Introducing the new File Integrity Monitoring with Defender for Endpoint integration
As the final and most complex piece of this puzzle is the release of File Integrity Monitoring (FIM) powered by Defender for Endpoint, marks a significant milestone in the Defender for Servers simplification journey. The new FIM solution based on Defender for Endpoint offers real-time monitoring on critical file paths and system files, ensuring that any changes indicating a potential attack are detected immediately. In addition, FIM offers built-in support for relevant security regulatory compliance standards, such as PCI-DSS, CIS, NIST, and others, allowing you to maintain compliance.
Defender for Cloud unified Vulnerability Assessment powered by Defender Vulnerability Management
We are thrilled to announce that Defender for Cloud is unifying our vulnerability assessment engine to Microsoft Defender Vulnerability Management (MDVM)across servers and containers. Security admins will benefit from Microsoft’s unmatched threat intelligence, breach likelihood predictions and business contexts to identify, assess, prioritize, and remediate vulnerabilities - making it an ideal tool for managing an expanded attack surface and reducing overall cloud risk posture.
Leveraging Azure native tooling to hunt Kubernetes security issues
This series shows you how you can maximize your investments in Microsoft Security tools by leveraging XDR Portal and Defender for Kubernetes to hunt for security issues. If you are in red team this article will shorten your learning curve by allowing you to identify security issues using KQL with Container Security Alerts. This series is part of “Security using Azure Native services” series and assumes that you are following the series “A guide to using Microsoft Sentinel for monitoring the security of your containerized applications and orchestration platforms” https://techcommunity.microsoft.com/t5/microsoft-sentinel-blog/setting-up-sentinel-for-kubernetes-monitoring/ba-p/4118593Unleashing the Power of Microsoft Defender for Cloud – Unique Capabilities for Robust Protection
So you have implemented a non-native Cloud Security Posture Management solution but there are security gaps that you might not have considered. How Defender for Cloud is uniquely positioned to secure your cloud attack surface.
Microsoft Defender for Cloud Now Supports CIS Azure Security Foundations Benchmark 2.0.0
We are thrilled to announce that Microsoft Defender for Cloud, in collaboration with theCenter for Internet Security(CIS), now supports the latestCIS Azure Security Foundations Benchmark - version 2.0.0. This release also includes the new corresponding built-in policy initiative in the Azure Policy blade. Please refer to ourproduct documentationto learn how to add CIS Azure Security Foundations Benchmark 2.0.0to your dashboard. The release of CIS Azure Security Foundations Benchmark v2.0.0 represents a major version shift of CIS Azure benchmark product support in Azure platform. The v2.0.0 aligns withMicrosoft cloud security benchmarkand now encompasses over 90 built-in Azure Policies, which is a substantial leap forward compared to the previous versions. The current versions of CIS Azure Security Foundations Benchmark (v1.4.0, v1.3.0, and v1.0) will be gradually phased out from Defender for Cloud. This major release is also an outcome of a joint effort between Microsoft, the Center for Internet Security (CIS), and the broader user communities. Especially, manythanks are due to theCISMicrosoft Azure Community experts who made this effort possible: Robert Burton Luke Schultheis Niclas Madsen Steve Johnson IanMcRee We look forward to hear more feedback from our user community, you welcome to reach out to us atbenchmarkfeedback@microsoft.com
