Forum Discussion
HeikeRitter
Microsoft
MicrosoftNinja Cat Giveaway: Episode 4 | Defender Experts for Hunting Overview
For this episode , your opportunity to win a plush ninja cat is the following -
Reply to this thread with:
- How would YOU explain/describe Defender Experts for Hunting to someone?
- Also in your own words: what is Threat hunting?
This offer is non-transferable and cannot be combined with any other offer. This offer ends on April 14th, 2023, or until supplies are exhausted and is not redeemable for cash. Taxes, if there are any, are the sole responsibility of the recipient. Any gift returned as non-deliverable will not be re-sent. Please allow 6-8 weeks for shipment of your gift. Microsoft reserves the right to cancel, change, or suspend this offer at any time without notice. Offer void in Cuba, Iran, North Korea, Sudan, Syria, Region of Crimea, Russia, and where prohibited.
- How would YOU explain/describe Defender Experts for Hunting to someone?
Defender Experts for Hunting is a managed threat hunting service that proactively looks for threat 24/7/365 across endpoints, Office 365, cloud applications, and identity using M365 Defender data to prioritize significant threat and help with daily SecOps work.
The following capabilities included in this managed threat hunting service:
1> DEN (Defender experts notifications) - Notifications show up as incidents in Microsoft 365 Defender, helping to improve security operations' incident response with specific information about the scope, method of entry, and remediation instructions.
2> EOD (Experts on Demand) - Click the 'Ask Defender Experts' button in M365 Defender portal to ask for help on specific incident, nation state actor, or attack vector
3> Reports - An interactive report summarizing what was hunted and found
4> Threat Hunting and Analytics -Defender Experts for Hunting look deeper to expose advanced threats and identify the scope and impact of malicious activity associated with human adversaries or hands-on-keyboard attacks.
what is Threat hunting?
Threat hunting is the proactive process of identifying and investigating potential security threats or malicious activity on a network, computer, or device. It involves analyzing system and network logs, observing user behavior patterns, and identifying anomalies and suspicious activity that indicate the presence of a threat. The aim of threat hunting is to detect security incidents before they cause harm, and to take steps to prevent them from happening again in the future.
MephistoMcTMicrosoft Defender Experts for Hunting is a security service offered by Microsoft that augments a customer's existing SOC by helping them proactively hunt threats and therefore add all the expertise and threat intelligence that Microsoft and its ecosystem has to offer. This service comes both with a proactive component (like e.g. hunting and analysis) but also reactive components ("ask a Defender Expert") to enrich the SOC teams cyber security intelligence.
Threat hunting (one of the proactive services that are part of Defender Experts for Hunting) is the process of proactively searching for and identifying threats that may have evaded traditional security measures. Usually the start of a threat hunt is the search for a specific "indicator of compromise" (obtained via various threat intelligence sources) within the infrastructure that is to be protected. (e.g. on an endpoint or within the network infrastrutcure). It helps e.g. to detect "dormant / pre-implanted hooks" (e.g. implanted before a specific security monitoring solution has been implemented) before they are being actively used by the attacker and generate alarms by the relevant security systems.- Defender Experts for Hunting is a Microsoft team that extends our SOC team by looking for things that either don't alert or piece together signals that together shows an attack in progress.
Threat hunting is a pro-active approach to determine whether any threat actors are trying to (or have already) infiltrated a network, but not set off any of the traditional warning systems. 
KattyKatHow would YOU explain/describe Defender Experts for Hunting to someone?
Defender Experts for Hunting is a service offered by Microsoft that provides expert advice and assistance to customers who need to respond to advanced and persistent cyber attacks. The service offers access to a team of experts who are experienced in investigating and resolving serious security incidents, and can help organizations quickly identify and respond to cyber threats. This helps customers to eliminate potential threats and reduce the risk of harm to their online assets.
-Also in your own words: what is Threat hunting?
Threat hunting is a proactive and continuous process of searching and tracking for signs of potential security threats within a network or computer system.- Defender Experts for Hunting is phoning in a Subject Matter Expert to assist you in your threat hunting needs. Threat Hunting is a process of proving a developed hypothesis of a perceived threat. It should be conducted proactively to develop new detections and reactively to identify IOCs within the environment and take remediation actions.
- HeikeRitterworks for me 😕 maybe a glitch in the matrix?
- How would YOU explain/describe Defender Experts for Hunting to someone?
Defender Experts for Hunting is Microsofts managed threat hunting service that runs 24/7 x 365 and proactively searches through the telemetry from your tenant (endpoints, emails, identity and cloud apps) to find evidence of threats to your organisation and notifies you of anything suspicious.
- What is Threat hunting?
Threat hunting is a proactive cybersecurity technique based on threat intelligence and is used to find evidence of undetected threats within your environment.
- - How would YOU explain/describe Defender Experts for Hunting to someone?
Defender Experts for Hunting is a managed threat hunting service that proactively hunts for threats across endpoints, email, identity, and cloud apps.
Threat hunting?
Threat hunting is a proactive approach to identifying previously unknown, or ongoing non-remediated threats, - 1) It is a service that allows you to facilitate the detection of an attack because it gives context to alarms that may initially seem unrelated.
2) Threat hunting means a set of techniques and procedures that allow both to intervene proactively and to discover attacks in progress against one's own systems from cyber attacks. - Nitasha_ThakurHow would YOU explain/describe Defender Experts for Hunting to someone?
Defender Experts for Hunting is a managed threat hunting service that proactively looks for threat 24/7/365 across endpoints, Office 365, cloud applications, and identity using M365 Defender data to prioritize significant threat and help with daily SecOps work.
The following capabilities included in this managed threat hunting service:
1> DEN (Defender experts notifications) - Notifications show up as incidents in Microsoft 365 Defender, helping to improve security operations' incident response with specific information about the scope, method of entry, and remediation instructions.
2> EOD (Experts on Demand) - Click the 'Ask Defender Experts' button in M365 Defender portal to ask for help on specific incident, nation state actor, or attack vector
3> Reports - An interactive report summarizing what was hunted and found
4> Threat Hunting and Analytics -Defender Experts for Hunting look deeper to expose advanced threats and identify the scope and impact of malicious activity associated with human adversaries or hands-on-keyboard attacks.
what is Threat hunting?
Threat hunting is the proactive process of identifying and investigating potential security threats or malicious activity on a network, computer, or device. It involves analyzing system and network logs, observing user behavior patterns, and identifying anomalies and suspicious activity that indicate the presence of a threat. The aim of threat hunting is to detect security incidents before they cause harm, and to take steps to prevent them from happening again in the future. - How would YOU explain/describe Defender Experts for Hunting to someone?
Defender Experts for Hunting is a proactive threat hunting service for Microsoft 365 applications, Endpoints, Identities to get the security Alerts and remediation solutions. Get a good overview with security reports to keep you in Control and when you have questions you can ask Defender Experts for answers. The right SecOps people can be notified when alerts are triggered.
Also in your own words: what is Threat hunting?
Threat hunting is proactively searching for cyber threats in your environment. Cyber threat hunting digs deep to find malicious actors and to do your Security remediation based on best Practices like CVE's, mitre att&ck, solutions.
