Microsoft Defender for Cloud

As the security solutions get better at detecting attacks, attackers are increasingly employing stealthier methods to avoid detection.

In my recent conversations with customers, they have shared the security challenges they are facing on-premises. These challenges include recruiting and retaining security experts, quickly responding to an increasing number of threats, and ensuring that their security policies are meeting their compliance requirements.

Attackers commonly target open ports on Internet-facing virtual machines (VMs), spanning from port scanning to brute force and DDoS attacks. In case of a successful brute force attack, an attacker can compromise your VM and establish a foothold into your environment.

Securing your resources is important, which is why we’ve made it even simpler for you to do. Azure Security Center is now generally available in the subscription experience.

Migrating your workloads to the cloud can enable some inherent security benefits.

Security threats increase in volume and sophistication every day. And regardless of your organization’s size or the industry you’re in, Azure Security Center threat detection capabilities, alerts, and recommended fixes can give you the tangible data you need to help protect your cloud resources.

In-memory attacks are on the rise and attracting increasing attention. In this post, we will describe two in-memory attack techniques and show how these can be detected using Sysmon and Azure Security Center.

Over the last couple days there has been a lot of public discussion about a current ransomware attack known as WannaCrypt.  This malware has caused customer pain and concern.

The Azure Security Center (ASC) analysts team reviews and investigates ASC alerts to gain insight into security incidents affecting Microsoft Azure customers, helping improve Azure Security alerts…