September 2020 - Jeffrey Appel - Microsoft Security blog

Collect Microsoft Teams activity in Azure Sentinel and start hunting

Azure Sentinel is a cloud-native security information and event management platform. (SIEM). Sentinel uses AI to analyze large volumes of data. Azure Sentinel is developed based on existing Azure services. Log Analytics and Logic apps are part of the foundation. …

Jeffrey, September 29, 2020 0 6 min read

Security

Microsoft Endpoint Data Loss Prevention: Blokkeren van USB bestandstransfers

Databeveiliging en classificatie is belangrijk. Een datalek via een verkeerde aanzender of toegang tot externe databronnen is snel gemaakt, waardoor er vervolgens geen mogelijkheid en controle is op de data. In de huidige tijd is de beveiliging van data belangrijk. …

Jeffrey, September 23, 2020 0 7 min read

Security

Inzicht in Brute-force & Password spray attack via Azure Sentinel

Azure Sentinel is een cloud-native Security Information Event Management-oplossing, ook wel bekend als een SIEM-oplossing. Azure Sentinel is cloud-native ontwikkeld op het schaalbare Azure platform en maakt gebruik van meerdere bestaande Azure services. In dit blog een toelichting over de…

Jeffrey, September 10, 2020 0 6 min read

Recent Posts

Automatic attack disruption in Microsoft Defender XDR and containing users during Human-operated Attacks

Pivot via OAuth applications across tenants and how to protect/detect with Microsoft technology? (Midnight blizzard)

Protect against QR Code phishing with Microsoft Defender products

How to use deception in Microsoft Defender for Endpoint/ Defender XDR

How to protect Microsoft Teams with Microsoft 365 Defender

Common mistakes during Microsoft Defender for Endpoint deployments

How to use Automatic Attack Disruption in Microsoft 365 Defender (BEC, AiTM & HumOR)

Month: September 2020

Collect Microsoft Teams activity in Azure Sentinel and start hunting

Microsoft Endpoint Data Loss Prevention: Blokkeren van USB bestandstransfers

Inzicht in Brute-force & Password spray attack via Azure Sentinel

Microsoft MVP

MDE blog series

Supporting this blog

Latest topics

Automatic attack disruption in Microsoft Defender XDR and containing users during Human-operated Attacks

Pivot via OAuth applications across tenants and how to protect/detect with Microsoft technology? (Midnight blizzard)

Protect against QR Code phishing with Microsoft Defender products

How to use deception in Microsoft Defender for Endpoint/ Defender XDR

How to protect Microsoft Teams with Microsoft 365 Defender

Common mistakes during Microsoft Defender for Endpoint deployments

Automatic attack disruption in Microsoft Defender XDR and containing users during Human-operated Attacks

Pivot via OAuth applications across tenants and how to protect/detect with Microsoft technology? (Midnight blizzard)

Protect against QR Code phishing with Microsoft Defender products

How to use deception in Microsoft Defender for Endpoint/ Defender XDR

How to protect Microsoft Teams with Microsoft 365 Defender

Common mistakes during Microsoft Defender for Endpoint deployments

Today's pick

Latest

Popular

Automatic attack disruption in Microsoft Defender XDR and containing users during Human-operated Attacks

Pivot via OAuth applications across tenants and how to protect/detect with Microsoft technology? (Midnight blizzard)

Protect against QR Code phishing with Microsoft Defender products

How to use deception in Microsoft Defender for Endpoint/ Defender XDR

Fast response with Azure AD Continuous Access Evaluation (CAE) and Conditional Access

Downloads blokkeren via Conditional Access App Control vanuit Microsoft Endpoint Manager

Android Enterprise fully managed beschikbaar in Microsoft Intune voor zakelijke omgevingen

Android Enterprise via Microsoft Endpoint Manager als vervanger van Android device administrator