cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Microsoft 365 Defender Blog
Microsoft Secure Tech Accelerator
Apr 13 2023, 07:00 AM - 12:00 PM (PDT)
Microsoft Tech Community
Find out more
Options
5,872

Respond to threats in near real-time with custom detections

Tali Ash on Mar 13 2023 08:30 AM
Use the new near real-time detection frequency for an even faster response to emerging threats in your environment.
5,579

XDR attack disruption in action – Defending against a recent BEC attack

Pawel Partyka on Mar 08 2023 09:00 AM
Learn how a real-world BEC attack was disrupted by Microsoft 365 Defender.
4,297

Monthly news - March 2023

Heike Ritter on Mar 03 2023 01:40 AM
Microsoft 365 Defender Monthly news March 2023 Edition This is our monthly "What's new" blog post, summarizing product u...
15.6K

Automatic disruption of Ransomware and BEC attacks with Microsoft 365 Defender

eyalh on Feb 22 2023 06:20 AM
Learn how the built-in attack disruption capabilities in Microsoft 365 Defender help stop progression of advanced attack...
12.1K

Microsoft Defender for Identity now detects suspicious certificate usage

Eran_Nachshon on Feb 16 2023 01:56 PM
Cybercriminals are increasingly targeting Active Directory Certificate Services to gain access to your domain. Learn how...
3,494

Improve your app posture and hygiene using Microsoft Defender for Cloud Apps

Caroline_Lee on Feb 15 2023 09:00 AM
Learn about our new SaaS Security Posture Management and app hygiene capabilities in Microsoft Defender for Cloud Apps.
5,666

Monthly news - February 2023

Heike Ritter on Feb 06 2023 03:53 AM
Microsoft 365 Defender Monthly news February 2023 Edition This is our monthly "What's new" blog post, summarizing produc...
5,335

Automate your alert response actions in Microsoft 365 Defender

Oren_Saban on Feb 02 2023 07:01 AM
Want to respond to threats faster and more effectively? Learn how to easily automate your response actions to any alerts...
5,624

Build custom incident response actions with Microsoft 365 Defender APIs

AlexanderZagranichnov on Jan 16 2023 09:00 AM
Use the Microsoft 365 Defender APIs to perform custom actions in bulk.
7,031

Centrally manage permissions with the Microsoft 365 Defender role-based access control (RBAC) model

Gadi_Palatchi_MSFT on Jan 16 2023 07:00 AM
Use the new Microsoft 365 Defender role-based access control (RBAC) to centrally manage permissions across Microsoft Def...
8,669

Monthly news - January 2023

Heike Ritter on Jan 11 2023 03:52 AM
Microsoft 365 Defender Monthly news January 2023 Edition This is our monthly "What's new" blog post, summarizing product...
2,891

Protect your sensitive data against malicious apps

Avahidnia on Jan 09 2023 10:02 AM
Gain insights into apps accessing sensitive data in third party and LOB apps using the Microsoft Defender for Cloud Apps...
3,506

Optimize your hunting performance with the new query resources report

Tali Ash on Dec 13 2022 08:06 PM
Use the new query resources report in Microsoft 365 Defender to help you optimize your hunting performance.
3,320

Protect apps that use non-standard ports with Defender for Cloud Apps

AmitMishaeli on Dec 09 2022 07:09 AM
Applications that use ports other than 443 can now be protected in real-time using Microsoft Defender for Cloud Apps.
4,550

Monthly news - November 2022

Heike Ritter on Dec 05 2022 01:38 AM
Microsoft 365 Defender Monthly news November 2022 This is our monthly "What's new" blog post, summarizing product update...
4,777

Microsoft Defender for Cloud Apps data protection series: Understand your data types

Keith_Fleming on Nov 29 2022 07:09 AM
The second blog in our series helps shed light on when to use Microsoft Defender for Cloud Apps and Microsoft Purview to...
7,736

Investigate incidents more effectively with the new attack story view in Microsoft 365 Defender

Idan_Pelleg on Nov 07 2022 07:00 AM
Introducing attack story view in Microsoft 365 Defender - more effective investigation to stop breaches faster. Investig...
3,962

Monthly news - October 2022

Heike Ritter on Nov 01 2022 10:51 AM
Microsoft 365 Defender Monthly news October 2022 This is our monthly "What's new" blog post, summarizing product updates...
5,623

Introducing the Microsoft Defender for Cloud Apps data protection series

Keith_Fleming on Nov 01 2022 09:00 AM
One of the core challenges our customers face is how to protect data in their environment. While the cloud enables new s...
14.7K

Identity Protection alerts now available in Microsoft 365 Defender

Idan_Pelleg on Oct 25 2022 04:43 AM
Identity Protection alerts are now part of incidents along with alerts from the other security domains and can be review...
16.4K

What’s new in XDR at Microsoft Ignite

Kim Kischel on Oct 12 2022 08:50 AM
Announcing Automatic Attack Disruption, more SOC efficiency improvements in Microsoft 365 Defender, 50% off Defender for...
7,211

Protect your environment against hybrid identity attacks

Eran_Nachshon on Oct 10 2022 06:00 AM
Using a recent example of a hybrid identity attack, learn how to protect against them!
4,165

Monthly news - September 2022

Heike Ritter on Oct 03 2022 12:45 PM
Microsoft 365 Defender Monthly news September 2022 This is our monthly "What's new" blog post, summarizing product updat...
3,478

Discover XDR integrations and services in the New Microsoft 365 Defender Partner Catalog

Simaya_Ouli on Sep 22 2022 06:40 AM
The new Microsoft 365 Defender Partner Catalog enables you to easily discover technology and services partners that work...
7,506

Top Threat Protection use cases in Microsoft Defender for Cloud Apps

assafyatziv on Sep 22 2022 06:39 AM
The combined power of Microsoft Defender for Cloud Apps and Microsoft 365 Defender provides unique threat protection cap...
4,336

Monthly news - August 2022

Heike Ritter on Sep 01 2022 10:13 AM
Microsoft 365 Defender Monthly news August 2022 This is our monthly "What's new" blog post, summarizing product updates ...
12.9K

Hunt in Microsoft 365 Defender without KQL!

Tali Ash on Aug 24 2022 06:15 AM
To reduce the learning curve for hunting and enable all analysts to hunt easily, we are excited to announce that a Guide...
10.6K

Hunt for compromised Azure subscriptions using Microsoft Defender for Cloud Apps

doredry on Aug 24 2022 06:00 AM
In our present threat landscape, attackers are constantly trying to compromise organizations, each with their own set of...
14.6K

The new Microsoft 365 Defender APIs in Microsoft Graph are now available in public preview!

Naama Schlesinger on Aug 18 2022 11:24 AM
Public Preview: Microsoft 365 Defender APIs in MS Graph: Incidents, Alerts, and Hunting
7,415

Protect sensitive SharePoint sites with Defender for Cloud Apps

Keith_Fleming on Aug 08 2022 06:00 AM
Over the last couple of years, customers have continued to migrate their on-premises resources to the cloud. The ongoing...

Latest Comments

eyalh
in Automatic disruption of Ransomware and BEC attacks with Microsoft 365 Defender on Mar 27 2023 02:52 AM
Hi @BrechtKUL, thanks for your question. The feature is already enabled for Public Preview customers. Please see the documentation for configuration options.
0 Likes
Gadi_Palatchi_MSFT
in Centrally manage permissions with the Microsoft 365 Defender role-based access control (RBAC) model on Mar 19 2023 07:54 AM
@zubairrahimsoc Currently, this new RBAC model supports MDO Exchange Online Protection (EOP) permissions only. However, we are actively working on expanding this support to include permissions managed in Exchange online within the Microsoft 365 Defender RBAC model as well. Permissions managed in Exc...
0 Likes
JDesmSt
in Become a Microsoft 365 Defender Ninja on Mar 18 2023 04:19 AM
Thanks for gathering these resources together. I completed the training and this is useful in getting started with Microsoft 365 Defender. Just a few remarks below. @Heike Ritter I noticed the link for "Module 6. Self-healing" / "Report a false positive/negative to Microsoft for analysis" is pointin...
0 Likes
zubairrahimsoc
in Centrally manage permissions with the Microsoft 365 Defender role-based access control (RBAC) model on Mar 16 2023 11:08 PM
@Gadi_Palatchi_MSFT After adapting the New M365 RBAC model, the analyst are unable to block the sender or malicious domin, file and URL from explorer menu because Microsoft not mapped the Tenant AllowBlockList Manager role in the new MD RBAC model. The roles that we were using for MDO in legacy mode...
0 Likes
ArendvanDijk
in Become a Microsoft 365 Defender Ninja on Mar 16 2023 09:47 AM
Great learning resources, thank you @Heike Ritter! It would be even nicer if we could turn the certificate of completion into a credly cert.
1 Likes