Microsoft has open-sourced today a tool that can be used to build lab environments where security teams can simulate attacks and verify the detection effectiveness of Microsoft security products. The Record reports: Named SimuLand, the tool was specifically built to help security/IT teams that use Microsoft products such as Microsoft 365 Defender, Azure Defender, and Azure Sentinel. Currently, SimuLand comes with only one lab environment, specialized in detecting Golden SAML attacks. However, Microsoft said it's working on adding new ones. Community contributions are also welcomed, and the reason the project has been open-sourced on GitHub, with Microsoft hoping to get a helping hand from the tens of thousands of security teams that run its software.

"If you would like to share a new end-to-end attacker path, let us know by opening an issue in our GitHub repository, and we would be happy to collaborate and provide some resources to make it happen," Microsoft said today in a blog post. But Microsoft doesn't want only lab environments specialized in executing well-known techniques or adversary tradecraft. The OS maker is also encouraging the community to contribute improved detection rules for the attacks they're sharing, so everyone can benefit from the shared knowledge.

An anonymous reader quotes a report from The Mercury News: Instead of learning a foreign language, Michigan students could take computer coding classes to replace the high school graduation requirement, under a bill that passed the state House Tuesday. Currently, the Michigan Merit Curriculum, which dictates the state's academic standards for graduation, requires students to take two world language credits to receive a high school diploma. Before the bill passed a vote, bill sponsor Rep. Greg VanWoerkom spoke about the value of coding in Michigan's prominent auto and tech industries, as well as it being a good alternative for those kids who struggle with traditional language classes.

"Besides being a hard skill, that employers actually want, coding. helps build soft skills. Coding promotes the use of logic, reasoning, problem solving and creativity," the Norton Shores Republican said. "Any professional coder will tell you that to be fluent in coding takes years of practice and a deep understanding of the language." In opposition to the bill, Rep Padma Kuppa said though she understands the importance of adding more technology education to curriculums, having had a career as a mechanical engineer, coding is not a foreign language. Students need both computer and tech skills and foreign language skills. "As technology helps the world become more interconnected, our ability to understand and work with others on technical projects around the globe is not only related to the ability to code, but to understand one another," the Troy Democrat said.

An anonymous reader shares a report: Amazon recently banned some sellers of large Chinese electronics brands like Aukey and Mpow that reportedly do hundreds of millions in sales on the shopping site each year. The bans followed a database leak that appeared to tie some of the brands to paid-review schemes, which Amazon prohibits and says it strictly polices. But while some press coverage implied that Amazon took these actions in response to the database leak, internal employee messages viewed by Recode show that pressure from the Federal Trade Commission (FTC) led to at least one of the notable bans.

Communications between Amazon employees viewed by Recode also appear to expose an inconsistent punishment system in which employees need special approval for suspending certain sellers because of their sales numbers, while some merchants are able to keep selling products to Amazon customers despite multiple policy violations and warnings. The leaked internal messages also revealed several other instances in recent months of FTC inquiries pressuring Amazon to take action against merchants engaging in fake-review schemes. Amazon has long said that it aggressively polices fake reviews, but the frequency with which the FTC has pressured the company to police merchants that run paid-review programs has not been previously known.

Microsoft today open-sourced a tool that can be used to build lab environments where security teams can simulate attacks and verify the detection effectiveness of Microsoft security products. From a report: Named SimuLand, the tool was specifically built to help security/IT teams that use Microsoft products such as Microsoft 365 Defender, Azure Defender, and Azure Sentinel. Currently, SimuLand comes with only one lab environment, specialized in detecting Golden SAML attacks.

However, Microsoft said it's working on adding new ones. Community contributions are also welcomed, and the reason the project has been open-sourced on GitHub, with Microsoft hoping to get a helping hand from the tens of thousands of security teams that run its software. "If you would like to share a new end-to-end attacker path, let us know by opening an issue in our GitHub repository, and we would be happy to collaborate and provide some resources to make it happen," Microsoft said today in a blog post. But Microsoft doesn't want only lab environments specialized in executing well-known techniques or adversary tradecraft. The OS maker is also encouraging the community to contribute improved detection rules for the attacks they're sharing, so everyone can benefit from the shared knowledge.

The Treasury Department on Thursday announced that it is taking steps to crack down on cryptocurrency markets and transactions, and said it will require any transfer worth $10,000 or more to be reported to the Internal Revenue Service. From a report: "Cryptocurrency already poses a significant detection problem by facilitating illegal activity broadly including tax evasion," the Treasury Department said in a release. "This is why the President's proposal includes additional resources for the IRS to address the growth of cryptoassets," the department added.

"Within the context of the new financial account reporting regime, cryptocurrencies and cryptoasset exchange accounts and payment service accounts that accept cryptocurrencies would be covered. Further, as with cash transactions, businesses that receive cryptoassets with a fair market value of more than $10,000 would also be reported on." Bitcoin traded off its highs for the day on the Treasury headlines and was last up just 1%, according to Coin Metrics. Previously in the session, it was up more than 9%. A growing number of Wall Street analysts have over the past month sounded the alarm that regulators at Treasury and the Securities and Exchange Commission could soon take a more active role in cryptocurrency regulation.

A giant slab of ice bigger than the Spanish island of Majorca has sheared off from the frozen edge of Antarctica into the Weddell Sea, becoming the largest iceberg afloat in the world, the European Space Agency said on Wednesday. From a report: The newly calved berg, designated A-76 by scientists, was spotted in recent satellite images captured by the Copernicus Sentinel-1 mission, the space agency said in a statement posted on its website with a photo of the enormous, oblong ice sheet. Its surface area spans 4,320 square km (1,668 square miles) and measures 175 km (106 miles) long by 25 km (15 miles) wide. By comparison, Spain's tourist island of Majorca in the Mediterranean occupies 3,640 square km (1,405 square miles). The U.S. state of Rhode Island is smaller still, with a land mass of just 2,678 square km (1,034 square miles). The enormity of A-76, which broke away from Antarctica's Ronne Ice Shelf, ranks as the largest existing iceberg on the planet, surpassing the now second-place A-23A, about 3,380 square km (1,305 square miles) in size and also floating in the Weddell Sea.