Security News > 2023 > July > Thanks Storm-0558! Microsoft to expand default access to cloud logs

Starting in September 2023, more federal government and commercial Microsoft customers will have access to expanded cloud logging capabilities at no additional charge, Microsoft and the Cybersecurity and Infrastructure Security Agency have announced on Wednesday.

Extended cloud logging defaults for lower-tier Microsoft customers.

While Microsoft still doesn't say how the attackers got their hands on the MSA consumer signing key they used to create the tokens, it has obviously realized - after an online outcry by the infosec community - that making customers pay for logs that are crucial for identifying sophisticated attacks creates bad publicity for the company.

"Over the coming months, we will include access to wider cloud security logs for our worldwide customers at no additional cost," the company announced.

The cloud log data generated across customer organizations are viewable via Microsoft Purview Audit.

"As our expanded logging defaults roll out, Microsoft Purview Audit customers will receive deeper visibility into security data, including detailed logs of email access and more than 30 other types of log data previously only available at the Microsoft Purview Audit subscription level. In addition to new logging events becoming available, Microsoft is also increasing the default retention period for Audit Standard customers from 90 days to 180 days."

News URL

https://www.helpnetsecurity.com/2023/07/20/microsoft-cloud-security-logs/