Automatic disruption of human-operated attacks through containment of compromised user accounts | allinfosecnews.com

Oct. 11, 2023, 4 p.m. | Microsoft Threat Intelligence

Microsoft Security Blog www.microsoft.com

User containment is a unique and innovative defense mechanism that stops human-operated attacks in their tracks. We’ve added user containment to the automatic attack disruption capability in Microsoft Defender for Endpoint. User containment is automatically triggered by high-fidelity signals and limits attackers’ ability to move laterally within a network regardless of the compromised account’s Active Directory state or privilege level.

The post Automatic disruption of human-operated attacks through containment of compromised user accounts appeared first on Microsoft Security Blog.

accounts a network attack attackers attacks automatic compromised containment defender defense disruption endpoint fidelity high human human-operated ransomware mechanism microsoft microsoft defender microsoft defender for endpoint network signals

More from www.microsoft.com / Microsoft Security Blog

Investigating industrial control systems using Microsoft’s ICSpector open-source framework 4 days, 20 hours ago | www.microsoft.com

blog blog post control control systems +13

5 ways a CNAPP can strengthen your multicloud security environment 5 days, 20 hours ago | www.microsoft.com

application application protection blog can +17

New Microsoft Incident Response guide helps simplify cyberthreat investigations 6 days, 20 hours ago | www.microsoft.com

blog cybersecurity cybersecurity defense cyberthreat +22

New Microsoft guidance for the DoD Zero Trust Strategy 1 week, 6 days ago | www.microsoft.com

blog cloud cloud services defense +15

Microsoft recognized as a Leader in the Forrester Wave™: Workforce Identity Platform, Q1 2024 2 weeks ago | www.microsoft.com

advanced customers forrester forrester wave +11

Microsoft Priva announces new solutions to help modernize your privacy program 3 weeks, 6 days ago | www.microsoft.com

automated beyond capabilities expansion +14

The foundation for responsible analytics with Microsoft Purview 1 month ago | www.microsoft.com

analytics announcements blog blog post +14

How Microsoft Incident Response and Microsoft Defender for Identity work together to detect and respond … 1 month, 1 week ago | www.microsoft.com

customers cybersecurity cybersecurity incident cyberthreats +14

Microsoft Threat Intelligence unveils targets and innovative tactics amidst tax season 1 month, 1 week ago | www.microsoft.com

campaigns cybercriminals engineering events +23

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations

View on infosec-jobs.com

Senior Security Engineer

@ Core10 | Nashville, Tennessee, United States - Remote

View on infosec-jobs.com

Security Operations Engineer I

@ Jamf | US Remote

View on infosec-jobs.com

IT Security ISSO Specialist (15.10)

@ OCT Consulting, LLC | Washington, District of Columbia, United States

View on infosec-jobs.com

Compliance Officer

@ Aspire Software | Canada - Remote

View on infosec-jobs.com

Security Operations Center (SOC) - AVP

@ Paytm | Noida, Uttar Pradesh

View on infosec-jobs.com