CSOonline

How to use Microsoft Sysmon, Azure Sentinel to log security events

Microsoft's Sysmon and Azure Sentinel are easy and inexpensive ways to log events on your network. Here's how to get started with them. Logging is the key to knowing how the attackers came in and how ...
CSOonline

Why you need activity logging in Microsoft 365 and how to get it

A Chinese hacker’s intrusion though a US government Microsoft 365 account is a wake-up call to review your current logging stance. Sandwiched into the same day that Microsoft announced the rebranding ...
ZDNet

Microsoft: Azure-based Sentinel security gets new analytics to spot threats in odd behavior

One year on from reaching general availability, Microsoft's Azure-based Sentinel security system now brings new user and entity behavioral analytics to help detect unknown and insider threats faster.
ZDNet

If you're having problems with Microsoft Azure AD today, this is probably what's causing it

Just a day after Microsoft announced its new Entra cloud identity services portfolio, one of Entra's core products suffered wobbly performance for more than 12 hours. Microsoft warned that users of ...
Virtualization Review

Housecleaning in Microsoft Azure -- You Need To Do It!

We've all seen this before, and with the newest cloud platforms, we need to think about housecleaning. I can distinctly remember cleaning up file shares 15 years ago. I also remember (and still find ...
MCPmag

Microsoft Previews New Azure Security and Management Tools

Microsoft highlighted a couple of Azure tools, including Just-in-Time VM Access, this week. The tools are currently at the preview stage. There's a new Just-in-Time VM Access capability at the "public ...

Permiso launches open-source P0LR Espresso to normalize cloud logs for faster threat response

The tool seeks to assist with the issue whereby security practitioners have long been hindered by vendor-specific log formats. Amazon Web Services Inc., Google Cloud Platform, Microsoft Azure, Okta ...