by Contributed | Dec 14, 2020 | Technology
This article is contributed. See the original author and article here.
We’re thrilled to share new enhancements to the advanced hunting data for Office 365 in Microsoft 365 Defender. Following your feedback we’ve added new columns and optimized existing columns to provide more email attributes you can hunt across. These additions are now available in public preview.
We’ve made the following changes to the EmailEvents and EmailAttachmentInfo tables:
- Detailed sender info through the following new columns:
- SenderDisplayName – Name of the sender displayed in the address book, typically a combination of a given or first name, a middle initial, and a last name or surname
- SenderObjectId – Unique identifier for the sender’s account in Azure AD
- We’ve also optimized and organized threat detection information, replacing four separate columns for malware and phishing verdict information with three new columns that can accommodate spam and other threat types.
New column
|
Mapping to previous columns
|
Description
|
ThreatTypes
|
MalwareFilterVerdict
|
Verdicts from the email filtering stack on whether the email contains malware, phishing, or other threats
|
PhishFilterVerdict
|
DetectionMethods
|
MalwareDetectionMethod
|
Technologies used to threats. This column will cover spam detection technologies in addition to the previous phishing and malware coverage.
As part of this change, we have updated the set of technologies for Phish/Malware threats, as well as introduced detection tech targeted for Spam verdicts.
(NOTE: This is available in EmailEvents only, but will eventually be added to EmailAttachmentInfo.)
|
PhishDetectionMethod
|
ThreatNames
|
N/A – New
|
Json of technology used to malware, phishing, or other threats found in the email.
|
If you want to look for a specific threat, you can use the ThreatTypes column. These new columns will be empty if there are no threats—they will no longer be populated with values like with “Null”, “Not phish”, or “Not malware”.
Here is an example comparing the values in the old columns and the new columns:
Columns
|
Values
|
Old columns
|
|
PhishDetectionMethod
|
[“Anti-spoof: external domain”]
|
PhishFilterVerdict
|
Phish
|
MalwareFilterVerdict
|
Not malware
|
MalwareDetectionMethod
|
null
|
New columns
|
|
ThreatTypes
|
Phish, Spam
|
ThreatNames
|
|
DetectionMethods
|
{“Phish”:[“Anti-spoof: external domain”],”Spam”:[“DomainList”]}
|
- Connectors—this new column in the EmailEvents table provides information about custom instructions that define organizational mail flow and how the email was routed.
- Additional information on organizational-level policies and user-level policies that were applied on emails during the delivery. This information can help you identify any unintentional delivery of malicious messages (or blocking of benign messages) due to configuration gaps or overrides, such as very broad Safe Sender policies. This information is provided through the following new columns:
- OrgLevelAction – Action taken on the email in response to matches to a policy defined at the organizational level
- OrgLevelPolicy – Organizational policy that triggered the action taken on the email
- UserLevelAction – Action taken on the email in response to matches to a mailbox policy defined by the recipient
- UserLevelPolicy – End user mailbox policy that triggered the action taken on the email
As always, we’d love to know what you think. Leave us feedback directly on Microsoft 365 security center or contact us at AHfeedback@microsoft.com.
by Contributed | Dec 14, 2020 | Technology
This article is contributed. See the original author and article here.
Basketball and coding share more than you think. They both require creativity, curiosity, and the ability to look at the big picture while strategizing your next move. Space Jam: A New Legacy is the perfect inspiration to learn computer and data science, and we’ve teamed up to create unique learning paths for data science and machine learning.
The new learning path, Use machine learning to coach Looney Tunes basketball players, inspired by SPACE JAM: A NEW LEGACY, is inspired by real basketball players and the stats that guide the game of basketball.
In the first module of this learning path, you will learn how to use machine learning to impute missing data and discover bimodality in data separating human basketball players from Tune Squad players to create a complete dataset of player statistics, including their Player Efficiency Rating.
The second module is where you get the opportunity to take your data into the game. You will use machine learning to create a realistic simulated dataset of player stats throughout one game. Using this dataset, you will learn how to create and deploy a basic web app to support a coach’s decision making on which players to give a water break to, and which to put in the game.
With the power of Visual Studio Code, Azure, and GitHub, you will level up your coding skills while solving real-world challenges, with a little extra pizzazz from your favorite Tune Squad players. And, if you’re someone who also likes to watch walkthroughs of code, Dr. G is launching a short series of video tutorials guiding you through the learning path.
Welcome to the Jam! Basketball champion and global icon LeBron James goes on an epic adventure alongside timeless Tune Bugs Bunny in the animated/live-action event “Space Jam: A New Legacy,” from director Malcolm D. Lee and an innovative filmmaking team including Ryan Coogler and Maverick Carter. This transformational journey is a manic mashup of two worlds that reveals just how far some parents will go to connect with their kids. When LeBron and his young son Dom are trapped in a digital space by a rogue A.I., LeBron must get them home safely by leading Bugs, Lola Bunny, and the whole gang of notoriously undisciplined Looney Tunes to victory over the A.I.’s digitized champions on the court: a powered-up roster of basketball stars as you’ve never seen them before. It’s Tunes versus Goons in the highest-stakes challenge of his life, that will redefine LeBron’s bond with his son and shine a light on the power of being yourself. The ready-for-action Tunes destroy convention, supercharge their unique talents and surprise even “King” James by playing the game their own way.
We’re excited to partner with this film because learning to code doesn’t have to be a series of the same sample project, together we can explore new tech skills paired with our love for basketball with an added flare of fun Looney Tunes characters. If you’re interested in other learning opportunities for younger students and educators, check out our post on the Microsoft Education Blog. Be sure to check out the new learning path today and don’t forget to catch the film, coming 2021!
by Contributed | Dec 14, 2020 | Technology
This article is contributed. See the original author and article here.
This past year has been one of tremendous integration between Microsoft Teams and SharePoint. SharePoint provides rich content services that power files, lists and pages directly inside of Teams. Team members can easily highlight files, organize lists, and design pages – all as powerful tabs in Teams – due to the ease of benefitting more from the connected SharePoint team site.
We’re pleased to announce the following updates within Teams – all powered by SharePoint:
- Updated flow to add Microsoft Teams to your SharePoint team site
- Updated SharePoint tab app
- Updated SharePoint pages tab app
More screenshots, details, and links to documentation below…
Unifying Teams and SharePoint content collaboration
Updated flow to add Microsoft Teams to your SharePoint team site
[roadmap ID: 46990]
We’re pleased to announce that we are making it even easier to bring SharePoint content into Teams, in the same motion of adding Microsoft Teams to your team site, aka #teamify.
We’ll make it easy to choose lists, libraries and pages that you want to bring into Teams as tabs. When you’ve selected what you need, click the Add Team button to make it happen. By default, your team site home page will be selected, you can change it to suit your needs, and you can fully navigate primary document library from the Files tab – just follow the folder breadcrumbs.
When adding Microsoft Teams to your SharePoint team site, you can select resources (pages, lists and document libraries) to be added as tabs in the general channel of the newly created Teams team.
Once in Teams, it is easy to collaborate with the same group directly around the SharePoint content you just brought in. Pick the same list or page (even the team site home page) you were just working on and engage your colleagues with chat side-by-side the list directly in Teams.
With your content available in Teams, we make it even easier to collaborate and get work done.
Learn more about adding Microsoft Teams to your SharePoint team site.
Updated SharePoint tab app
[roadmap ID: 68860]
We have improved the SharePoint tab experience when adding pages, lists or document libraries to a channel in Teams. It’s easy to select multiple content types from the connected team site, or by providing a link to any other page, list or library to which the user has access.
The updated SharePoint tab experience when adding pages, lists or document libraries to a channel in Teams.
We have also added a new “Recommended” section in the SharePoint tab to help user easily find the most relevant content from their site to pin in their channels. It’s a one-stop shop for adding various types of existing content that began in SharePoint.
Learn more how to add a SharePoint page, list, or document library as a tab in Teams.
Updated SharePoint pages app
[roadmap ID: 60614]
Using SharePoint pages is a great way to consolidate and share content in the right context using images, Excel, Word and PowerPoint documents, videos, links, Twitter feeds and more – all on the same page. And now you can more easily your pages as tabs in Microsoft Teams.
The updated experience makes it easier to choose pages from the connected SharePoint team site and you can also add a page from any SharePoint site link and then paste the URL of the page, or news post, that you want to add as a tab.
Choose pages from the connected SharePoint team site or add a page from any SharePoint site (via URL).
SharePoint will validate the SharePoint URL and if you have access to the page. Permissions of the page itself will not change, and if users on the team do not have permission to the tabbed page, they will be shown a page to request access.
Note: When adding content as tabs in Teams, you may notice a few SharePoint-powered apps – here as an FYI and clarity (in quotes is the text that shows in-app). This is an area of investment to ensure you can easily connect content stored in SharePoint in Teams channels:
- “SharePoint”– add existing content from the connected team site or any SharePoint site – including: Recommended content, Pages, Lists and Document libraries.
- “SharePoint Pages”– add a SharePoint page from the connected team site or from any SharePoint site using a URL. (this is the new app mentioned above)
- Microsoft “Lists”– Create a new list for your team or add an existing list from any existing SharePoint site. (more about working with the Lists app in Microsoft Teams)
- “SharePoint lists”– you may see this app if you don’t yet have the new Lists app. It can be used to bring existing lists as a tab in Teams – but not to create a new list.
- SharePoint “Document Library”– add a SharePoint document library from relevant sites or use a SharePoint document library URL to a site or folder.
Learn more about adding SharePoint pages as tabs in Microsoft Teams, plus further info on how to use built-in and custom tabs in Microsoft Teams.
In closing …
When people work together and get things done, there is less confusion between team members and the content they create. This is the design goal behind Microsoft Teams – the hub for teamwork – and the reason why SharePoint is deeply integrated to provide great content experiences and services within the same user interface. And, it’s all backed by world-class security and compliance to meet the needs of every team across your organization.
At Microsoft, our mission is to empower every person and organization on the planet to achieve more. And when you do this together – as a team – it’s teamwork that moves things forward.
Thanks, @Microsoft_Teams_team
Microsoft Teams plus SharePoint = better together.
by Scott Muniz | Dec 14, 2020 | Security
This article was originally posted by the FTC. See the original article here.
The FTC and its law enforcement partners announced actions against several income scams that conned people out of hundreds of millions of dollars by falsely telling them they could make a lot of money. One of those scams was 8 Figure Dream Lifestyle, which touted a “proven business model” and told people they could make thousands of dollars in a couple of weeks if they paid to join the program. The FTC says those income claims were false. Customers paid between $2,395 and $22,495 to get started, and many took personal loans or racked up credit card debt to buy in. Approximately 94% of those customers lost money, with losses averaging almost $10,500 per person. That’s equal to two months of take-home pay for someone making the median household income.
FTC economist Devesh Raval matched the addresses of the 8 Figure Dream Lifestyle customers to U.S. Census Bureau data to learn how the scam impacted different communities. He found that the percentage of customers who lost money and live in zip codes that skew older (median age of 55 or above) was 43% greater than their share of the population. In other words, they were over-represented in the 8 Figure Dream Lifestyle customer database.
Raval did a similar study of several cases the FTC has brought against other income scams. The analysis showed that these income scams affected different communities at different rates. Where the average loss to scams was more than $500, more of the people affected tended to live in zip codes that skewed older. Where the average loss to scams was less than $500, more of the people affected tended to live in zip codes with a majority Black population.
Savvy scammers know that many of us want financial freedom or to be our own boss. But as FTC cases show, many of these so-called opportunities are money-losing propositions. That’s why it pays to learn how to recognize these scams. If you’re tempted by an opportunity like this, read When a Business Offer or Coaching Program is a Scam. It might save you from losing hundreds – or even thousands – of dollars. Share it in your community to help others recognize these scams. And if you see a scam like this, tell the FTC at ReportFraud.ftc.gov.
Brought to you by Dr. Ware, Microsoft Office 365 Silver Partner, Charleston SC.
by Contributed | Dec 14, 2020 | Technology
This article is contributed. See the original author and article here.
Guest Post by Ivan Medrano.
I am a graduate student at Northwestern University in the Data Science program and a developer with expertise in the Azure.
For this project I created a simple Python and Flask interface as a container for our Azure experiment.
The interface interacts with an API that is generated through the Azure ML Ops portal. Azure uses a great interface which is reminiscent of SSIS in its simplicity. The different parts of the pipeline are represented visually, each piece can be dragged onto a canvas and manipulated with a mouse. This is one of the important things I point out in my video, as reducing the technical barriers to data science can help us focus on the work of modelling and domain knowledge.
With a tool like the ML Ops, we can integrate machine learning into enterprise level applications without having to worry about optimizing our code. We can focus on choosing the right model for the job and ensuring the data is clean, then provide the enterprise developers with an API to work with.
Even though the application was light weight I decided to use Azure Devops for source control. This helped keep all the changes organized and safe in the cloud. Its not something that I have seen Data Scientists do a lot, even in my graduate program, all the code is usually kept in a storage space or a local drive. Developers discovered a long time that source control is vital for the success of any large project. Even if you are working with a single page R Shiny application, I would recommend getting comfortable with GIT or any other source control technology. The benefits will be in the pain that you avoided in the future.
One service I did not use in my project but spoke about in my presentation is Azure Data Factory.
With this tool we could automate our data pipeline. For example, if we wanted to deploy our project to a production environment, we would need a way to update our data regularly. We could use ADF to access an API on a schedule and refresh our data. We could then move the data into an Azure Blob Storage item and access it from our ML Ops portal. Azure Data Factory would also allow us to trigger the experiment or notebook that we created to update our model results.
All these tools working together helped me build something very resilient in a very quick span of time. The project helped me get a good understanding of HL7 data used in the medical industry. It was very enlightening writing python scripts to extract data from the documents. The data is stored in documents and is non-relational. The scripts had to flatten the data so we could correlate events to drugs. For example, a patient goes into the doctor for a check up and gets prescribed several drugs. Each of those things exist as different items on the patients’ medical record so they must be tied together after normalizing.
The project also helped me understand some of the issues with applying classification algorithms to medical data, specifically pharmaceuticals. Some drugs cannot be properly classified due to the nature of how broad they are. If you think about painkillers, those can be used to treat a wide range of symptoms and illnesses. An experiment to tie drugs to illnesses in a 1 to 1 comparison would have very low accuracy scores for drugs like these but would work very well with specialty drugs.
Recent Comments