home.social

#mstic — Public Fediverse posts

Live and recent posts from across the Fediverse tagged #mstic, aggregated by home.social.

  1. Hey #Microsoft, this is your friendly reminder that Bloomberg and the WSJ aren't threat intel publication!

    Talking about large scale intrusions without sharing any actionable data for defenders is... well... very microsofty of y'all 🕵️
    (to be clear, I don't blame the people at #MSTIC, I'm pretty sure this is down to company policies and orientations)

  2. If y'all have not had a chance to play around with Microsoft Sentinel, I am super impressed! There are so many useful features with this tool. I'm still very early in the learning process and I've already found tons of useful data.

    Anyone have Sentinel tips for blue teamers?

    #infosec #sentinel #blueteam #mstic #security

  3. What an awesome opportunity to hear from @Cyb3rWard0g of #MSTIC on today's #ThursdayDefensive on some of the ways Microsoft approaches adversary behavior classification and the supporting data sources.

    Join us next week! reconinfosec.com/thursday-defe

  4. Zerobot is a Go-based botnet that spreads primarily through IoT and web application vulnerabilities.

    Learn how Zerobot works and how to defend devices and networks against it:

    - Use Microsoft 365 Defender as security solutions with cross-domain visibility and detection capabilities

    - Adopt a comprehensive IoT security solution such as Microsoft Defender for IoT, integrate it with XDR platform such as Microsoft Sentinel and Microsoft 365 Defender

    - Harden endpoints with a comprehensive Windows security solution

    - Ensure secure configurations for devices

    - Use least privileges access

    microsoft.com/en-us/security/b

    #microsoft #windows #security #iot #MSTIC #azure #xdr #microsoft365defender #defenderforIoT #iot #sentinel #microsoftsentinel #siem #soar #cloud #cloudsecurity #Zerobot #ssh #leastprivilege #rat #ioc #threatintelligence #ti #tip #ddos #ZeroStresser #webapp #vulnerabilities #cve

  5. #MSTIC updates out today regarding DEV-0569 / Royal #ransomware
    + DEV-0569 likely to continue malvertising and phishing for Initial Access
    + #Batloader posed as installers for TeamViewer, Zoom, and AnyDesk
    + Malvertising campaign observed leveraging Google Ads to deliver Batloader selectively
    #threatintel #infosec

    microsoft.com/en-us/security/b

  6. #MSTIC updated out today regarding DEV-0569 / Royal #ransomware
    + DEV-0569 likely to continue malvertising and phishing for Initial Access
    + #Batloader posed as installers for TeamViewer, Zoom, and AnyDesk
    + Malvertising campaign observed leveraging Google Ads to deliver Batloader selectively
    #threatintel #infosec

    microsoft.com/en-us/security/b

  7. #MSTIC updated out today regarding DEV-0569 / Royal #ransomware
    + DEV-0569 likely to continue malvertising and phishing for Initial Access
    + #Batloader posed as installers for TeamViewer, Zoom, and AnyDesk
    + Malvertising campaign observed leveraging Google Ads to deliver Batloader selectively
    #threatintel #infosec

    microsoft.com/en-us/security/b