DevelopersNewsOpen SourceSecurity

Microsoft Open Sources COVID-19 Threat Intelligence


Taking advantage of the COVID-19 crisis, cybercriminals are conducting various attacks on businesses and consumers across the globe. To help security teams identify and address new threats, Microsoft has now open sourced its knowledge of coronavirus-related cyberthreats.

Microsoft said it processes trillions of signals each day across identities, endpoints, cloud, applications, and email, which provides visibility into a broad range of COVID-19-themed attacks. This allows the software giant to detect, protect, and respond to them across our entire security stack.

“Today, we take our COVID-19 threat intelligence sharing a step further by making some of our own indicators available publicly for those that are not already protected by our solutions. Microsoft Threat Protection (MTP) customers are already protected against the threats identified by these indicators across endpoints with Microsoft Defender Advanced Threat Protection (ATP) and email with Office 365 ATP,” the company said.

These indicators are now available in the Azure Sentinel GitHub and through the Microsoft Graph Security API.

For enterprise customers who use MISP for storing and sharing threat intelligence, these indicators can easily be consumed via a MISP feed.