cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Microsoft Security Experts Blog
Microsoft Security Tech Accelerator
Dec 06 2023, 07:00 AM - 12:00 PM (PST)
Microsoft Tech Community
Find out more
Options
7,390

What’s new in Microsoft Defender Experts for XDR

Elisa_Lippincott on Nov 15 2023 08:10 AM
We've been busy! Learn more about the latest enhancements to the Defender Experts for XDR service.
17K

Service Delivery Manager Profile: Meiko Lopez

JoeCicero on Nov 13 2023 08:00 AM
"Be steadfast in the truth - providing comfort and assurance to the customers that you will help them to a resolution."
9,306

Service Delivery Manager Profile: Sachin Kumar

JoeCicero on Nov 06 2023 08:06 AM
“As an SDM, I am committed to walking this path of security alongside our Defender Experts for XDR customers.”
1,579

Catch Defender Experts for XDR on the Ninja Show

Elisa_Lippincott on Sep 21 2023 01:30 PM
Join us on September 25, 2023 at 9:00am PT or watch later on-demand
18.3K

A day in the life of a Defender Experts for XDR analyst

PhoebeRogers on Sep 19 2023 02:58 PM
See how Defender Experts help keep Microsoft customers secure every day.
6,742

The Vital Role of a Service Delivery Manager: Your Defender Experts for XDR Trusted Advisor

JoeCicero on Sep 13 2023 04:12 PM
This blog explores examples of how service delivery managers enhance your Defender Experts for XDR journey.
3,778

Get incident updates from Defender Experts for XDR in the SOC tools you use

Vivek Kumar on Sep 05 2023 01:12 PM
Learn how you can get incident updates from Microsoft Defender Experts for XDR in the SOC tools you already use.
5,295

Defender Experts Chronicles: A Deep Dive into Storm-0867

Kirtar on Aug 28 2023 10:04 AM
In this blog, our Defender Experts take a deeper look at the threat actor Storm-0867.
13.1K

Strategies for securing identities in Azure Active Directory with Sean Metcalf

BrookeLynnWeenig on Jun 14 2023 10:09 AM
Trimarc Founder and Chief Technology Officer Sean Metcalf talks about Active Directory & Azure AD security and strategie...
2,867

Visit Microsoft Security Experts at the RSA Conference 2023

Elisa_Lippincott on Apr 18 2023 01:49 PM
We’ll be in San Francisco starting Sunday, April 23, 2023. Get the details here.
17.8K

Fuzzy hashing logs to find malicious activity

Steve_Versteeg on Apr 05 2023 06:54 AM
Microsoft Incident ResponseDuring incident response, the investigators aims to find all traces of threat actor activity ...
2,894

Catch Defender Experts for Hunting on the Ninja Show

Elisa_Lippincott on Mar 14 2023 04:33 PM
Join us on March 16, 2023 at 9:00am PT or watch later on-demand  
14.4K

Good UAL Hunting

EmilyParrish on Jan 18 2023 09:31 AM
In this blog post, we will be taking a deeper dive into the Office 365 Unified Audit Log (UAL).
4,558

NEW SERIES: Security Experts Roundtable coming January 25, 2023

BrookeLynnWeenig on Dec 19 2022 12:01 PM
Introducing our newest webinar series within Microsoft Security.  
3,255

​​How to Set Security Budget and Controls to Identify Threats Faster

BrookeLynnWeenig on Dec 08 2022 09:00 AM
​​Lauren Podber offers recommendations for how organizations can build security controls and budgets.
12.5K

Microsoft Defender Experts for XDR now in preview

Elisa_Lippincott on Nov 22 2022 08:22 AM
We are excited to announce that Microsoft Defender Experts for XDR is now officially in preview. We are excited to annou...
6,632

Using Microsoft Security APIs for Incident Response - Part 2

TroyLainhoff on Nov 01 2022 09:00 AM
This blog is part two of a three-part series focused on facilitating programmatic data pulls from Microsoft APIs.
52.9K

Forensic artifacts in Office 365 and where to find them

EmilyParrish on Sep 26 2022 09:26 AM
In this article, we aim to provide some explanations and tips for investigators to use to be able to easily understand i...
5,638

Industry Expert Series: What keeps an AppSec CTO up at night?

BrookeLynnWeenig on Sep 15 2022 10:27 AM
Veracode Co-founder/Chief Technology Officer Chris Wysopal shares insights on app security and why automation should be ...
5,591

Industry Expert Series: Wireless Security- How to Better Protect Devices and Networks

BrookeLynnWeenig on Aug 22 2022 09:00 AM
Viszen Security Founder Jennifer Minella shares insights on wireless security and conditional access.
13.5K

Using Microsoft Security APIs for Incident Response - Part 1

TroyLainhoff on Aug 19 2022 11:04 AM
This blog series highlights ways you can leverage an Azure AD application registration and OAuth authentication to allow...
15.7K

Part 2: LockBit 2.0 ransomware bugs and database recovery attempts

Danielle_Veluz on Mar 11 2022 10:02 AM
In the previous blog post in this series, we provided background about our analysis of the LockBit 2.0 ransomware and de...
20.7K

Part 1: LockBit 2.0 ransomware bugs and database recovery attempts

Danielle_Veluz on Mar 11 2022 10:01 AM
Microsoft Incident Response (formerly DART/CRSP) researchers have uncovered “buggy code” and critical inconsistencies in...
27.7K

Leveraging the Power of KQL in Incident Response

Danielle_Veluz on Jan 04 2022 09:00 AM
In this blog, we’ll show you how the Microsoft Incident Response (formerly DART/CRSP) uses the Kusto Query Language (KQL...

Latest Comments

keibayoung
in Service Delivery Manager Profile: Meiko Lopez on Nov 13 2023 09:12 AM
Thank you for recognizing a remarkable team member who recognizes the importance of effective communication and approaches her duties with a spirit of excellence. Recruiting and retaining talents of this magnitude is the gold standard. Microsoft's future with Meiko will be one for the books. Keep so...
3 Likes
dsouti
in Defender Experts Chronicles: A Deep Dive into Storm-0867 on Oct 08 2023 04:49 AM
Hello @egalegal, thank you for your comment and your interest in our work and research on Storm-0867, a threat activity group that uses AiTM phishing sites powered by ‘Caffeine’ to steal session cookies and login credentials. Here are some ways you can detect and protect your customers’ environment ...
0 Likes
hareeshgm
in A day in the life of a Defender Experts for XDR analyst on Sep 29 2023 09:35 PM
It’s really a detailed summary of the work and information that has been shared. Glad to learn and eager to read more related content on this sort. @PhoebeRogers
1 Likes
Dean Gross
in A day in the life of a Defender Experts for XDR analyst on Sep 21 2023 02:53 AM
it would be great to see articles like this on a regular basis, maybe once a month a different member of the team could share a story like this.
3 Likes
egalegal
in Defender Experts Chronicles: A Deep Dive into Storm-0867 on Sep 19 2023 06:11 PM
Hi there @Kirtar thank you for the information I have some suspicions in an environment of a customer that these guys have targeted it. Could you please give me some IOCs and detection opportunities. I would love to hear some more. Thanks..!
1 Likes