Monthly news – October 2022

Posted by

This post has been republished via RSS; it originally appeared at: New blog articles in Microsoft Community Hub.

Microsoft 365 Defender
Monthly news
October 2022

OFT header v4.png

This is our monthly "What's new" blog post, summarizing product updates and various assets we have across our Defender products.  

Legend:
Product videos.png Product videos webcast recordings.png Webcast (recordings) Docs on MS.png Docs on Microsoft Blogs on MS.png Blogs on Microsoft
GitHub.png GitHub External.png External Product improvements.png Product improvements Public Preview sign-up.png Previews / Announcements
Microsoft 365 Defender
Public Preview sign-up.png What’s new in XDR at Microsoft Ignite. Read all the news announced at Ignite. 
Public Preview sign-up.png Identity Protection alerts are coming to Microsoft 365 DefenderAzure Active Directory (Azure AD) Identity Protection alerts are now part of Microsoft 365 Defender. 
Blogs on MS.png Protect your environment against hybrid identity attacksThis blog uses “MagicWeb” as a recent example of an attack abusing hybrid identity environments, and provides important information on how to protect against these types of attacks.
Microsoft Defender for Cloud Apps
Blogs on MS.png Introducing the Microsoft Defender for Cloud Apps data protection series. This will be a series of blogs where the goal is to help shed light on when to use Defender for Cloud Apps and Purview to protect your data. Additionally, we want to provide guidance on best practices of implementing policies for your use cases.
Public Preview sign-up.png Native Integration of Microsoft Defender for Cloud Apps in Microsoft 365 Defender is now in public preview!
The entire Defender for Cloud Apps experience in Microsoft 365 Defender is now available for public preview.
Unified SecOps and security admins experience benefits:​
1. Save time and costs ​
2. Enable customers to have a holistic investigation experience ​
3. Benefit from additional data and signals in advanced hunting ​
4. Integrated protection across all security workloads
Watch this video to learn more about it.
Blogs on MS.png

Hunt for compromised Azure subscriptions using Microsoft Defender for Cloud Apps. 
In this blog, we will describe how attackers can compromise Azure subscriptions and use them for malicious activities. In addition, we will share how Microsoft Defender for Cloud Apps data can help hunt for these activities and how to mitigate the risk of compromised subscriptions.

Microsoft Defender for Endpoint
Public Preview sign-up.png Microsoft Defender for Endpoint announcements at Microsoft Ignite 2022. Read a summary of all the Defender for Endpoint announcements at Ignite. 
Public Preview sign-up.png Malware Protection support for Android is now generally available for GCC.
Public Preview sign-up.png Detecting and remediating command and control attacks at the network layerWe are excited to announce the public preview of Network Protection command and control (C2) detection and remediation capabilities in Microsoft Defender for Endpoint.
Microsoft Defender for Office 365
Blogs on MS.png Build custom email security reporting with Microsoft Defender for Office 365 and PowerBIIn this blog, we will showcase an example on how you can leverage Power BI and the Microsoft 365 Defender Advanced Hunting APIs to build a custom dashboard and share a template that you can customize and extend.
Microsoft Defender Vulnerability Management
Public Preview sign-up.png

Support for Common Vulnerabilities and Exposures (CVEs) without a security update in public previewSome CVEs may lack the required security updates for all or a subset of affected software, which prevents successful remediation efforts. We are excited to announce that support and reporting on the availability of security updates for CVEs is now in public preview in Microsoft Defender Vulnerability Management.

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.