cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Microsoft Security Experts Blog
Options
1,759

Microsoft Intern Experience - Through the eyes of DART Incident Response (IR) interns

Zophar on Sep 24 2024 07:19 AM
Hear from our IR interns and see why they describe DART internships as surprising, rewarding, and very real-world.
764

Microsoft IR Internship Blog Series, Part 1 – ‘Not what I Expected’ – Zena’s experience

Zophar on Sep 24 2024 07:18 AM
It started with a cyberattack on a hospital where people Zena knew worked. She wanted to learn how to prevent that from ...
604

Microsoft IR Internship Blog Series, Part 2 – ‘Keeping it Real’ – Ataliya’s experience

Zophar on Sep 24 2024 07:14 AM
Ataliya shadowed threat hunts, made discoveries, and built tools for IR. The experience is as realistic as possible.
694

Microsoft IR Internship Blog Series, Part 3 – ‘Learn – Teach – Lead’ – Vadin’s experience

Zophar on Sep 24 2024 07:10 AM
Vadin was a student, teacher, and leader. He learned that being successful at Microsoft IR requires adaptability, versat...
726

Microsoft IR Internship Blog Series, Part 4– ‘Facing an Active Threat’ – Patro’s experience

Zophar on Sep 24 2024 07:09 AM
Named bad actors seemed like urban legends to Patro – not something he would ever encounter. During the internship, he c...
560

Microsoft IR Internship Blog Series, Part 5 – ‘If you care – This is for you’ - Bahula’s experience

Zophar on Sep 24 2024 07:03 AM
Bahula’s forensics discovery created a pivotal 'ah-ha' moment during an investigation. She learned that a customer's rel...
59K

Welcome to the Microsoft Incident Response Ninja Hub

EmilyLiu on Sep 12 2024 11:00 AM
Bookmark this page for a compilation of guides and resources that the Microsoft IR team has developed on threat hunting,...
1,368

Microsoft Defender Experts services are now HIPAA and ISO certified

SharonXia on Sep 04 2024 01:29 PM
Certifications demonstrate our commitment to protecting our customers data and privacy.
19.4K

Hunting with Microsoft Graph activity logs

ShivaP on Sep 03 2024 10:00 AM
Learn about threat hunting through Microsoft Graph API activity logs, with KQL queries to boost your investigation.
13.2K

Octo Tempest: Hybrid identity compromise recovery

rpeckham on Jun 19 2024 09:30 AM
How Microsoft's Cybersecurity Detection and Response Team (DART) combats the threat actor known as Octo Tempest.
13.7K

Effective strategies for conducting Mass Password Resets during cybersecurity incidents

DenizSezer on Jun 11 2024 09:30 AM
Learn about the challenges of performing a mass password reset and best practices for carrying one out.
6,080

Recover an ADCS platform from compromise

dmayes on May 21 2024 09:30 AM
Discover how Microsoft DART executes the recovery of an Active Directory Certificate Services server amidst a ransomware...
3,282

Microsoft Defender Experts Services Expanded Coverage Upcoming Preview

Elisa_Lippincott on May 06 2024 09:00 AM
We are excited to announce our upcoming preview of our Defender Experts services expanded coverage.
14.3K

Hunting in Azure subscriptions

Mary_Asaolu on Apr 30 2024 07:00 AM
15.7K

Strategies to monitor and prevent vulnerable driver attacks

stefanpuzderca on Apr 09 2024 08:41 AM
Delve into the intricate details of vulnerable driver attacks, and discover effective strategies to prevent them
9,866

Follow the Breadcrumbs with Microsoft IR & MDI: Working Together to Fight Identity-based Attacks

DenizSezer on Mar 21 2024 09:00 AM
Learn how Microsoft Incident Response uses Microsoft Defender for Identity (MDI) against identity-based attacks.
8,387

Welcome to the Microsoft Defender Experts Ninja Hub

Elisa_Lippincott on Feb 20 2024 07:20 AM
Bookmark this page for document guides, videos, and other resources focused on Defender Experts services.
21.5K

Hunting for QR Code AiTM Phishing and User Compromise

krithikar on Feb 12 2024 05:00 AM
Dig into the mechanics of QR code phishing, how the Defender Experts team hunts for these campaigns, and the mitigations...
18.2K

Defender Experts’ recommendations for impactful security posture management

PhoebeRogers on Jan 25 2024 05:23 PM
Improve your security posture with impactful controls and configurations recommended by Defender Experts.
3,518

Test your configurations and experience Defender Experts Notifications early

ashutoshmaheshwari on Jan 18 2024 07:38 PM
Our new sample Defender Experts Notifications feature lets you test configurations and see what to expect when you get a...
9,005

Experience Defender Experts above the fold

DillonPersaud on Jan 10 2024 05:42 PM
Get more visibility into what our Defender Experts are doing on your behalf with a new homepage experience and enhanced ...
17.7K

Security Analyst Profile: Arlette Umuhire Sangwa

JoeCicero on Jan 03 2024 11:04 AM
"It's not just about protecting data - it's about safeguarding the very services and institutions that are crucial for o...
18.9K

Security Analyst Profile: Amanda Cantero Schilling

JoeCicero on Dec 14 2023 07:00 AM
"Securing the digital frontier is not just about stopping cyber threats; it's about understanding the ever-evolving land...
9,009

The Microsoft Security Experts Discussion Space: Your Gateway to Knowledge Sharing

Raae_ on Dec 05 2023 06:59 AM
We're excited to spotlight our Microsoft Security Experts Discussion Space—a dedicated community designed for cybersecur...
10.9K

What’s new in Microsoft Defender Experts for XDR

Elisa_Lippincott on Nov 15 2023 08:10 AM
We've been busy! Learn more about the latest enhancements to the Defender Experts for XDR service.
19.6K

Service Delivery Manager Profile: Meiko Lopez

JoeCicero on Nov 13 2023 08:00 AM
"Be steadfast in the truth - providing comfort and assurance to the customers that you will help them to a resolution."
11.9K

Service Delivery Manager Profile: Sachin Kumar

JoeCicero on Nov 06 2023 08:06 AM
“As an SDM, I am committed to walking this path of security alongside our Defender Experts for XDR customers.”

Latest Comments

adocasar
in Welcome to the Microsoft Incident Response Ninja Hub on Sep 30 2024 01:45 AM
Thanks for this, great tools for Incident Responders 😊
0 Likes
Urs01
in Total Identity Compromise: Microsoft Incident Response lessons on securing Active Directory on Sep 24 2024 09:31 PM
Very helpfull - thank you!
0 Likes
jrfre
in Hunting for MFA manipulations in Entra ID tenants using KQL on Sep 16 2024 05:15 PM
Great resource.  Thanks for sharing! 
0 Likes
DarrenP
in Welcome to the Microsoft Incident Response Ninja Hub on Sep 15 2024 12:15 AM
Love this !
0 Likes
SoeMinnWin
in Hunting for MFA manipulations in Entra ID tenants using KQL on Sep 14 2024 11:47 PM
Thanks for sharing!!
0 Likes