Wednesday, July 17, 2024

Microsoft Copilot for Security: AI tool to Help Security and IT professionals

Microsoft Copilot for security was a generative AI solution that can help security and IT professionals handle their security operations much more efficiently.

This was claimed to be the industry’s first generative AI solution for strengthening an organization’s security expertise. 

However, Microsoft has announced that Microsoft Copilot for security will be available worldwide by April 1, 2024.

Microsoft also stated that Copilot’s threat intelligence comprises 78 Trillion security signals that are processed by Microsoft every single day.

This is combined with Large language models (LLMs) to deliver the best possible insights and guidance towards the next steps.

Microsoft has recently introduced PyRIT, a Red Team tool designed to assist in the creation of generative AI systems. This tool’s capabilities enable it to identify weaknesses in AI systems and identify potential vulnerabilities that can be exploited.

PyRIT utilizes a combination of automated techniques and expert knowledge to create a more efficient and effective Red Team process for generative AI systems.

Microsoft Copilot for Security

According to the reports shared with Cyber Security News, Copilot for Security’s economic study reveals that experienced security professionals could perform complex security functions swiftly and more accurately.

In addition, Microsoft specified that experienced security analysts could work 22% faster by using Copilot for security.

Studies of Copilot for Security (Source: Microsoft)
Studies of Copilot for Security (Source: Microsoft)

Moreover, 97% of the users mentioned wanting to use Copilot when doing the next task.

This study focused on experienced security professionals and a randomized controlled trial published last November.

Both of these studies combined showed that people with any level of experience and expertise can use Copilot effectively.

Pay-as-you-go Model & Global Availability

Alongside this new public availability, Microsoft has also launched its pay-as-you-go Licensing model for Copilot for Security, enabling access to a wide range of organizations.

Microsoft mentioned, “With this flexible, consumption-based pricing model, you can get started quickly, then scale your usage and costs according to your needs and budget.”

Copilot is described as multilingual and capable of processing prompts in eight languages.

Furthermore, the interface contains 25 different languages, making it readily available and usable across major regions, including North America, South America, Europe, and Asia.

Microsoft detailed the workflow in a video.

New Innovations and AI-powered Security

As Copilot becomes available worldwide, Microsoft has also added additional capabilities, such as 

  • Custom promptbooks – Create and save self-made Natural language prompts for common security tasks.
  • Knowledgebase Integrations – Integrate Copilot for security with business logic and perform tasks based on step-by-step guides.
  • Multi-language support – Process prompts and respond in eight different languages with 25 supported interfaces
  • Third-party Integrations – Integrate with global partners that work on developing integrations and services.
  • Connection with External Attack Surface from Microsoft Defender ASM – Identify and analyze the most recent information from external attack surface risks.
  • Microsoft Entra Audit Logs and Diagnostic Logs – Gather additional insights for a security investigation or IT issue analysts of audit logs associated with specific user/events summarized in natural language.
  • Usage reporting – Dashboard insights on how teams are using Copilot and identify more opportunities.

This AI-powered Copilot for Security is available as two rich user experiences: an immersive standalone portal or embedded into security products.

Integrating Copilot with Microsoft Security Products is even easier for IT and security professionals, as it offers the advantages of speed and accuracy demonstrated in the Microsoft study.

Furthermore, Copilot still has many more features and capabilities in an organization’s security infrastructure.

Microsoft has also mentioned additional features that are coming soon, such as a unified security operations platform, Copilot in Microsoft Entra, Copilot in Microsoft Purview, and Copilot in Microsoft Intune.

Some of these features are currently available, and others have yet to be made available.

With Perimeter81 malware protection, you can block malware, including Trojans, ransomware, spyware, rootkits, worms, and zero-day exploits. All are incredibly harmful and can wreak havoc on your network.

Stay updated on Cybersecurity news, Whitepapers, and Infographics. Follow us on LinkedIn & Twitter.


Latest articles

Volcano Demon Group Attacking Organizations With LukaLocker Ransomware

The Volcano Demon group has been discovered spreading a new ransomware called LukaLocker, which...

Resonance Security Launches Harmony to Monitor and Detect Threats to Web2 and Web3 Apps

Quick take:Harmony is the fourth cybersecurity application Resonance developed to address the disconnect in...

Beware! of New Phishing Tactics Mimic as HR Attacking Employees

Phishing attacks are becoming increasingly sophisticated, and the latest strategy targeting employees highlights this...

MirrorFace Attacking Organizations Exploiting Vulnerabilities In Internet-Facing Assets

MirrorFace threat actors have been targeting media, political organizations, and academic institutions since 2022,...

HardBit Ransomware Using Passphrase Protection To Evade Detection

In 2022, HardBit Ransomware emerged as version 4.0. Unlike typical ransomware groups, this ransomware...

New Poco RAT Weaponizing 7zip Files Using Google Drive

The hackers weaponize 7zip files to pass through security measures and deliver malware effectively.These...

New ShadowRoot Ransomware Attacking Business Via Weaponized PDF’s

X-Labs identified basic ransomware targeting Turkish businesses, delivered via PDF attachments in suspicious emails...
Eswar is a Cyber security content editor with a passion for creating captivating and informative content. With years of experience under his belt in Cyber Security, he is covering Cyber Security News, technology and other news.

Free Webinar

Low Rate DDoS Attack

9 of 10 sites on the AppTrana network have faced a DDoS attack in the last 30 days.
Some DDoS attacks could readily be blocked by rate-limiting, IP reputation checks and other basic mitigation methods.
More than 50% of the DDoS attacks are employing botnets to send slow DDoS attacks where millions of IPs are being employed to send one or two requests per minute..
Key takeaways include:

  • The mechanics of a low-DDoS attack
  • Fundamentals of behavioural AI and rate-limiting
  • Surgical mitigation actions to minimize false positives
  • Role of managed services in DDoS monitoring

Related Articles