At the Microsoft Ignite 2024 event, Microsoft announced several security updates, including the availability of a security exposure management tool, a new $4 million bounty, new security updates, and skills for Copilot.
“At Microsoft, we remain steadfast in our commitment to security, which remains our top priority,” Microsoft said in the release document. “Through the Secure Future Initiative (SFI), we have committed the equivalent of 34,000 full-time engineers to this effort, making it the largest cybersecurity engineering project in history,” Microsoft added.
Security exposure management is now available
Microsoft has announced the availability of a new security exposure management tool. The tool integrates Microsoft Defender products to provide a unified view of an organization's security posture and help organizations assess security threats. Microsoft has released supporting technical documentation that delves into the tool's features and capabilities.
The tool also helps users identify critical assets for security prioritization and provides various controls to manage them. It also provides data security insights and context, including events, recommendations, metrics, and initiatives. Microsoft is also said to show the user “attack paths,” which show how an attacker could compromise your data.
As mentioned earlier, Microsoft's Security Exposure Management tool essentially provides a unified platform that consolidates data from different sources in your organization.
Microsoft also stated that one of the primary motivations behind the platform is the user's lack of understanding of the relationship between data “paths” and “entities” across their systems or devices.
“Defenders think in lists, and cyberattackers think in graphs. As long as that's true, the attackers win,” said John Lambert, a security fellow at Microsoft and vice president of the Information Security Office (CISO), referring to how bad actors often exploit The relationship between data entities and devices.
Microsoft also reported that customers are using Exposure Management in more than 70,000 cloud tenants. The Security Exposure Management tool is available in the Microsoft Defender portal.
New $4 million bug bounty
Furthermore, Microsoft also announced a $4 million bounty for AI and cloud security bugs called “Zero Day Quest.” The hacker bounty is directed at researchers who want to investigate important vulnerabilities, especially in the cloud and artificial intelligence.
“Zero Day Quest will provide new opportunities for the security community to work alongside Microsoft engineers and security researchers – bringing together the best minds in security to share, learn, and build community as we work to keep everyone safe,” Microsoft said. In the ad.
Updates to Security Assistant
Microsoft also announced new skills and security updates for Copilot AI. Using Copilot in Purview, administrators will now be able to perform accurate risk analyzes across their data estate. Furthermore, Microsoft also announced the availability of Security Copilot within Microsoft Entra, which is now available for preview.
Source: Microsoft Ignite 2024 event
Microsoft also announced more Copilot capabilities in Intune, which are available in preview. Feature expansions include capabilities to investigate application upgrade details and identify signs of compromised applications before approving Endpoint Privilege Management requests.
Copilot is also set up to help create KQL queries for single and multi-device analysis. Within Intune, Copilot can also facilitate update management using Windows Autopatch, allowing it to support all essential update tasks.
Copilot also offers improvements to SOC (security operations center) teams, including a new identity summary to faster identify user threats. Moreover, more than 15 new third-party plugins, including CrowSec, Netskope, CyberArk, etc., are available within Copilot.
Interestingly, Microsoft also reported that security teams saw a 30% reduction in time to resolve issues using Security Copilot and a 17% reduction in breaches.
(total 186 views)
