Redmond Magazine

Microsoft Graph 'Activity Logs' Feature Goes Live

Microsoft on Friday announced the general availability of the "activity logs" capability in Microsoft Graph, giving administrators more options to track user activity and, in theory, identify patterns ...
CSOonline

How to use Microsoft Sysmon, Azure Sentinel to log security events

Microsoft's Sysmon and Azure Sentinel are easy and inexpensive ways to log events on your network. Here's how to get started with them. Logging is the key to knowing how the attackers came in and how ...
Bleeping Computer

CISA releases Azure, Microsoft 365 malicious activity detection tool

The Cybersecurity and Infrastructure Security Agency (CISA) has released a PowerShell-based tool that helps detect potentially compromised applications and accounts in Azure/Microsoft 365 environments ...
CSOonline

Microsoft fails to collect critical security logs, exposing customers to risks

Microsoft has admitted that it failed to collect crucial security logs for nearly a month due to a bug, leaving enterprise customers vulnerable to cyberattacks. The issue, which occurred between ...

Permiso launches open-source P0LR Espresso to normalize cloud logs for faster threat response

The tool seeks to assist with the issue whereby security practitioners have long been hindered by vendor-specific log formats. Amazon Web Services Inc., Google Cloud Platform, Microsoft Azure, Okta ...
dbta

Darktrace / CLOUD Supports Microsoft Azure, Providing Real-Time Cloud Detection and Response

Darktrace, a global leader in AI for cybersecurity, is expanding Darktrace / CLOUD to support Microsoft Azure environments, leveraging Microsoft's virtual network flow logs for agentless deployment.