Microsoft has brought Artificial Intelligence to cybersecurity with Microsoft Security Copilota AI tool which has as its mission quickly detect and respond to threats and attacks, in addition to understanding them better. Security Copilot combines Microsoft’s cybersecurity features and capabilities and threat intelligence insights with an AI assistant designed to be easy to use.
Security Copilot is built to be used seamlessly in conjunction with the work of security teams. It provides them with an image of what is happening in their environment. It gives your users the opportunity to learn from available intelligence reports and correlate threat activity. It also gives them a much faster decision-making speed, which in addition to being at the pace of a machine is done in a more informed and efficient way.
With Microsoft Security Copilot, cybersecurity is simplified, and the capabilities of security teams are expanded, since it allows to summarize and make sense of AI while helping the discovery and filtering of web traffic noise, as well as the identification of malicious activity .
It is also in charge of supporting cybersecurity professionals to improve their detection capacity. They will achieve this because the tool can correlate and summarize attack data, as well as prioritize incidents. At the same time, it is capable of recommending the best action protocol to solve various threats in a timely manner, and to do so quickly.
In addition, Microsoft Security Copilot will continually learn and improve, with the goal of keeping security teams up to date and working with real information about attackers and their techniques and procedures. It will offer continuous access to the most advanced OpenAI models, with the aim of supporting security tasks and applications with a high level of security.
All of this offers security teams of any size the same skills they have in companies and organizations with much larger teams. Precisely, Microsoft Security Copilot is in charge of supplying the shortage of skills in cybersecurity and personnel, as well as the lack of knowledge, that smaller teams may have. To achieve this, in addition to what has been seen so far, it deals with optimizing workflows and reporting on attacker profiles and incidents across all computers.
This tool actively tracks the activity of more than 50 ransomware criminal gangs and more than 250 unique nation-state cybercriminal organizations. In addition, it receives around 65 billion threat signals every day.
On the other hand, Microsoft technology blocks more than 25.6 billion brute-force password hack attempts every second, and Microsoft has more than 8,000 security professionals analyzing signals. As for analysts at Microsoft’s Security Operations Center, they use more than 100 data sources. The company also has technology and tools obtained after the purchase of companies such as RisIQ and Miburo, which provide information on signals, and detailed intelligence on threat actors.
Security Copilot natively integrates with various Microsoft products such as Sentinel and Defender, giving customers a broader security experience. Microsoft Security Copilot is currently in private testing phaseand there is still no date set for its final release.
