Our Latest News

Understanding Microsoft Teams Data Schema in Azure Sentinel – Analyst / Researcher View

Understanding Microsoft Teams Data Schema in Azure Sentinel – Analyst / Researcher View

Millions of people are using Microsoft Teams as their secure, productive and mobile collaboration & communication tool, today @Pete Bryan from Microsoft Threat Intelligence Center and @Hesham Saad  from Microsoft CyberSecurity Global Black Belt will detail Microsoft Teams schema and data structure in Azure Sentinel so let's get started!   Microsoft Teams now has an official connector at Azure Sentinel:     [...]

Auditing Azure Sentinel activities

Auditing Azure Sentinel activities

Many customers require the ability  to audit what happens in their SOC environment for both internal and external compliance requirements . It is important to  understand the who/what/when’s of activities within your Azure Sentinel instance. In this blog, we will explore how you can audit your organization’s SOC if you are using Azure Sentinel and [...]

Enriching Windows Security Events with Parameterized Function

Enriching Windows Security Events with Parameterized Function

  Overview   Monitoring Windows Security Auditing logs is essential in helping SOC analysts to keep track of any unplanned changes in a computer's system audit policy settings. If there is an indication of a suspicious anomalous activity, an investigation needs to be performed as soon as possible. Hence, the ability to analyze collected Windows [...]

Additional certificate updates for Azure Sphere

Additional certificate updates for Azure Sphere Microsoft is updating Azure services, including Azure Sphere, to use intermediate TLS certificates from a different set of Certificate Authorities (CAs). These updates are being phased in gradually, starting in August 2020 and completing by October 26, 2020. This change is being made because existing intermediate certificates do not [...]

Leveling-up Local Experiment Runs with the VS Code AML Extension

Leveling-up Local Experiment Runs with the VS Code AML Extension

Hey AzML community! The VS Code team is excited to announce version 0.6.15 of the AzML extension, with a brand new way for you to validate your scripts, environments, and datasets before submitting to a remote cluster.   If you'd like to follow along with the blog post and try out the new features, you can install the extension here!   Gaining confidence in your experiment runs Experiencing a sense of worry or anxiety when submitting a remote experiment is common and expected. It's hard to predict how the training script you've been working very hard on is going to behave once it runs on your remote target. Many of you have expressed pain in not: Knowing whether the environment you want to use will correctly work with your training script. Knowing whether your datasets are materialized and being referenced correctly. Having the confidence to submit your remote experiment and context-switch to another project [...]

97 Azure Government services now authorized for DoD IL5 workloads

As we continue to drive expansion of support for Department of Defense Security Requirements Guide (DoD SRG) Impact Level 5 (IL5) to all Azure Government regions, we recently announced the addition of 18 new services for a total of 97 services authorized for IL5 workloads in Azure Government – more than any other cloud provider.   These [...]

Recapping Ignite with the five biggest Visio updates

Recapping Ignite with the five biggest Visio updates

Visio was well-represented at this year’s first-ever all-digital Microsoft Ignite. We hosted six sessions that covered a variety of product topics, from recently released features to our vision for the coming months.   Of everything we discussed, there are five updates we’re particularly excited about. We’ve (briefly) recapped those here and will post additional details [...]

Announcing the AzureRM to Az PowerShell Module Migration Toolkit

Announcing the AzureRM to Az PowerShell Module Migration Toolkit

As many of you know, all versions of the AzureRM PowerShell module are outdated, but not out of support (yet). The Az PowerShell module is now the recommended PowerShell module for interacting with Azure. We asked our customers what was keeping them from migrating from AzureRM to the Az PowerShell module. Most of the responses [...]