Microsoft's August 2023 Defender Updates:

A Comprehensive Overview Microsoft's August 2023 Defender Updates

August may have ended, but Microsoft's commitment to consistently improving its Defender products has not. Last month was packed with enhancements and exciting new features across the Defender product suite. The inimitable Heike Ritter's monthly blog post offers a succinct wrap-up of all the updates. If you're too busy to comb through the details, here's a concise breakdown:

Microsoft 365 Defender:

1. Dynamic Asset Rule Management: Microsoft 365 Defender now brings dynamic rules for devices to the public preview phase. This facilitates more nimble and responsive asset configurations tailored to changing conditions.

2. Unified RBAC Expansion: Role-Based Access Control (RBAC) has broadened its horizons, ensuring that more Microsoft 365 Defender experiences are adequately governed and organized.

3. Incident Response Guide: For first-time responders, Microsoft 365 Defender portal provides robust guidelines to ensure efficient and accurate incident management.

Microsoft Security Experts:

1. Storm-0867 Chronicles: Dive deep with the Defender Experts for XDR team as they share their journey of investigating the Storm-0867 case. Get insights on how they dealt with adversary-in-the-middle (AiTM) threats tied to this incident.

2. FAQ for XDR Incident Notifications: Fresh off the press, a comprehensive FAQ section covering XDR incident notifications, offering clarity and support for users.

Microsoft Defender for Endpoint:

1. Local Data Hosting in Australia: A welcome update for Australian organizations. Microsoft Defender data can now be stored locally, ensuring compliance with regional data protection norms.

2. Mobile Device Tagging: Keep tabs on your mobile assets. Microsoft now supports device tagging for iOS and Android platforms.

3. Linux and macOS Get More Protection: Strengthening defenses for Linux and macOS with features like device isolation and AV scanning.

Microsoft Defender for Identity:

1. Extended Coverage with AD CS Sensor: Enhancing identity security, Defender for Identity has broadened its reach with a new AD CS sensor.

Microsoft Defender for Office 365:

1. Proactive "How-to guides": Reinforce your organization's security training with proactive "How-to guides" that can be sent directly via the Attack Simulation training module.

2. In-Product Guidance: A value-added feature, the new in-product guidance ensures users have on-the-spot support and guidance, enhancing user experience.

For those eager to deep-dive into the specifics,

Heike Ritter's monthly update on the Tech Community is the perfect place.

With these impressive additions, Microsoft is clearly dedicated to refining and expanding its Defender range, ensuring that businesses worldwide can enjoy heightened security layers. So, whether you’re an IT professional, a business owner, or just someone interested in cybersecurity, these updates matter.

#microsoft #siem #xdr #microsoftsecurity #soc #microsoft365