cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Microsoft 365 Defender Blog
Options
5,760

Respond to threats across tenants more effectively with Microsoft 365 Defender multi-tenant support

OferSchreiber on Sep 18 2023 09:00 AM
The new multi-tenant support in Microsoft 365 Defender allows security teams to investigate and respond to threats acros...
5,778

Monthly news - September 2023

Heike Ritter on Sep 01 2023 04:24 AM
Microsoft 365 Defender Monthly news September 2023 Edition This is our monthly "What's new" blog post, summarizing produ...
12.1K

Microsoft Defender for Identity expands its coverage with new AD CS sensor!

Daniel Naim on Aug 16 2023 10:10 AM
Microsoft Defender for Identity releases sensor for Active Directory Certificates Services.
5,472

Monthly news - August 2023

Heike Ritter on Aug 01 2023 08:12 AM
Microsoft 365 Defender Monthly news August 2023 Edition This is our monthly "What's new" blog post, summarizing product ...
9,891

Investigate URLs and domains more efficiently with the new URL page

Oren_Saban on Jul 24 2023 09:00 AM
The new URL page in Microsoft 365 Defender provides a unified experience for investigating URLs and domains in one centr...
3,110

Microsoft empowers partners to securely build their own connector on its Open App Connector Platform

Caroline_Lee on Jul 18 2023 08:30 AM
Announcing the Open App Connector Platform that will inspire partners to build their own app connectors seamlessly into ...
6,597

New file analysis and pivoting capabilities in Microsoft 365 Defender

Oren_Saban on Jul 10 2023 08:52 AM
Easily pivot between devices and cloud apps, or analyze files with the new file page in Microsoft 365 Defender
11.6K

Deceptive defense: best practices for identity based honeytokens in Microsoft Defender for Identity

Nathan Swift on Jul 06 2023 09:00 AM
Honeytokens are a great tool for defenders to augment their security posture with traps hidden within their digital envi...
7,538

Leveraging the convergence of Microsoft Defender for Identity in Microsoft 365 Defender Portal

LiorShapira on Jul 04 2023 09:55 AM
The Microsoft Defender for Identity portal experience and functionality have been converged into Microsoft’s extended de...
9,503

Monthly news - July 2023

Heike Ritter on Jun 30 2023 06:16 AM
Microsoft 365 Defender Monthly news July 2023 Edition This is our monthly "What's new" blog post, summarizing product up...
7,661

Share your feedback on Microsoft 365 Defender via the new feedback portal

Douglas Santos on Jun 13 2023 09:00 AM
The new Feeback portal is available to all Microsoft 365 Defender customers, serving as a central place for you to share...
18.5K

Prevent repeat attacks with threat-informed security posture recommendations

israelcohen on Jun 06 2023 09:53 AM
Prioritize misconfiguration and vulnerability gaps using threat and incident insights
4,098

Monthly news - June 2023

Heike Ritter on Jun 06 2023 03:51 AM
Microsoft 365 Defender Monthly news June 2023 Edition This is our monthly "What's new" blog post, summarizing product up...
13.4K

Safeguarding your OAuth apps with App Governance

Greg Wiselka on Jun 05 2023 05:58 AM
Learn how easy it is to enable App governance and start using it in a few steps.
10.2K

Transform the way you investigate by using Behaviors & new detections in XDR, starting w/SaaS apps

assafyatziv on May 23 2023 05:54 AM
Use our new data type, Behaviors and out of the box detections to streamline your investigation experience for SaaS apps...
10.8K

Boost your detection and response workflows with alert tuning

Idan_Pelleg on May 22 2023 08:10 AM
Use alert tuning in Microsoft 365 Defender to detect and respond to potential security threats even more effectively.
19.1K

Automatically disrupt adversary-in-the-middle (AiTM) attacks with XDR

eyalh on May 17 2023 10:03 AM
Learn how the built-in attack disruption capabilities in Microsoft 365 Defender help disrupt adversary-in-the-middle (Ai...
5,414

Monthly news - May 2023

Heike Ritter on May 02 2023 05:33 AM
Microsoft 365 Defender Monthly news May 2023 Edition This is our monthly "What's new" blog post, summarizing product upd...
16.4K

RSA News: Taking XDR for SaaS apps to the next level - App Governance is now included in E5 Security

Caroline_Lee on Apr 25 2023 06:20 AM
Unlock new value for E5 Security customers with the inclusion of App Governance in Microsoft Defender for Cloud Apps at ...
6,724

Simplifying SaaS Security: Deploying Microsoft Defender for Cloud Apps in 4 steps

Keith_Fleming on Apr 06 2023 01:15 PM
Learn how you can deploy Defender for Cloud Apps in 4 easy steps.
2,522

The Virtual Ninja Show: Season 3 Recap!

Heike Ritter on Apr 05 2023 05:38 AM
Season 3 of the Ninja Show has come to a close! Spanning the month of March, we were incredibly grateful to have such ta...
6,551

Monthly news - April 2023

Heike Ritter on Apr 03 2023 04:52 AM
Microsoft 365 Defender Monthly news April 2023 Edition This is our monthly "What's new" blog post, summarizing product u...
17.2K

Announcing Collaboration Security for Microsoft Teams

SehrishKhan on Mar 28 2023 08:00 AM
Bringing the full feature set that customers use to protect their email environments across prevention, detection, and r...
10.9K

Respond to threats in near real-time with custom detections

Tali Ash on Mar 13 2023 08:30 AM
Use the new near real-time detection frequency for an even faster response to emerging threats in your environment.
9,265

XDR attack disruption in action – Defending against a recent BEC attack

Pawel Partyka on Mar 08 2023 09:00 AM
Learn how a real-world BEC attack was disrupted by Microsoft 365 Defender.
6,586

Monthly news - March 2023

Heike Ritter on Mar 03 2023 01:40 AM
Microsoft 365 Defender Monthly news March 2023 Edition This is our monthly "What's new" blog post, summarizing product u...
23.8K

Automatic disruption of Ransomware and BEC attacks with Microsoft 365 Defender

eyalh on Feb 22 2023 06:20 AM
Learn how the built-in attack disruption capabilities in Microsoft 365 Defender help stop progression of advanced attack...
17.8K

Microsoft Defender for Identity now detects suspicious certificate usage

Eran_Nachshon on Feb 16 2023 01:56 PM
Cybercriminals are increasingly targeting Active Directory Certificate Services to gain access to your domain. Learn how...
7,247

Improve your app posture and hygiene using Microsoft Defender for Cloud Apps

Caroline_Lee on Feb 15 2023 09:00 AM
Learn about our new SaaS Security Posture Management and app hygiene capabilities in Microsoft Defender for Cloud Apps.
7,743

Monthly news - February 2023

Heike Ritter on Feb 06 2023 03:53 AM
Microsoft 365 Defender Monthly news February 2023 Edition This is our monthly "What's new" blog post, summarizing produc...

Latest Comments

TakashiVV
in Automatic disruption of Ransomware and BEC attacks with Microsoft 365 Defender on Sep 25 2023 01:39 AM
Can a SOC which only looks at the UI suspect the following?DeviceProcessEvents| where Timestamp > ago(1d)| where FileName =~ "vssadmin.exe" and ProcessCommandLine has_any("list shadows", "delete shadows")or FileName =~ "fsutil.exe" and ProcessCommandLine has "usn" and ProcessCommandLine has "deletej...
0 Likes
MikeP751860
in Automate your alert response actions in Microsoft 365 Defender on Sep 21 2023 04:24 AM
Any plans to add an action to revoke active O365 sessions?
0 Likes
AntR07
in Respond to threats across tenants more effectively with Microsoft 365 Defender multi-tenant support on Sep 19 2023 04:22 PM
I like the idea of this however it is a bit bare bones at the moment. Will there be more features from added to this multitenant portal eventually? I noticed that it gave me an error when trying to run some of the threat hunting queries. Seems you cannot do table joins in the multi-tenant queries. I...
1 Likes
Antons Bukels
in Microsoft Defender for Identity expands its coverage with new AD CS sensor! on Sep 14 2023 10:02 PM
@Daniel Naim, great work on this new feature addition to MDI. Can the group Managed Service Account (gMSA) be used as a directory service account on AD CS with the MDI sensor? If yes, please point me to the documentation.
0 Likes
assafyatziv
in Transform the way you investigate by using Behaviors & new detections in XDR, starting w/SaaS apps on Sep 10 2023 09:45 PM
@David Wanderer there is nothing concrete we can share at the moment, but we're aware of the need to easily enable alerts based on the insights of behaviors and we are considering it as part of our future plans.
0 Likes