%3D%22https%3A%2F%2Fwww.microsoft.com%2Fsecurity%2Fblog%2F2021%2F10%2F25%2Fnobelium-targeting-delegated-administrative-privileges-to-facilitate-broader-attacks%2F%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%22%3ENOBELIUM%20targeting%20delegated%20administrative%20privileges%20to%20facilitate%20broader%20attacks%20-%20Microsoft%20Security%20Blog%3C%2FA%3E%3C%2FP%3E%0A%3CP%3E%3CA%20href%3D%22https%3A%2F%2Fwww.microsoft.com%2Fsecurity%2Fblog%2F2021%2F10%2F20%2Fnew-microsoft-sysmon-report-in-virustotal-improves-security%2F%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%22%3ENew%20Microsoft%20Sysmon%20report%20in%20VirusTotal%20improves%20security%20-%20Microsoft%20Security%20Blog%3C%2FA%3E%3C%2FP%3E%0A%3CP%3E%3CA%20href%3D%22https%3A%2F%2Fwww.microsoft.com%2Fsecurity%2Fblog%2F2021%2F10%2F21%2Ffranken-phish-todayzoo-built-from-other-phishing-kits%2F%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%22%3EFranken-phish%3A%20TodayZoo%20built%20from%20other%20phishing%20kits%20-%20Microsoft%20Security%20Blog%3C%2FA%3E%3C%2FP%3E%0A%3CP%3E%3CA%20href%3D%22https%3A%2F%2Fblogs.microsoft.com%2Fon-the-issues%2F2021%2F10%2F21%2Fcyber-defenses-security-program-nonprofits%2F%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%22%3EStrengthening%20cyber%20defenses%20for%20nonprofits%20-%20Microsoft%20On%20the%20Issues%3C%2FA%3E%3C%2FP%3E%0A%3CP%3E%3CA%20href%3D%22https%3A%2F%2Fwww.microsoft.com%2Fsecurity%2Fblog%2F2021%2F10%2F21%2Fdefenders-wanted-building-the-new-cybersecurity-professionals%2F%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%22%3EDefenders%20wanted%E2%80%94building%20the%20new%20cybersecurity%20professionals%20-%20Microsoft%20Security%20Blog%3C%2FA%3E%3C%2FP%3E%0A%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fmicrosoft-mechanics-blog%2Fwindows-11-security-our-hacker-in-chief-runs-attacks-and-shows%2Fba-p%2F2813193%22%20target%3D%22_blank%22%3EWindows%2011%20Security%20%E2%80%94%20Our%20Hacker-in-Chief%20Runs%20Attacks%20and%20Shows%20Solutions%20(microsoft.com)%3C%2FA%3E%3C%2FP%3E%0A%3CP%3E%3CA%20href%3D%22https%3A%2F%2Fwww.microsoft.com%2Fsecurity%2Fblog%2F2021%2F10%2F11%2Firan-linked-dev-0343-targeting-defense-gis-and-maritime-sectors%2F%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%22%3EIran-linked%20DEV-0343%20targeting%20defense%2C%20GIS%2C%20and%20maritime%20sectors%20-%20Microsoft%20Security%20Blog%3C%2FA%3E%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3E%3CSTRONG%3EAzure%20Security%20%26amp%3B%20Defender%20for%20Cloud%20News%3C%2FSTRONG%3E%3C%2FP%3E%0A%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fmicrosoft-defender-for-cloud%2Fnew-enhancements-added-to-network-security-dashboard%2Fba-p%2F2896021%22%20target%3D%22_blank%22%3ENew%20enhancements%20added%20to%20network%20security%20dashboard%20-%20Microsoft%20Tech%20Community%3C%2FA%3E%3C%2FP%3E%0A%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fvideo-hub%2Fagent-based-iot-security-with-azure-defender-for-iot%2Fba-p%2F2888293%22%20target%3D%22_blank%22%3EAgent%20Based%20IoT%20security%20with%20Azure%20Defender%20for%20IoT%20-%20Microsoft%20Tech%20Community%3C%2FA%3E%3C%2FP%3E%0A%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fmicrosoft-defender-for-cloud%2Fmicrosoft-defender-for-cloud-server-monitoring-dashboard%2Fba-p%2F2869658%22%20target%3D%22_blank%22%3EMicrosoft%20Defender%20for%20Cloud%20Server%20Monitoring%20Dashboard%20-%20Microsoft%20Tech%20Community%3C%2FA%3E%3C%2FP%3E%0A%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fmicrosoft-defender-for-cloud%2Fwhat-s-new-azure-security-benchmark-workbook-preview%2Fba-p%2F2865930%22%20target%3D%22_blank%22%3EWhat%E2%80%99s%20New%3A%20Azure%20Security%20Benchmark%20Workbook%20(Preview)%20(microsoft.com)%3C%2FA%3E%3C%2FP%3E%0A%3CP%3E%3CA%20href%3D%22https%3A%2F%2Fwww.microsoft.com%2Fsecurity%2Fblog%2F2021%2F10%2F12%2Fazure-network-security-helps-reduce-cost-and-risk-according-to-forrester-tei-study%2F%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%22%3EAzure%20network%20security%20helps%20reduce%20cost%20and%20risk%20according%20to%20Forrester%20TEI%20study%20-%20Microsoft%20Security%20Blog%3C%2FA%3E%3C%2FP%3E%0A%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fapps-on-azure%2Fsecuring-an-azure-kubernetes-service-deployment%2Fba-p%2F2838794%22%20target%3D%22_blank%22%3ESecuring%20an%20Azure%20Kubernetes%20Service%20deployment%20-%20Microsoft%20Tech%20Community%3C%2FA%3E%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3E%3CSTRONG%3ESentinel%20News%3C%2FSTRONG%3E%3C%2FP%3E%0A%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fmicrosoft-defender-for-cloud%2Fautomatically-extend-multiple-suppression-rules-on-security%2Fba-p%2F2896121%22%20target%3D%22_blank%22%3EAutomatically%20Extend%20Multiple%20Suppression%20Rules%20on%20Security%20Alerts%20-%20Microsoft%20Tech%20Community%3C%2FA%3E%3C%2FP%3E%0A%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fmicrosoft-sentinel-blog%2Fmonitoring-microsoft-sentinel-analytical-rules-push-health%2Fba-p%2F2793694%22%20target%3D%22_blank%22%3EMonitoring%20Microsoft%20Sentinel%20Analytical%20Rules%20%E2%80%93%20Push%20Health%20Notifications%20-%20Microsoft%20Tech%20Community%3C%2FA%3E%3C%2FP%3E%0A%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fmicrosoft-sentinel-blog%2Fmitre-att-amp-ck-technique-coverage-with-sysmon-for-linux%2Fba-p%2F2858219%22%20target%3D%22_blank%22%3EMITRE%20ATT%26amp%3BCK%20technique%20coverage%20with%20Sysmon%20for%20Linux%20-%20Microsoft%20Tech%20Community%3C%2FA%3E%3C%2FP%3E%0A%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fmicrosoft-sentinel-blog%2Fwhat-s-new-azure-sentinel-threat-intelligence-workbook%2Fba-p%2F2858265%22%20target%3D%22_blank%22%3EWhat%E2%80%99s%20New%3A%20Azure%20Sentinel%20Threat%20Intelligence%20Workbook%20(microsoft.com)%3C%2FA%3E%3C%2FP%3E%0A%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fmicrosoft-sentinel-blog%2Fanalyzing-endpoints-forensics-azure-sentinel-connector%2Fba-p%2F2820973%22%20target%3D%22_blank%22%3EAnalyzing%20Endpoints%20Forensics%20-%20Azure%20Sentinel%20Connector%20-%20Microsoft%20Tech%20Community%3C%2FA%3E%3C%2FP%3E%0A%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fvideo-hub%2Fautomate-threat-response-with-azure-sentinel-azure-friday%2Fba-p%2F2851112%22%20target%3D%22_blank%22%3EAutomate%20threat%20response%20with%20Azure%20Sentinel%20%7C%20Azure%20Friday%20-%20Microsoft%20Tech%20Community%3C%2FA%3E%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3E%3CSTRONG%3EMicrosoft%20365%20Security%20(All%20Up%20News)%3C%2FSTRONG%3E%3C%2FP%3E%0A%3CP%3E%3CA%20href%3D%22https%3A%2F%2Fwww.microsoft.com%2Fsecurity%2Fblog%2F2021%2F10%2F18%2Fmicrosoft-achieves-a-leader-placement-in-forrester-wave-for-xdr%2F%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%22%3EMicrosoft%20achieves%20a%20Leader%20placement%20in%20Forrester%20Wave%20for%20XDR%20-%20Microsoft%20Security%20Blog%3C%2FA%3E%3C%2FP%3E%0A%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fmicrosoft-learn-blog%2Ffight-the-phish-see-how-microsoft-learn-can-help%2Fba-p%2F2824122%22%20target%3D%22_blank%22%3EFight%20the%20phish%E2%80%94see%20how%20Microsoft%20Learn%20can%20help%20-%20Microsoft%20Tech%20Community%3C%2FA%3E%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3E%3CSTRONG%3EM365%20Identity%20%26amp%3B%20Device%20Protection%20(Azure%20AD%2C%20Intune)%20%3C%2FSTRONG%3E%3C%2FP%3E%0A%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fazure-active-directory-identity%2Fmicrosoft-recognized-by-the-idc-marketscape-as-a-leader-in%2Fba-p%2F2464411%22%20target%3D%22_blank%22%3EMicrosoft%20recognized%20by%20the%20IDC%20MarketScape%20as%20a%20Leader%20in%20Worldwide%20Advanced%20Authentication%20for%20AAD%20-%20Microsoft%20Tech%20Community%3C%2FA%3E%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3E%3CSTRONG%3EM365%20Defender%20(Defender%20for%20Office%2C%20Defender%20for%20Endpoint%2C%20Defender%20for%20Identity%2C%20MCAS)%3C%2FSTRONG%3E%3C%2FP%3E%0A%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fmicrosoft-defender-for-endpoint%2Fweb-content-filtering-now-generally-available-on-windows%2Fba-p%2F2893357%22%20target%3D%22_blank%22%3EWeb%20content%20filtering%20now%20generally%20available%20on%20Windows%20-%20Microsoft%20Tech%20Community%3C%2FA%3E%3C%2FP%3E%0A%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fmicrosoft-defender-for-endpoint%2Fannouncing-live-response-for-macos-and-linux%2Fba-p%2F2864397%22%20target%3D%22_blank%22%3EAnnouncing%20live%20response%20for%20macOS%20and%20Linux%20-%20Microsoft%20Tech%20Community%3C%2FA%3E%3C%2FP%3E%0A%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fmicrosoft-defender-for-endpoint%2Fdefending-windows-server-2012-r2-and-2016%2Fba-p%2F2783292%22%20target%3D%22_blank%22%3EMicrosoft%20Defender%20for%20Endpoint%3A%20Defending%20Windows%20Server%202012%20R2%20and%202016%3C%2FA%3E%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3E%3CSTRONG%3EM365%20Compliance%20%26amp%3B%20Governance%3C%2FSTRONG%3E%3C%2FP%3E%0A%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fmicrosoft-teams-blog%2Fhow-the-microsoft-365-app-compliance-program-helps-enable-a%2Fba-p%2F2892896%22%20target%3D%22_blank%22%3EHow%20the%20Microsoft%20365%20App%20Compliance%20program%20helps%20enable%20a%20secure%20Teams%20app%20ecosystem%20-%20Microsoft%20Tech%20Community%3C%2FA%3E%3C%2FP%3E%0A%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fsecurity-compliance-and-identity%2Fthe-microsoft-information-protection-mip-ninja-training-is-here%2Fba-p%2F2887478%22%20target%3D%22_blank%22%3EThe%20Microsoft%20Information%20Protection%20(MIP)%20Ninja%20Training%20is%20here!%20-%20Microsoft%20Tech%20Community%3C%2FA%3E%3C%2FP%3E%0A%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fsecurity-compliance-and-identity%2Fannouncing-adaptive-policy-scopes-for-microsoft-365-records%2Fba-p%2F2857532%22%20target%3D%22_blank%22%3EAdaptive%20Policy%20Scopes%20Microsoft%20365%20Records%20Management%3C%2FA%3E%3C%2FP%3E%0A%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fazure-purview%2Fscanning-and-labeling-aws-s3-buckets-with-azure-purview%2Fba-p%2F2833072%22%20target%3D%22_blank%22%3EScanning%20and%20labeling%20AWS%20S3%20Buckets%20with%20Azure%20Purview%20-%20Microsoft%20Tech%20Community%3C%2FA%3E%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-TEASER%20id%3D%22lingo-teaser-2942713%22%20slang%3D%22en-US%22%3E%3CP%3EA%20little%20tardy%20in%20getting%20out%20the%20recap%20of%20October's%20Security%20%26amp%3B%20Compliance%20news%20so%20here%20it%20is.%26nbsp%3B%20Enjoy.%3CSPAN%20class%3D%22lia-inline-image-display-wrapper%20lia-image-align-center%22%20image-alt%3D%22newsletter.png%22%20style%3D%22width%3A%20206px%3B%22%3E%3CIMG%20src%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fimage%2Fserverpage%2Fimage-id%2F203852iE9221717FA1855B1%2Fimage-size%2Flarge%3Fv%3Dv2%26amp%3Bpx%3D999%22%20role%3D%22button%22%20title%3D%22newsletter.png%22%20alt%3D%22newsletter.png%22%20%2F%3E%3C%2FSPAN%3E%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%3C%2FLINGO-TEASER%3E
Co-Authors
Version history
Last update:
‎Nov 09 2021 05:57 AM
Updated by: