Microsoft Security Weekly Wrap Up | Week 32

[Aug 06, 2023 till Aug 12, 2023]

Photo by FLY:D on Unsplash

ENDPOINT MANAGEMENT

1. Microsoft Intune: Security policies and settings for devices enrolled with Microsoft Defender, Defender for Endpoint security settings configuration — also referred to as security settings management — for Windows devices onboarded to Defender is generally available in Intune. Now Microsoft have extended this functionality to Linux and macOS devices in public preview. Additionally, Microsoft have also added the flexibility for IT administrators and security analysts to deploy policies to unenrolled Intune devices from both Microsoft Intune and the Defender 365 portal. In order to learn more about prerequisites, requirements, supported platforms, licensing, and subscriptions. A link is found at the bottom of this blog: Microsoft Intune for managing the security settings of any device with Microsoft Defender.
2. Microsoft Intune: Secure Score integration, Recommendations for device health and security settings for organizations’ endpoints from Intune are now included in Microsoft Secure Score in public preview. The Secure Score is the measure of an organization’s security posture — more points means more actions were taken by Microsoft to improve the posture, helping customers assess risk, drive configuration actions, plan improvements, and report to management. In order to learn more about Secure Score integration read public preview — Microsoft Secure Score
3. Microsoft Intune: Hardware-backed, on device attestation, Building on the strategic partnership with Microsoft and Samsung, Microsoft have launched a new solution that adds another layer of protection for Galaxy Android devices. Hardware-backed mobile device attestation helps prevent personal and company owned endpoints that may have been maliciously compromised from accessing organization resources. It enables a trusted, on device hardware-backed health check and opens up the opportunity for security minded customers to adopt a BYOD policy with confidence that personally owned Galaxy devices have the same strong level of extra protection as company-owned devices. In order to learn more about Hardware-backed, on device attestation read public preview Hardware-backed device attestation powers mobile workers — Microsoft Community Hub

SECURITY

1. Microsoft’s cloud security benchmark (MCSB) extends security control guidance and compliance checks to GCP, completing multicloud monitoring across Azure, AWS, and GCP as a free offering, In addition to existing Azure and AWS guidance, organizations can now leverage the MCSB security guidance for GCP environments and access GCP checks — as a preview feature — in the context of MCSB controls in the Regulatory Compliance dashboard in Microsoft Defender for Cloud.
2. Defender Cloud Security Posture Management (CSPM)– Google Cloud Platform (GCP) multicloud scanning and data-aware security posture (Public Preview), Microsoft Defender CSPM will extend its advanced agentless scanning, data aware security posture, cloud security graph, and attack path analysis capabilities to GCP, providing a single contextual view of cloud risks across AWS, Azure, GCP, and hybrid environments. Within the new Microsoft Defender CSPM capabilities for GCP, Microsoft will also be extending their sensitive data discovery capabilities to GCP Cloud Storage. Now customers can identify potential sensitive data exposure risks across Azure, AWS, and GCP storage resources and harden their multicloud data security posture.

You can leverage the August 9th blogs: Hero blog by Vasu Jakkal and Defender for Cloud Tech Community blog with additional technical details.