CSOonline

How to use Microsoft Sysmon, Azure Sentinel to log security events

Microsoft's Sysmon and Azure Sentinel are easy and inexpensive ways to log events on your network. Here's how to get started with them. Logging is the key to knowing how the attackers came in and how ...
Virtualization Review

Housecleaning in Microsoft Azure -- You Need To Do It!

We've all seen this before, and with the newest cloud platforms, we need to think about housecleaning. I can distinctly remember cleaning up file shares 15 years ago. I also remember (and still find ...
ZDNet

Microsoft: Azure-based Sentinel security gets new analytics to spot threats in odd behavior

One year on from reaching general availability, Microsoft's Azure-based Sentinel security system now brings new user and entity behavioral analytics to help detect unknown and insider threats faster.
Bleeping Computer

CISA releases Azure, Microsoft 365 malicious activity detection tool

The Cybersecurity and Infrastructure Security Agency (CISA) has released a PowerShell-based tool that helps detect potentially compromised applications and accounts in Azure/Microsoft 365 environments ...
Bleeping Computer

Microsoft Adds Azure AD Sign-In History to Detect Unusual Activity

Microsoft announced the addition of an Azure Active Directory (AD) sign-in history feature that would allow users to get an overview of past sign-ins and quickly detect any unusual login activity.
Microsoft

Inside the attack chain: Threat activity targeting Azure Blob Storage

Azure Blob Storage is a high-value target for threat actors due to its critical role in storing and managing massive amounts ...