Sean_Wasonga

How MDTI Helps Power Security Copilot

Today’s cybersecurity challenges mandate that security teams invest more in high-quality threat intelligence to understand the mechanics of sophisticated attacks led by cybercriminals, nation-state actors, and others. With the introduction of Microsoft Security Copilot, security professionals can use Generative AI to quickly understand the full scope of attacks, anticipate the next steps of an ongoing […]

How MDTI Helps Power Security Copilot Continue Reading

How MDTI Helps Power Copilot for Security

Today’s cybersecurity challenges mandate that security teams invest more in high-quality threat intelligence to understand the mechanics of sophisticated attacks led by cybercriminals, nation-state actors, and others. With the introduction of Microsoft Copilot for Security, security professionals can use Generative AI to quickly understand the full scope of attacks, anticipate the next steps of an

How MDTI Helps Power Copilot for Security Continue Reading

Enriching Anomali and Other TIPS with MDTI Feeds

Prerequisites Introduction Ever-evolving cloud computing innovations have provided immeasurable benefits to individuals and businesses by publicly making technology available. Unfortunately, cybercriminals exploit this availability using a wide range of digital infrastructure to commit their attacks. With this growing digital landscape, cyber criminals continuously change their tooling’s ‘what, how, and where’ to align with their goals

Enriching Anomali and Other TIPS with MDTI Feeds Continue Reading

Unleash the Power of Threat Intel: Introducing the MDTI GitHub

We are excited to announce that the Microsoft Defender Threat Intelligence (MDTI) team has launched our official GitHub Community. There, we share technical solutions with customers to help the SOC maximize Microsoft Threat Intelligence in MDTI for a wide range of common incident response and threat hunting scenarios. In this blog post, we’ll explore how

Unleash the Power of Threat Intel: Introducing the MDTI GitHub Continue Reading

What’s New: MDTI Interoperability with Microsoft 365 Defender

Microsoft Defender Threat Intelligence (MDTI) helps streamline security analyst triage, incident response, threat hunting, and vulnerability management workflows, aggregating and enriching critical threat information in an easy-to-use interface. At Microsoft Secure, we announced new features, including that MDTI is now available to licensed customers within the Microsoft 365 Defender (M365 Defender) portal, placing its powerful

What’s New: MDTI Interoperability with Microsoft 365 Defender Continue Reading

What’s New: MDTI Microsoft Sentinel Playbooks

Microsoft Defender Threat Intelligence (MDTI) now has new ways to boost interoperability and help the SOC punch above its weight by responding to threats at scale. During Microsoft Secure, we introduced capabilities that help enterprise users power up automation with Microsoft Defender Threat intelligence, including an API and Microsoft Sentinel Playbooks. These new playbooks will enable

What’s New: MDTI Microsoft Sentinel Playbooks Continue Reading

Performing a Successful Proof of Concept (PoC)

So, you are ready to use Defender Threat Intelligence to uncover threat actors at scale and enhance your security operations. Defender Threat Intelligence can help identify and eliminate modern threats and their infrastructure with dynamic threat intelligence by applying the following capabilities: Identify attackers and their tools. Accelerate detection, incident response, investigations, and remediation. Enhance

Performing a Successful Proof of Concept (PoC) Continue Reading

Defender for Cloud and Defender for Threat Intelligence are Better Together

Organizations today face the continually changing and complicated task of protecting their ever-expanding attack surface from cyber-attacks. The move to the Cloud and remote workspaces has pushed the boundary of their digital ecosystem well beyond their traditional physical network. Data, users, and systems are in multiple locations, creating significant challenges for security operations teams tasked

Defender for Cloud and Defender for Threat Intelligence are Better Together Continue Reading

Defender for Cloud and MDTI are Better Together

Organizations today face the continually changing and complicated task of protecting their ever-expanding attack surface from cyber-attacks. The move to the Cloud and remote workspaces has pushed the boundary of their digital ecosystem well beyond their traditional physical network. Data, users, and systems are in multiple locations, creating significant challenges for security operations teams tasked

Defender for Cloud and MDTI are Better Together Continue Reading