View profile

Microsoft Defender Weekly Wrap - Issue #51

Microsoft Defender Weekly Wrap
Microsoft Defender Weekly Wrap - Issue #51
By Microsoft Defender Weekly Wrap • Issue #51 • View online
Happy Friday all!
I’m just a couple days away from my next big trip, so this past week has been all about session prep and getting the travel ducks all in a row. And that actually means making sure all my charging cables are packed and I have some movies and books downloaded to watch and read on the plane ride.
I’ll be in Orlando, Florida all next week for TechMentor/Live!360. Thankfully, my trip will be just after the most recent tropical storm subsides. The weather forecast for next week looks phenomenal.
If you remember from earlier this year, I was at the TechMentor event in Redmond on the Microsoft campus. This is an extension of that event. If you’re reading this and you happen to also be there next week, come find me. It would be great to shake hands. Also, if you happen to have a physical copy of the Must Learn KQL book, bring it along. I’ll be happy to sign in. And, if you don’t have a copy and want one, I’ll have a stack of signed books to give away during my sessions.
This week, we’d love if you could participate in the following survey to help us continue to build a better product.
Pull Request Annotations in Defender for DevOps
Our Defender for DevOps team would like your feedback on the Pull Request annotations feature.
Defender for DevOps exposes security findings as annotations in Pull Requests (PR). Security operators can enable PR annotations in Microsoft Defender for Cloud. Any exposed issues can then be remedied by developers. This process can prevent and fix potential security vulnerabilities and misconfigurations before they enter the production stage. Defender for DevOps annotates the vulnerabilities within the differences in the file rather than all the vulnerabilities detected across the entire file. Developers are able to see annotations in their source code management systems and Security operators can see any unresolved findings in Microsoft Defender for Cloud.
Speaking of Must Learn KQL, the seasonal holiday editions of everything in the merch store are now available. And there’s new stuff, too. Here’s what’s available:
[1] The ever-popular holiday coffee cup is back for the season! https://rodtrent.com/e89
[2] There’s a seasonal KQL song! Yes, a song. And it’s brandished on three different styles of long sleeve t-shirt:
[3] And, then there’s my new absolute favorite (I’ll be wearing this at TechMentor next week!), the KQL'Ling t-shirt: https://rodtrent.com/dyz
As always, all profit from the Must Learn KQL merch sales goes directly to St. Jude Children’s Research Hospital. So, you can feel good about getting yourself something (and your geeky loved ones) and helping others at the same time.
That’s it from me for this week.
Talk soon.
-Rod

Things that are Related
Webbrowser-based phishing technique
Listen to Episode 1 – What's new in Cloud Security from Microsoft Ignite 2022 by Atos in Head Securely in the Clouds playlist online for free on SoundCloud
Things in Techcommunity
Documenting portal configuration settings - Microsoft Community Hub
2 factor for allowing unsigned apps to be installed? - Microsoft Community Hub
MDE unified solution for servers - Microsoft Community Hub
Things in the News
Microsoft Defender Experts for Hunting demonstrates industry-leading protection in the 2022 MITRE Engenuity ATT&CK® Evaluations for Managed Services
Defender for Cloud Things
VIDEO: Demystifying Microsoft Defender for Servers
VIDEO: New Contextual CSPM a Context-Aware Security Intelligence
VIDEO: Cloud security explorer and Attack path analysis | Defender for Cloud in the Field #20
DOCS: Connect your GCP project to Microsoft Defender for Cloud | Microsoft Learn
Defender for Endpoint Things
BLOG: Defender for Endpoint - Implementing ASR Rules
BLOG: Microsoft Defender for Endpoint series – Attack Surface reduction and additional protection – Part4B  
BLOG: Initial Access - Attacking and Defending MDE
BLOG: Intune app protection: Migrating between Mobile Threat Defense solutions - Microsoft Community Hub
Defender for IoT Things
BLOG: How to setup a PoC for Defender for IoT Part I
BLOG: Highlighting IoT/OT Security in the 2022 Microsoft Digital Defense Report - Microsoft Community Hub
365 Defender Things
BLOG: Announcing Software Usage Insights in public preview - Microsoft Community Hub
BLOG: Investigate incidents more effectively with the new attack story view in Microsoft 365 Defender
Defender for Business Things
BLOG: Server security made simple for small businesses
Microsoft Entra Things
PODCAST: Onboarding internal Microsoft Subscriptions to Entra Permissions Management | The Microsoft 425Show
BLOG: Embrace and Secure Multicloud with Entra Permissions Management - Microsoft Community Hub
BLOG: Making it easier to apply and manage security settings for your users in Microsoft 365 - Microsoft Community Hub
Defender Threat Intelligence Things
BLOG: Defender TI Empowers Organizations to Get More Done With Less
Did you enjoy this issue?
Microsoft Defender Weekly Wrap

The weekly Microsoft Defender Weekly Wrap newsletter helps uncover the new and important features and news for Microsoft's Defender-branded security tools.

In order to unsubscribe, click here.
If you were forwarded this newsletter and you like it, you can subscribe here.
Powered by Revue