Latest Threat Intelligence (December 2023)
Microsoft Defender for IoT has released the December 2023 Threat Intelligence package.The package is available for download from theMicrosoft Defender for IoT portal(click Updates, then Download file). Threat Intelligence updates reflect the combined impact of proprietary research and threat intelligence carried out by Microsoft security teams.Each package contains the latest CVEs (Common Vulnerabilities and Exposures), IOCs (Indicators of Compromise), and other indicators applicable to IoT/ICS/OT networks (published during the past month) researched and implemented by Microsoft Threat Intelligence Research - CPS. The CVE scores are aligned with the National Vulnerability Database (NVD). Starting with the August 2023 threat intelligence updates, CVSSv3 scores are shown if they are relevant; otherwise the CVSSv2 scores are shown. Guidance Customers are recommended to update their systems with the latest TI package in order to detect potential exposure risks and vulnerabilities in their networks and on their devices. Threat Intelligence packages are updated every month with the most up-to-date security information available, ensuring that Microsoft Defender for IoT can identify malicious actors and behaviors on devices. Update your system with the latest TI package The package is available for download from theMicrosoft Defender for IoT portal(click Updates, then Download file), for more information, please reviewUpdate threat intelligence data | Microsoft Docs. MD5 Hash: 2d50d91b1a5bbfc9127f39a1a1a696dc For cloud connected sensors, Microsoft Defender for IoT can automatically update new threat intelligence packages following their release,click herefor more information.Latest Threat Intelligence (November 2023)
Microsoft Defender for IoT has released the November 2023 Threat Intelligence package.The package is available for download from theMicrosoft Defender for IoT portal(click Updates, then Download file). Threat Intelligence updates reflect the combined impact of proprietary research and threat intelligence carried out by Microsoft security teams.Each package contains the latest CVEs (Common Vulnerabilities and Exposures), IOCs (Indicators of Compromise), and other indicators applicable to IoT/ICS/OT networks (published during the past month) researched and implemented by Microsoft Threat Intelligence Research - CPS. The CVE scores are aligned with the National Vulnerability Database (NVD). Starting with the August 2023 threat intelligence updates, CVSSv3 scores are shown if they are relevant; otherwise the CVSSv2 scores are shown. Guidance Customers are recommended to update their systems with the latest TI package in order to detect potential exposure risks and vulnerabilities in their networks and on their devices. Threat Intelligence packages are updated every month with the most up-to-date security information available, ensuring that Microsoft Defender for IoT can identify malicious actors and behaviors on devices. Update your system with the latest TI package The package is available for download from theMicrosoft Defender for IoT portal(click Updates, then Download file), for more information, please reviewUpdate threat intelligence data | Microsoft Docs. MD5 Hash: d0a3377aa9c2f70f8dc298ad978c5482 For cloud connected sensors, Microsoft Defender for IoT can automatically update new threat intelligence packages following their release,click herefor more information.Enterprise IoT Security now included in E5
To help organizations achieve a more holistic endpoint security strategy that traverses both IT and eIoT devices easily, we are thrilled to announce that the eIoT security capabilities of Microsoft Defender for IoT are now included with Microsoft 365 E5 and E5 Security plans at no additional cost for new and existing customers. For more details please visit: Enterprise IoT security now included with Microsoft 365 E5 blog post. This enhancement empowers security teams to: Eliminate critical blind spots by discovering unmanaged enterprise IoT devices. Identify anomalies across the enterprise IoT device estate with continuous monitoring. Harden posture across enterprise IoT with vulnerability assessments with actionable guidance to help remediate at-risk device. What's Changing? Defender for IoT’s EIoT is transitioning from a consumption-based payment model in the Azure portal to a per-device, per-month licensing model as an integral part of Microsoft 365. It is now accessible to both new and existing customers of Microsoft 365 E5and E5 Security. The new license includes coverage for up to five enterprise IoT devices per eligible user license at no additional cost. Learn more: Get started with enterprise IoT monitoring in Microsoft 365 Defender Start securing IoT devices in the enterprise Read the enterprise IoT security FAQ Microsoft Defender for IoT Plans and Pricing | Microsoft Security web page.Latest Threat Intelligence (October 2023)
Microsoft Defender for IoT has released the October 2023 Threat Intelligence package.The package is available for download from theMicrosoft Defender for IoT portal(click Updates, then Download file). Threat Intelligence updates reflect the combined impact of proprietary research and threat intelligence carried out by Microsoft security teams.Each package contains the latest CVEs (Common Vulnerabilities and Exposures), IOCs (Indicators of Compromise), and other indicators applicable to IoT/ICS/OT networks (published during the past month) researched and implemented by Microsoft Threat Intelligence Research - CPS. The CVE scores are aligned with the National Vulnerability Database (NVD). Starting with the August 2023 threat intelligence updates, CVSSv3 scores are shown if they are relevant; otherwise the CVSSv2 scores are shown. Guidance Customers are recommended to update their systems with the latest TI package in order to detect potential exposure risks and vulnerabilities in their networks and on their devices. Threat Intelligence packages are updated every month with the most up-to-date security information available, ensuring that Microsoft Defender for IoT can identify malicious actors and behaviors on devices. Update your system with the latest TI package The package is available for download from theMicrosoft Defender for IoT portal(click Updates, then Download file), for more information, please reviewUpdate threat intelligence data | Microsoft Docs. MD5 Hash: 75cb715ae9174fc57abac68ebebc5d48 For cloud connected sensors, Microsoft Defender for IoT can automatically update new threat intelligence packages following their release,click herefor more information.Latest Threat Intelligence (August 2023)
Microsoft Defender for IoT has released the August 2023 Threat Intelligence package.The package is available for download from theMicrosoft Defender for IoT portal(click Updates, then Download file). Threat Intelligence updates reflect the combined impact of proprietary research and threat intelligence carried out by Microsoft security teams.Each package contains the latest CVEs (Common Vulnerabilities and Exposures), IOCs (Indicators of Compromise), and other indicators applicable to IoT/ICS/OT networks (published during the past month) researched and implemented by Microsoft Threat Intelligence Research - CPS. The CVE scores are aligned with the National Vulnerability Database (NVD). Starting with the August threat intelligence updates, CVSSv3 scores are shown if they are relevant; otherwise the CVSSv2 scores are shown. Guidance Customers are recommended to update their systems with the latest TI package in order to detect potential exposure risks and vulnerabilities in their networks and on their devices. Threat Intelligence packages are updated every month with the most up-to-date security information available, ensuring that Microsoft Defender for IoT can identify malicious actors and behaviors on devices. Update your system with the latest TI package The package is available for download from theMicrosoft Defender for IoT portal(click Updates, then Download file), for more information, please reviewUpdate threat intelligence data | Microsoft Docs. MD5 Hash: e04c8c5c4837f99dfd4b41d448bf5e92 For cloud connected sensors, Microsoft Defender for IoT can automatically update new threat intelligence packages following their release,click herefor more information.
New blog post | Microsoft Defender for IoT moves to site-based licensing
On June 1, 2023, Microsoft Defender for IoT moved to site-based licensing for organizations looking to protect their operation technology (OT) environments. The previous Azure consumption model for this solution will no longer be available for purchase by new customers. Existing customers can choose to transition to site-based licensing or remain on the consumption model. Microsoft Defender for IoT - New site-based licensingLatest Threat Intelligence (March 2023)
Microsoft Defender for IoT has released the March 2023 Threat Intelligence package.The package is available for download from theMicrosoft Defender for IoT portal(click Updates, then Download file). Threat Intelligence updates reflect the combined impact of proprietary research and threat intelligence carried out by Microsoft security teams.Each package contains the latest CVEs (Common Vulnerabilities and Exposures), IOCs (Indicators of Compromise), and other indicators applicable to IoT/ICS/OT networks (published during the past month) researched and implemented by Microsoft Defender for IoT’s security research team, Section 52. Guidance Customers are recommended to update their systems with the latest TI package in order to detect potential exposure risks and vulnerabilities in their networks and on their devices. Threat Intelligence packages are updated every month with the most up-to-date security information available, ensuring that Microsoft Defender for IoT can identify malicious actors and behaviors on devices. Update your system with the latest TI package The package is available for download from theMicrosoft Defender for IoT portal(click Updates, then Download file), for more information, please reviewUpdate threat intelligence data | Microsoft Docs. MD5 Hash: 982bf4ffa90508ba4475c80c4d4a6bd6 For cloud connected sensors, Microsoft Defender for IoT can automatically update new threat intelligence packages following their release,click herefor more information.
Microsoft Defender for IoT - New Release (OT v22.3.4)
Microsoft Defender for IoT is excited to announce a new major release of OT sensor version (22.3.4). To learn more, visitDefender for IoT Release Notes | Microsoft Docs Download links available atDefender for IoT Management Portal - Microsoft Azure. What's New? Service area Updates OT networks Version 22.3.4:Azure connectivity status shown on OT sensors MD5 Hash - f781734c1b8e2baf94f7a1fd6508df79 About Defender for IoT Microsoft Defender for IoT provides agentless, network-layer security, provides security for diverse industrial equipment, and interoperates with Microsoft Sentinel and other SOC tools. Continuous asset discovery, vulnerability management, and threat detection for Internet of Things (IoT) devices, operational technology (OT) and Industrial Control Systems (ICS) can be deployed on-premises or in Azure-connected environments.Azure Defender for IoT - July Release (EIoT GA, OT v22.2.3)
Microsoft is excited to announce July software releases of Azure Defender for IoT. To learn more, visitAzure Defender for IoT Release Notes | Microsoft Docs Download links available atDefender for IoT Management Portal - Microsoft Azure. What's New? Service area Updates Enterprise IoT networks -Enterprise IoT purchase experience and Defender for Endpoint integration in GA OT networks Sensor software version 22.2.3: -PCAP access from the Azure portal -Bi-directional alert synch between sensors and the Azure portal -Support diagnostic log enhancements -Improved security for uploading protocol plugins To update to version 22.2.3: - From version 22.1.x, update directly to version 22.2.3 - From version 10.x, first update to version 21.1.6, and then update again to 22.2.3 For more information, seeUpdate Defender for IoT OT monitoring software. Cloud-only features -Microsoft Sentinel incident synch with Defender for IoT alerts OT Networks - Sensor MD5 Hash -0bab3616e58d3669b665760926a1dbe1 MD5 Hash - dbe2bcb9623c750143bd083a39b2ae11 About Defender for IoT Azure Defender for IoT provides agentless, network-layer security, provides security for diverse industrial equipment, and interoperates with Azure Sentinel and other SOC tools. Continuous asset discovery, vulnerability management, and threat detection for Internet of Things (IoT) devices, operational technology (OT) and Industrial Control Systems (ICS) can be deployed on-premises or in Azure-connected environments.
