Microsoft security experts outline next steps after compromise recovery - Microsoft Security Blog
The Microsoft Compromise Recovery Security Practice (CRSP) is a worldwide team of cybersecurity experts operating in most countries, across both public and private organizations, with deep expertise to secure an environment post-security breach and to help you prevent a breach in the first place. As a specialist team within the wider Microsoft cybersecurity functions, we predominantly focus on reactive security projects for our customers. The main types of projects we undertake are:
- Compromise recovery: Giving customers back control of their environment after a compromise.
- Rapid ransomware recovery: Restore business-critical applications and limit ransomware impact.
- Advanced threat hunting: Proactively hunt for the presence of advanced threat actors within an environment.