While many industries are working together to combat the COVID-19 epidemic, there are still some unethical attackers fishing in the murky waters. The good news is that Microsoft has decided to share threat signature data related to the COVID-19 cyberattack. To protect business and individual users from threats, Microsoft has compiled countless clues across the cloud, personal nodes, applications, and e-mail. As an open source project, this signature data is designed to help the industry improve its ability to identify and respond to such attacks.
Microsoft’s Threat Intelligence team wants greater transparency in responding to threats and benefits the broader security community, and is calling for more businesses to be involved as everyone works to protect customers and protect against malicious actors who are taking advantage of the COVID-19 epidemic.
Developers are known to have access to the shared data through Azure Sentinel GitHub and the Microsoft Graph Security API. Businesses that use MISP to store threat data can also use MISP feeds flexibly.