- Joined
- May 15, 2016
- Messages
- 18,786
- Likes
- 2,614
- Points
- 1,730
Utilities allow companies to see the attack vector on their network, as well as learn how cybercriminals can break
Microsoft announced the release of a new security product Microsoft Defender External Attack Surface Management, which allows customers to see the attack surface of their business, making it easier to detect vulnerabilities and block potential attack vectors.
Through continuous scanning of Internet connections, this tool creates a catalog of an organization's entire environment, including unmanaged devices.
According to Vasu Jakkal, corporate vice president of Microsoft security, the new Defender External Attack Surface Management gives information security specialists the ability to detect unknown and unmanaged company resources accessible from the Internet, which a cybercriminal can use to infiltrate an organization's network. “With a complete understanding of the organization, customers can take recommended steps to mitigate risk by placing unknown resources, endpoints, and assets under secure management in their SIEM and XDR tools,” Jakkal added.
Also on August 2, Microsoft announced its second security product, Microsoft Defender Threat Intelligence, which provides SecOps experts with the threat intelligence they need to detect an attacker's infrastructure and accelerate attack investigation and remediation efforts. The utility also provides members of the SecOps team with access to a set of 43 trillion. Microsoft daily security alerts to actively search for threats in their environments. The data is provided in the form of a library of raw threat information with information about the names of adversaries and the mapping of their tools, tactics, and procedures (TTP).
Threat intelligence is generated by experts formerly at RiskIQ, in collaboration with the Microsoft nation-state tracking team, the Microsoft Threat Intelligence Center (MSTIC), and the Microsoft 365 Defender security research teams.
__________________
Microsoft announced the release of a new security product Microsoft Defender External Attack Surface Management, which allows customers to see the attack surface of their business, making it easier to detect vulnerabilities and block potential attack vectors.
Through continuous scanning of Internet connections, this tool creates a catalog of an organization's entire environment, including unmanaged devices.
According to Vasu Jakkal, corporate vice president of Microsoft security, the new Defender External Attack Surface Management gives information security specialists the ability to detect unknown and unmanaged company resources accessible from the Internet, which a cybercriminal can use to infiltrate an organization's network. “With a complete understanding of the organization, customers can take recommended steps to mitigate risk by placing unknown resources, endpoints, and assets under secure management in their SIEM and XDR tools,” Jakkal added.
Also on August 2, Microsoft announced its second security product, Microsoft Defender Threat Intelligence, which provides SecOps experts with the threat intelligence they need to detect an attacker's infrastructure and accelerate attack investigation and remediation efforts. The utility also provides members of the SecOps team with access to a set of 43 trillion. Microsoft daily security alerts to actively search for threats in their environments. The data is provided in the form of a library of raw threat information with information about the names of adversaries and the mapping of their tools, tactics, and procedures (TTP).
Threat intelligence is generated by experts formerly at RiskIQ, in collaboration with the Microsoft nation-state tracking team, the Microsoft Threat Intelligence Center (MSTIC), and the Microsoft 365 Defender security research teams.
__________________