User Profile
AdiWeisberg
MicrosoftJoined 5 years ago
User Widgets
Recent Discussions
Hannover Messe 2022
Microsoft will present its advanced security and cloud offerings as part of Hannover Messe 2022 https://www.hannovermesse.de/en/ This world's leading exhibition covers emerging industrial technologies, such as AI and robotics, batteries, and fuel cells. Industry thought leaders will present their technologies and ideas for the factories and energy systems of the future. In case you are there and want to meet with us - you are welcome to comment here, and we will contact you. @Yariv Halpern, technology strategist for Microsoft’s Defender for IoT will be there to discuss Microsoft's holistic approach and how it can help your organization achieve its digital transformation journey. YossiTMorning Coffee with a CISO: Cloud-Powered OT Security with Microsoft and Lhoist
Lhoist CISO, Clement Herssens, talks with our product lead Ariel Saghiv to share best practices for protecting and securing OT and IoT automation systems and what OT security means for Lhoist. Leveraging the power of cloud computing to provide threat detection analysis, and response capabilities for OT environments. Topics include surpassing on-premises processing power, centralized management for global security teams, and confidently managing OT devices from a unified portal. Check out the video description for the session deck and additional resources https://www.youtube.com/watch?v=81lb0z-sm6A arielsgvUpdates By D4IoT Research / Section 52
Microsoft Defender for IoT’s research group (Section 52) has recently published two new articles on cross-platform malware affecting IoT devices and released dozens of associated detections and alerts in the January 2023 Defender for IoT Threat Intelligence package update. Researchers uncovered a Distributed Denial of Service (DDoS) botnet called MCCrash that is downloaded through Windows cracking software and spreads over SSH to infect Windows, Linux and IoT devices. MCCrash launches a DDoS attack on private Minecraft servers. In addition, the research group released findings on an updated version of the Zerobot cross-platform malware, sharing new indicators of compromise, attack methods, exploits, and capabilities which include an expansion into Apache vulnerabilities. Customers who use other Microsoft security products will also benefit from enhanced detection capabilities for threats related to the malware on a range of their devices, from endpoint to desktop. These reports, including additional context, are also available as Threat Analytics in D365 IlanaSivanWebinar: Best practices for facilitating OT/IoT enablement in the corporate SOC
Introducing a new ICS security solution into the organization and expanding the SOC team responsibilities to incorporate IoT/OT network security requires preparations. In this webinar we will review and demonstrate the recommend best practices implementing IoT/OT SOC workflows cross your organization Webinar takes place tomorrow, registration is open: https://forms.office.com/Pages/ResponsePage.aspx?id=v4j5cvGGr0GRqy180BHbR_0A4IaJRDNBnp8pjCkWnwhUNklQVklGWTUzUE9DUkpOVjRCOEJMWkdHOS4uSep 14 Webinar : IoT Visibility Within M365D
The Last Piece of the XDR Puzzle - Augmenting IT SecOps with IoT Security Security teams invest heavily in bringing security-related telemetry and data into a single place, with the vision of "one XDR to rule them all". But many overlook a huge bulk of the network that remains obscure - IoT and unmanaged devices. Join us in reviewing how Microsoft Defender for IoT integrates with M365D to complete the XDR story with IoT visibility, assessment, and security. You can now register and join us to hear more : https://forms.office.com/Pages/ResponsePage.aspx?id=v4j5cvGGr0GRqy180BHbR_0A4IaJRDNBnp8pjCkWnwhUNklQVklGWTUzUE9DUkpOVjRCOEJMWkdHOS4uWebinar : Securing critical networks through Defender for IoT and Horizon DPI
Coming up this week, Wednesday 20.7 Registration is open: https://aka.ms/SecurityCommunity With the Open Development Environment (ODE), you can quickly support 100% of protocols used in OT, IoT and ICS environments (including custom or proprietary protocols that are not to be shared with the outside world). Deep packet inspection in the Defender for IoT platform can be easily extended by developing plug-ins that use the Horizon ODE for deep packet inspection. A patent has been granted to Microsoft for innovative, ICS-aware threat analytics and machine learning algorithms relating to OT/IoT/ICS security.Microsoft Defender for IoT : Enterprise IoT GA
We are excited to announce that Enterprise IoT is now generally available for MDIoT and MDE customers! Enterprise IoT delivers visibility, security assessment and detections for IoT devices in the Enterprise environment, such as VoIP phones, printers and Smart TVs. M365D customers with E5 or P2 licenses are already enjoying visibility into IoT devices via Device Inventory blade. Now these customers can also onboard the new product directly from the Settings page in the M365D portal and start getting value immediately. Use Enterprise IoT to assess misconfigurations and vulnerabilities for IoT devices, as well as triaging alerts an hunting for malicious activity for these devices. See more in our public announcement in the SCI blog and onboarding documentation!Webinar : Better Together: D4IoT integration with ServiceNow’s Operational Technology Management
As part of this webinar, we will overview the latest integration of Microsoft Defender for IoT with ServiceNow’s Operational Technology (OT) Manager, With this integration, organizations can enrich their existing ServiceNow CMDB with detailed information about specialized OT assets like programmable logic controllers (PLCs) and human-machine interfaces (HMIs). Assets auto discovered agentlessly by Defender for IoT are shared seamlessly with the CMDB, along with their properties such as Purdue Level, device manufacturer, type, firmware level, IP/MAC, etc. Additionally, vulnerabilities identified by Defender for IoT — via passive, non-invasive monitoring — can now be shared with ServiceNow Vulnerability Response to create a single view of OT asset vulnerabilities. Enhancing this visibility with the production process context in ServiceNow enables customers to proactively identify and prioritize common vulnerabilities and exposures (CVEs) that can be exploited by adversaries to stop production and cause safety incidents Registration is now open , for June 29 - Join Us !Webinar by Section 52 - D4IoT Research Team
Investigating Malicious Ladder Logic In this upcoming webinar, our researcher, Maayan, will share some interesting techniques for investigating potentially malicious Ladder Logic code. Maayan will briefly overview the basics of Ladder Logic programming and demonstrate it on our lab equipment. This is a unique opportunity to learn more about programable logic controllers communication basics, structure, and execution Registration is still open for May 24 : https://forms.office.com/pages/responsepage.aspx?id=v4j5cvGGr0GRqy180BHbR2HneBfpDd1Mj3-yGKE5Q-xUNllUMDlJNDdYWkJQRUNDVVU2RDFGQkkzVy4uRe: Defender for IoT Automating processes
VaninaYord You can offline upload PCAP files to your sensor machine and stream the data. the files are limited by 2GB. To enable the PCAP player via sensor UI open: "system settings" -> "advanced configuration" -> PCAP -> change the value of Pcap_enabler from 0 to 1. Once you'll do that PCAP Player option will be displayed as part of system settings -> basic. from there you can upload files and run them, results will be displayed on your D4IoT map/inventory / alerts/ ...Re: Interface IP Assign/Change/Remove in Sensor
Hi In General, during installation interface names are allocated automatically and shouldn't be changed, in case you identified differences from parallel installations, this may indicate a configuration mismatch, therefore I suggest restarting the installation or contacting technical support via azure portal help+supportRe: Exams/certifications for IoT
Here you go: https://techcommunity.microsoft.com/t5/microsoft-defender-for-iot-blog/microsoft-defender-for-iot-ninja-training/ba-p/2428899 All Ninja training can be found in our security community: https://techcommunity.microsoft.com/t5/security-compliance-and-identity/join-our-security-community/ba-p/927888
