SIEM

53 articles

Dive into the nuances of Security Information and Event Management systems. Understand their role in real-time analysis of security alerts, threat detection, and the importance of timely and informed responses to potential breaches.

EDR SecOps SIEM XDR

Chinese Threat Actor Storm-0940 with CoverNetwork-1658 Detections and Mitigations

Storm-0940 targets USA election security with credential theft attacks. Key detection and mitigation guidance provided to support defenders.

SecOps SIEM XDR

Midnight Blizzard Spear-Phishing Campaign

Midnight Blizzard is conducting targeted spear-phishing with malicious RDP files. Learn key detection and mitigation measures to strengthen your defenses.

SecOps SIEM

Microsoft Sentinel Schema Mapping for SIEM Migration Experience

Schema mapping and new features simplify migrating from Splunk to Microsoft Sentinel for streamlined analytics and improved SecOps.

Announcement SecOps SIEM XDR

Announcing the Launch of the Microsoft Incident Response Ninja Hub!

Microsoft’s Incident Response Ninja Hub offers threat-hunting guides, best practices, and real-world insights to empower security teams and leaders.

1 min to read
Announcement SecOps SIEM

Introducing the Microsoft Sentinel Pre-Purchase Plan

Maximize your security savings with the Microsoft Sentinel Pre-Purchase Plan, offering discounts on Sentinel Commit Units for seamless cost management.

2 mins to read
Comparisons SecOps SIEM

Introducing the New Auxiliary Logs Retention Plan in Microsoft Sentinel

Explore Microsoft Sentinel’s Auxiliary Logs retention plan, designed for cost-efficient management of secondary security data, offering 30-day retention and long-term storage.

2 mins to read
AI & Copilot Data Security EDR IAM Multi-Cloud Network Security SecOps SIEM Tech XDR

Executive Update: Visual Guide to Microsoft’s Key Security Highlights

Discover the streamlined overview of Microsoft's security ecosystem, highlighting key components and portfolios in the updated executive version of my infographic.

SecOps SIEM XDR

Microsoft AI-powered Unified SecOps: Microsoft Sentinel Integration in GA

Microsoft Sentinel's integration into Defender XDR unifies security operations, enhancing detection, response, and efficiency.

SecOps SIEM XDR

Enhancing Threat Detection with Custom Detections in the Unified Microsoft Defender Portal

Unify Microsoft Sentinel and Defender XDR data with Custom Detections in the Defender portal, enhancing threat detection and simplifying advanced hunting operations.