Or Tsemah

This is the deal

Microsoft Defender XDR (aka Microsoft Defender for Cloud Apps?), User Investigation > "Identity Timeline" is by far the most helpful tool to use in a forensic investigation of a cloud account takeover event outside of PowerShell tools like Hawk. #timeline" target="_blank" rel="nofollow noopener">learn.microsoft.com/en-us/microsof…

A satire show in Israel deservedly mocks the BBC again and the disingenuous calls for ceasefire. Wait until the end, it’s worth it. 😂

Just to highlight how much of a laughing stock the BBC is now, an Israeli satirical programme made fun of them and it’s pretty spot on.

For the fifth year in a row, Microsoft Defender 365 achieved industry-leading results in the @MITREengenuity ATT&CK® Evaluations: Enterprise. See how its XDR capabilities responded to an emulated attack from threat group Turla: msft.it/601299LHi #XDR

💡Now you can download and schedule periodic Defender for Identity reports 📊 from the Microsoft 365 Defender portal, creating parity in report functionality with the classic Defender for Identity portal. Go to Settings > Identities > Report management #CyberSecurity #infosec

So happy that all our hard work on #ITDR is coming to fruition...

@DebugPrivilege @JosephRyanRies BTW, you'll find a nice suprise in the newest sensor version. #defender-for-identity-release-2201" target="_blank" rel="nofollow noopener">learn.microsoft.com/en-us/defender…

🥷

@DebugPrivilege @JosephRyanRies We are currently exploring alternatives for the 1644 event auditing requirement. You can follow the product's "What's new" section at learn.microsoft.com/en-us/defender… to stay up-to-date on when it becomes available.

The new #MDI alert type "Suspicious certificate usage over #Kerberos protocol (#PKINIT)" detects misuse of certificates in your #AD environment. For additional information check out the release blog #ADCS #Security techcommunity.microsoft.com/t5/security-co…

Microsoft’s security arm is now a $20-billion-per-year business- that’s double the $10 billion per year seen in 2021, and up from the $15 billion it brought in in 2022 finance.yahoo.com/news/microsoft…

Unified RBAC support for Defender for Identity techcommunity.microsoft.com/t5/microsoft-3… #DefenderForIdentity

Using Defender for Identity #MDI and getting sensor issues after the November patch install? Make sure the newly released patches are installed. The previous November 8, 2022 update gives issues with Kerberos authentication. 2022: KB5021656 2019: KB5021655 2016: KB5021654

Defender for Identity (MDI) Active Directory Federation Services sensor, protects the AD FS infrastructure and alert security teams to AD FS-based threats to defend hybrid identity configurations. Blog 👇🏻 techcommunity.microsoft.com/t5/microsoft-3…

Test your environment for the different configurations needed for Microsoft Defender for Identity using the Test-MdiReadiness.ps1 script github.com/microsoft/Micr… #mdi #defenderforidentity #m365d

@el_jasoon As this experience is currently sourced from the MDA portal convergence, make sure you are using an account that has sufficient MDA privileges or equivalent Azure AD role to access the portal.

In the Microsoft 365 security portal (security[.]microsoft[.]com), if I have a Defender for Identity subscription, shouldn't I see both Device and Identity assets? I'm almost positive that I used to see them, but I don't, anymore.

Another short video on user remediation in hybrid environments by using Microsoft Defender for Identity youtube.com/watch?v=tpTJiJ…