Drawing from its acquisition of RiskIQ, Microsoft is releasing Defender External Attack Surface Management and Defender External Attack Surface Management.

microsoft, cyber security
Credit: Dreamstime

Drawing from last year’s acquisition of RiskIQ, Microsoft is adding two new threat-intelligence applications to its Defender product family, and separately offering new detection and response capabilities for SAP ERP (enterprise resource planning) systems to its Sentinel SIEM (security information and event management) product.

Combining intelligence from the security research team at RiskIQ with existing in-house security findings, Microsoft has developed Microsoft Defender Threat Intelligence, a standalone library of raw adversary data. 

Microsoft says it is offering the library for free, accessible directly by all users, or from within its existing Defender family of security products, according to a blog post from Vasu Jakkal, a Microsoft vice president for security, compliance, identity, and management.

Microsoft has also released Microsoft Defender External Attack Surface Management, designed to scan users’ computing environments and connections to provide security teams with the same view an attacker has of their organisation while selecting a target.

Threat library offers real-time adversary intelligence

According to Jakkal, Microsoft will combine its in-house security data — gathered from a tracking network of 35 ransomware families, 250+ unique nation-states, cyber criminals, and threat actors — with the intelligence acquired by RiskIQ, for real-time updating of the new Defender Threat Intelligence (DFI) library.

The library will provide raw threat intelligence detailing adversaries by name, correlating their tools, tactics, and procedures (TTPs), and will provide updates when new information is distilled from a host of sources including Microsoft’s nation-state tracking team, Microsoft Threat Intelligence Center (MSTIC), and the Microsoft 365 Defender security research teams.

DFI is aimed at helping security operations centres (SOCs) understand the specific threats their organisations face and harden their security posture accordingly, added Jakkal.

The DFI intelligence is also expected to enhance the detection capabilities of Microsoft Sentinel and the entire family of Microsoft Defender products. More sources of information for DFI are expected to be added later this year, Jakkal said.

Defender EASM provides “attacker view” of assets

Designed to provide security teams with the ability to discover unknown and unmanaged resources that are visible and accessible from the internet, Defender External Attack Surface Management (EASM) will essentially scan the internet and connected assets to catalog a customer’s environment and its internet-facing resources.

Identified resources — including endpoints, agentless and unmanaged assets — can then be brought under secure management with SIEM and extended detection and response (XDR) tools.

“With the same view an attacker has, Defender External Attack Surface Management helps customers discover unmanaged resources that could be potential entry points for an attacker,” Jakkal said in the blog post. The company did not immediately detail pricing for the product.

Sentinel gets new SAP monitoring features

Meanwhile, Microsoft Sentinel, the company’s cloud-native SIEM and SOAR (security orchestration, automation, and response) application, will offer support for SAP alerts. 

SAP ERP applications, which can be run from both on-premises and cloud infrastructure, are complex and may have risks such as privilege escalation and suspicious downloads. These can be monitored, detected, and responded to by new features being added to Microsoft Sentinel, the company said.

The Microsoft Sentinel monitoring capabilities for SAP will be generally available with a six-month free promotion starting this month, and billing will start on February 1, 2023, as an add-on charge to the existing Microsoft Sentinel consumption-billing model, Microsoft said.

TECH NEWS RELATED

#a11yTO Gaming accessibility conference returns to Toronto this month

Developers from the likes of Ubisoft and Eidos Montreal will be in attendance to discuss the importance of accessibility of gaming

View more: #a11yTO Gaming accessibility conference returns to Toronto this month

Identity Theft Monitoring Offered to Microsoft 365 Consumer Users

Microsoft this week announced that a new Identity Theft Monitoring service is available to U.S. subscribers to the Microsoft 365 Personal or Microsoft 365 Family editions. The Identity Theft Monitoring service can be downloaded as an app from the “Microsoft, Google, and Apple app stores” or MacOS users can ...

View more: Identity Theft Monitoring Offered to Microsoft 365 Consumer Users

Every Xbox console, and when they released

Image via Microsoft Microsoft has been in the console business for far longer than most gamers will remember, starting with the original Xbox into its current lineup bringing PC and console users together. From the original Halo to purchasing seemingly every studio on the market, Microsoft has had a ...

View more: Every Xbox console, and when they released

7 Best Ways to Fix Netflix Error Code: M7053-1803

Do you keep running into error code M7053-1803 while attempting to play TV shows or movies on Netflix? It’s an issue with Chromium-based browsers like Google Chrome, Microsoft Edge, and Opera. Learn how to fix Netflix error code M7053-1803 on PC and Mac. For several reasons, Netflix tends to throw ...

View more: 7 Best Ways to Fix Netflix Error Code: M7053-1803

Learn Where Are Minecraft Worlds Saved

Minecraft is an extremely popular game. It can be played on a laptop, PC, Xbox, and android mobile. You will build many worlds in Minecraft and save them in different locations.  You can’t remember the exact location of Minecraft saves folder. If you want to open the world you built, ...

View more: Learn Where Are Minecraft Worlds Saved

10 Fixes: Sims 3 Keeps Crashing

Sims 3 allows you to experience the virtual world of games. Many users love this game. Many users face Sims 3 keeps crashing issues. Sometimes it will frustrate you in the middle of the game. We have got you covered. This article provides you with the reason and the solutions ...

View more: 10 Fixes: Sims 3 Keeps Crashing

Instructions on how to set screen timeout in Windows 10

Looking for a way to change the display time and idle screen? Please refer to the following article of GhienCongList about how to set screen time to wait in Windows 10. You are using the Windows 10 operating system and have just learned about the standby screen feature, so you ...

View more: Instructions on how to set screen timeout in Windows 10

13 Fixes For Limited Internet Connection

Have you ever encountered a situation where you connect your device to the internet, but it doesn’t work? It happens in the case of a limited internet connection. A limited internet connection is pretty much self-explanatory. It usually takes place because of a poor connection. In this case, you can’t ...

View more: 13 Fixes For Limited Internet Connection

How To Convert Excel Files To PDF

How to Fix Something Went Wrong Outlook Error

What is multi-factor authentication, and how should I be using it?

How to Fix Battery Drain Issues in Windows

More Death Stranding 2 rumors surface, game is in development under codename "Ocean"

20 Years Later, Canceled Dune Game Resurfaces On Steam With A New Name

Best free Music Players for Windows 11/10 PC

Instructions on how to set the date and time on Windows 10 computers

The Windows 11 2022 Update could slow down file transfers by 40%

Overwatch 2 PC requirements: minimum and recommended specs

How to install Win 11 leak, install Win 11 dev preview to experience soon

Xbox Game Pass Adds A Plague Tale: Requiem, Chivalry 2, and More in October

OTHER TECH NEWS

Top Car News Car News