Security News > 2020 > May > Microsoft Open-Sources COVID-19 Threat Intelligence
Microsoft this week announced that it has made some of its COVID-19 threat intelligence available to the public.
The number of attacks targeting organizations and individuals worldwide using coronavirus lures has increased dramatically over the past several months, and Microsoft says it wants to help even those who do not use its threat protection solutions.
Microsoft Threat Protection can already keep customers safe from the threats identified by these indicators, but those who do not use the solution are not protected.
The indicators were made available both in the Azure Sentinel GitHub repo, and through the Microsoft Graph Security API. Enterprise customers that use MISP for storing and sharing threat intelligence can leverage these indicators via a MISP feed.
"This threat intelligence is provided for use by the wider security community, as well as customers who would like to perform additional hunting, as we all defend against malicious actors seeking to exploit the COVID crisis," Microsoft says.
News URL
Related news
- Suricata: Open-source network analysis and threat detection (source)
- US Government, Microsoft Aim to Disrupt Russian threat actor ‘Star Blizzard’ (source)
- How open source SIEM and XDR tackle evolving threats (source)
- 5 Techniques for Collecting Cyber Threat Intelligence (source)
- U.S. Government Issues New TLP Guidance for Cross-Sector Threat Intelligence Sharing (source)
- ScubaGear: Open-source tool to assess Microsoft 365 configurations for security gaps (source)