{"id":4456,"date":"2023-12-14T20:01:26","date_gmt":"2023-12-14T11:01:26","guid":{"rendered":"https:\/\/m365jp.xyz\/?p=4456"},"modified":"2023-12-14T20:11:23","modified_gmt":"2023-12-14T11:11:23","slug":"servicedegradation-dz698208-microsoft-defender-xdr-users-may-see-an-increase-of-a-specific-alert-in-the-security-microsoft-com-portal","status":"publish","type":"post","link":"https:\/\/m365jp.net\/index.php\/2023-12-14-servicedegradation-dz698208-microsoft-defender-xdr-users-may-see-an-increase-of-a-specific-alert-in-the-security-microsoft-com-portal","title":{"rendered":"[serviceDegradation] DZ698208 | Microsoft Defender XDR | Users may see an increase of a specific alert in the security.microsoft.com portal"},"content":{"rendered":"<div class=\"postie-post\">\n<div>\n<hr>\n<table id=\"section\">\n<tbody>\n<tr>\n<th width=\"95%\">DZ698208 | Microsoft Defender XDR | Users may see an increase of a specific alert in the security.microsoft.com portal<\/th>\n<\/tr>\n<\/tbody>\n<\/table>\n<hr>\n<table id=\"data\">\n<tbody>\n<tr>\n<th>Status<\/th>\n<td class=\"bad\">serviceDegradation<\/td>\n<\/tr>\n<tr>\n<th>Classification<\/th>\n<td>advisory<\/td>\n<\/tr>\n<tr>\n<th>User Impact<\/th>\n<td>Users may see an increase of a specific alert in the security.microsoft.com portal.<\/td>\n<\/tr>\n<tr>\n<th>Last Updated<\/th>\n<td>12\/14\/2023 10:06:51<\/td>\n<\/tr>\n<tr>\n<th>Start Time<\/th>\n<td>12\/13\/2023 19:00:00<\/td>\n<\/tr>\n<tr>\n<th>End Time<\/th>\n<td><\/td>\n<\/tr>\n<tr>\n<th>Latest Message<\/th>\n<td>Title: Users may see an increase of a specific alert in the security.microsoft.com portal<\/p>\n<p>  User impact: Users may see an increase of a specific alert in the security.microsoft.com portal.<\/p>\n<p>  More info: Impacted users may see the following alert, &#8220;Suspected Netlogon privilege elevation attempt (CVE-2020-1472 exploitation)&#8221;.<\/p>\n<p>  Current status: We&#8217;ve identified that impact associated with DZ696339 is reoccurring. We&#8217;re deploying a new fix to correct the code and remediate impact.<\/p>\n<p>  Scope of impact: Any user accessing the security.microsoft.com portal may see the &#8220;Suspected Netlogon privilege elevation attempt (CVE-2020-1472 exploitation)&#8221; alert repeatedly.<\/p>\n<p>  Start time: Wednesday, December 13, 2023, at 7:00 PM UTC<\/p>\n<p>  Root cause: A code issue was introduced in a recent deployment that was intended to improve our false-positive detection coverage, which is resulting in users seeing an increased delivery of the specific alert in the security.microsoft.com portal.<\/p>\n<p>  Next update by: Thursday, December 14, 2023, at 3:00 PM UTC<\/td>\n<\/tr>\n<tr>\n<th>Machine Translation<\/th>\n<td>\u30bf\u30a4\u30c8\u30eb: \u30e6\u30fc\u30b6\u30fc\u306b\u306f\u3001security.microsoft.com \u30dd\u30fc\u30bf\u30eb\u3067\u7279\u5b9a\u306e\u30a2\u30e9\u30fc\u30c8\u306e\u5897\u52a0\u304c\u8868\u793a\u3055\u308c\u308b\u5834\u5408\u304c\u3042\u308a\u307e\u3059<\/p>\n<p>  \u30e6\u30fc\u30b6\u30fc\u3078\u306e\u5f71\u97ff: \u30e6\u30fc\u30b6\u30fc\u306b\u306f\u3001security.microsoft.com \u30dd\u30fc\u30bf\u30eb\u3067\u7279\u5b9a\u306e\u30a2\u30e9\u30fc\u30c8\u306e\u5897\u52a0\u304c\u8868\u793a\u3055\u308c\u308b\u5834\u5408\u304c\u3042\u308a\u307e\u3059\u3002<\/p>\n<p>  \u8a73\u7d30\u60c5\u5831: \u5f71\u97ff\u3092\u53d7\u3051\u308b\u30e6\u30fc\u30b6\u30fc\u306b\u306f\u3001&#8221;Netlogon \u7279\u6a29\u6607\u683c\u306e\u8a66\u307f\u306e\u53ef\u80fd\u6027 (CVE-2020-1472 \u60aa\u7528)&#8221; \u3068\u3044\u3046\u30a2\u30e9\u30fc\u30c8\u304c\u8868\u793a\u3055\u308c\u308b\u5834\u5408\u304c\u3042\u308a\u307e\u3059\u3002<\/p>\n<p>  \u73fe\u5728\u306e\u72b6\u6cc1: DZ696339\u306b\u95a2\u9023\u3059\u308b\u5f71\u97ff\u304c\u518d\u767a\u3057\u3066\u3044\u308b\u3053\u3068\u3092\u78ba\u8a8d\u3057\u307e\u3057\u305f\u3002\u30b3\u30fc\u30c9\u3092\u4fee\u6b63\u3057\u3001\u5f71\u97ff\u3092\u4fee\u5fa9\u3059\u308b\u305f\u3081\u306b\u3001\u65b0\u3057\u3044\u4fee\u6b63\u30d7\u30ed\u30b0\u30e9\u30e0\u3092\u30c7\u30d7\u30ed\u30a4\u3057\u3066\u3044\u307e\u3059\u3002<\/p>\n<p>  \u5f71\u97ff\u7bc4\u56f2: security.microsoft.com \u30dd\u30fc\u30bf\u30eb\u306b\u30a2\u30af\u30bb\u30b9\u3059\u308b\u3059\u3079\u3066\u306e\u30e6\u30fc\u30b6\u30fc\u306b\u3001&#8221;Netlogon \u7279\u6a29\u6607\u683c\u306e\u8a66\u307f\u306e\u53ef\u80fd\u6027 (CVE-2020-1472 \u30a8\u30af\u30b9\u30d7\u30ed\u30a4\u30c8)&#8221; \u30a2\u30e9\u30fc\u30c8\u304c\u7e70\u308a\u8fd4\u3057\u8868\u793a\u3055\u308c\u308b\u53ef\u80fd\u6027\u304c\u3042\u308a\u307e\u3059\u3002<\/p>\n<p>  \u958b\u59cb\u6642\u523b: 2023 \u5e74 12 \u6708 13 \u65e5 (\u6c34) 19:00 UTC<\/p>\n<p>  \u6839\u672c\u539f\u56e0: \u8aa4\u691c\u77e5\u691c\u51fa\u306e\u30ab\u30d0\u30ec\u30c3\u30b8\u3092\u6539\u5584\u3059\u308b\u3053\u3068\u3092\u76ee\u7684\u3068\u3057\u305f\u6700\u8fd1\u306e\u30c7\u30d7\u30ed\u30a4\u3067\u30b3\u30fc\u30c9\u306e\u554f\u984c\u304c\u767a\u751f\u3057\u305f\u305f\u3081\u3001security.microsoft.com \u30dd\u30fc\u30bf\u30eb\u3067\u7279\u5b9a\u306e\u30a2\u30e9\u30fc\u30c8\u306e\u914d\u4fe1\u304c\u5897\u52a0\u3057\u3066\u3044\u307e\u3059\u3002<\/p>\n<p>  \u6b21\u306e\u66f4\u65b0: 2023\u5e7412\u670814\u65e5 15:00 UTC<\/td>\n<\/tr>\n<\/tbody>\n<\/table><\/div>\n<\/div>\n","protected":false},"excerpt":{"rendered":"<p>DZ698208 | Microsoft Defender XDR | Users may see an increase of a specific alert in the security.microsoft.co [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1],"tags":[],"class_list":["post-4456","post","type-post","status-publish","format-standard","hentry","category-uncategorized"],"_links":{"self":[{"href":"https:\/\/m365jp.net\/index.php\/wp-json\/wp\/v2\/posts\/4456","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/m365jp.net\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/m365jp.net\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/m365jp.net\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/m365jp.net\/index.php\/wp-json\/wp\/v2\/comments?post=4456"}],"version-history":[{"count":0,"href":"https:\/\/m365jp.net\/index.php\/wp-json\/wp\/v2\/posts\/4456\/revisions"}],"wp:attachment":[{"href":"https:\/\/m365jp.net\/index.php\/wp-json\/wp\/v2\/media?parent=4456"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/m365jp.net\/index.php\/wp-json\/wp\/v2\/categories?post=4456"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/m365jp.net\/index.php\/wp-json\/wp\/v2\/tags?post=4456"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}