Security News > 2020 > February > Cloud computing security: These two Microsoft tools can help you battle shadow IT
Finding what cloud services employees are using is half the battle-integrating Microsoft Cloud App Security and Defender Advanced Threat Protection lets you track, block, or audit cloud app usage.
Microsoft Cloud App Security now includes a shadow IT discovery tool that integrates with Defender ATP to discover cloud app and service usage on any managed device.
Niv Goldenberg, principal group PM manager for cloud security, compares it to a flight recorder: the data is stored for six months in your cloud tenant, so you can go back and audit which files were accessed and what happened to the data if you need to do an investigation, which is an additional layer of protection even for approved cloud applications.
"We see new URLs and new IPs and we can tell if this is a new application, a new signature for an existing application or something that's not actually a cloud application," says Goldenberg.
Dashboards show which applications are used and how widely, and what percentage of usage is approved applications versus shadow IT. You'll also get an alert if vulnerabilities are found in cloud apps that your employees are using.
News URL
Related news
- Microsoft security tools questioned for treating employees as threats (source)
- Misconfigurations and IAM weaknesses top cloud security concerns (source)
- Scout Suite: Open-source cloud security auditing tool (source)
- Evolve your cloud security knowledge (source)
- Microsoft patches scary wormable hijack-my-box-via-IPv6 security bug and others (source)
- Microsoft patches scary wormable hijack-my-box-via-IPv6 security bug and others (source)
- Microsoft disables BitLocker security fix, advises manual mitigation (source)
- Uniting the brightest minds in security, network and cloud (source)
- Microsoft hosts a security summit but no press, public allowed (source)
- Microsoft Is Disabling Default ActiveX Controls in Office 2024 to Improve Security (source)