View profile

Microsoft Sentinel this Week - Issue #78

Microsoft Sentinel this Week
Microsoft Sentinel this Week - Issue #78
By Rod Trent • Issue #78 • View online
Hi everyone,
My name is Andrea Fisher. I’m a security specialist at Microsoft and Mr. Trent has kindly allowed me to pinch hit for him this week. Thanks for letting me join this fellowship of cybersecurity fans. I hope Rod is off enjoying his vacation right now but I’m willing to bet he’s still keeping up on his emails and checking in on me as you read this.
We recently dropped off my nephew at college (hi Carter!) and since he has always been my go-to person to watch sci-fi and fantasy shows with, I’m a little bereft. I have no one to talk to about House of the Dragon, The Sandman or The Rings of Power. Is anyone out there watching?
Don’t worry, Rod will be back soon but I hope you enjoyed my version of the newsletter this week!
Want to stay up-to-date with what is going on for the Microsoft Security Insights show? Follow our Page for the latest updates.
YAMS - Yet another Microsoft Survey
Microsoft Threat Experts for Cloud is a proactive threat hunting pilot program that hunts for threats in the cloud infrastructure (IaaS and PaaS) of participating customers. It covers Azure and AWS and will expand to Google Cloud Platform soon.
Threat hunters will look for signs of active threats that have evaded controls and detections in data. We use signals from across all cloud services, bring unique Microsoft/MSTIC internal TI knowledge, and identify early stages of attacks based on wide optics into industry segments, nation state attack patterns, and threat actor tracking. We’d love your feedback if this is something that interests you.

Stuff to Read
Use UEBA in Microsoft Sentinel to your advantage - Cloudbrothers
Improving your security baseline with KQL – Microsoft Sentinel 101
Behind the Scenes: The ML Approach for Detecting Advanced Multistage Attacks with Sentinel Fusion - Microsoft Tech Community
Stuff to Watch/Listen To
Kusto Query Language (KQL) Overview
Microsoft Sentinel vs Splunk - What SIEM should i choose?
What Is Azure Sentinel? A Complete Overview
Stuff to Attend
Microsoft Ignite - Join us on October 12-14
Stop Ransomware with Microsoft Security 2022 - Home - Home
Stuff That's New or Updated
Microsoft Sentinel service limits | Microsoft Docs
Stuff That's Related
The art and science behind Microsoft threat hunting: Part 1 - Microsoft Security Blog
Stuff from Partners
What is SIEM as a Service? Managed SIEM Overview | Difenda
Stuff in the News
Vulnerability Exploits, Not Phishing, Are the Top Cyberattack Vector for Initial Compromise
Stuff to Have
Azure SQL Queries
AS-Compromised-Machine-Tagging
Did you enjoy this issue?
Rod Trent

The Microsoft Sentinel weekly newsletter helps uncover the new and important features and news for Microsoft's cloud-based SIEM+SOAR security tool.

In order to unsubscribe, click here.
If you were forwarded this newsletter and you like it, you can subscribe here.
Powered by Revue