CISA Releases Free Detection Tool for Azure/M365 Environment
Cybersecurity and Infrastructure Security Agency sent this bulletin at 12/24/2020 09:49 PM ESTYou are subscribed to no topic for Cybersecurity and Infrastructure Security Agency. This information has recently been updated, and is now available.
12/24/2020 07:19 PM EST
Original release date: December 24, 2020
CISA has created a free tool for detecting unusual and potentially malicious activity that threatens users and applications in an Azure/Microsoft O365 environment. The tool is intended for use by incident responders and is narrowly focused on activity that is endemic to the recent identity- and authentication-based attacks seen in multiple sectors.
CISA strongly encourages users and administrators to visit the following GitHub page for additional information and detection countermeasures.
This product is provided subject to this Notification and this Privacy & Use policy.