Microsoft reportedly recently closed an agreement with FireEye security company, according to a Australian shop Arn. The agreement gives FireEye access to all telemetry data collected by Windows 10.
The publication reports that FireEye will offer in return Microsoft's iSIGHT Intelligence software to be used by Windows Defender Advanced Threat Protection on all Windows 10 devices.
FireEye's iSIGHT Intelligence software is a future threat prevention application that can check if businesses meet the requirements and tools to cut off an attack.
On the other hand, Windows Defender is a program that comes embedded in Windows 10 and is enabled by default.
The company's customers using Pro and Enterprise editions can upgrade to the Windows Defender Advanced Threat Protection app that has behavioral sensors, analysis of cloud security and threats.
The publication states that the partnership definitely benefits Microsoft, namely the reputation and reliability of the Windows Defender commercial release.
A press release from FireEye released on 3 November at 2016 provides additional details on the deal.
Please note that the iSIGHT Intelligence software is available through Windows Defender Advanced Threat Protection (WDATP), but not the free version of Windows Defender.
WDATP customers can access various technical indicators provided by the software. These include the attacker's main motive, tools it uses, information about target domains and geographic areas, and a description of the attacker and its functions.
According to the ARN publication, security teams can have all Windows 10 telemetry data through subscription billing models.
The company will have access to the telemetry data of all Windows 10 devices. An overview of which versions of Windows are included is provided on its page TechNet on the Web.
Meanwhile, neither FireEye, nor Microsoft or the ARN publication disclosed details about the range of telemetry data that FireEye will have at its disposal.
But according to them Microsoft Terms of Service, more probably was expected:
"We share your personal data with your consent or as required, for the completion of any transaction or for the provision of any product you have requested or authorized. We also share data with Microsoft affiliates and affiliates, with suppliers who work on our behalf when required by law or to respond to legal proceedings, to protect our customers, to protect life, to maintain security our products and to protect the rights or property of Microsoft. "
At present, what we can safely say is that terms of the agreement are not yet known, so we can not know if FireEye will gain access to all telemetry data.
However, the fact that telemetry data is offered to third parties is quite problematic.
Below are the details that Microsoft collects, according to the terms of use of each software:
"Microsoft collects data to operate efficiently and provide you with the best possible experience with its products. Some of this data is provided directly by you, such as when you create a Microsoft account, submit a search query to Bing, give a voice command to Cortana, send a document to OneDrive, purchase an MSDN subscription, sign up for Office 365, or contact us for support. We obtain some data by recording how you interact with our products, for example, using technologies such as cookies and taking error reports or usage data from software running on your device.
We also get data from third parties. For example, we supplement the data we collect by buying demographic data from other companies. We also use services from other companies to identify your location based on the IP address, so we can customize certain products.
You have choices about the data we collect. When asked to provide personal data, you can refuse. However, if you choose not to provide data that is necessary to provide a product or feature, you may not be able to use that product or service.
The data we collect depends on the products and capabilities you use, and may include the following:
Name and contact information. We collect your name and surname, email address, postal address, telephone number and other similar contact information.
Credentials. We collect passwords, password prompts, and similar security information used for authentication and access to the account.
Demographic data. We collect data about you, such as your age, gender, country and language of preference.
Payment data. We collect data that is necessary to process your payments if you make purchases, such as your payment instrument number (eg credit card number), and the security code associated with the payment instrument.
Usage data. We collect data about how you and your device interact with Microsoft and our products. For example, we collect the following:
- Product use data. We collect data about the features you use, the items you buy, and the websites you visit. This data includes your voice commands and your interactions with Bing, Cortana, and the chat bot that we have.
- Device data. We collect data about your device and the network you use to connect to our products. This includes data about operating systems and other software installed on your device, including any product keys. Data also includes IP address, device IDs (such as IMEI for phones), locale and language settings.
- Error reports and performance data. We collect information about the performance of the products, as well as any problems you experience with them. This data helps us diagnose problems with the products you use, as well as improve our products and provide solutions. Depending on your product and settings, error reports may include data such as the type or severity of the problem, details of the software or hardware associated with an error, contents files that you were using when an error occurred and data about other software on your device.
- Support Data. When you contact Microsoft for support, we collect data about you and your hardware and software, as well as other details related to the support incident. This data includes communication or authentication data, the content of your conversations, and other communications with Microsoft support, machine and application status data when the error occurred and during diagnostics, as well as data system and registry on software installations and hardware parameter settings.
Interests and favorites. Συλλέγουμε δεδομένα σχετικά με τα ενδιαφέροντα και τα αγαπημένα σας, όπως τις ομάδες που παρακολουθείτε σε applications αθλητισμού, τις μετοχές που παρακολουθείτε σε εφαρμογές οικονομίας ή τις αγαπημένες σας πόλεις που προσθέτετε σε εφαρμογές για τον καιρό. Εκτός από τα στοιχεία που παρέχετε εσείς οι ίδιοι, τα ενδιαφέροντα και τα αγαπημένα σας μπορεί επίσης να συναχθούν ή να προέλθουν από άλλα δεδομένα που συλλέγουμε.
Contacts and relationships. We collect data about your contacts and relationships if you use a Microsoft product to manage contacts, communicate, or interact with other people or organizations.
Location data. We collect data about your location, which may be accurate or inaccurate. Exact location data may be Global Positioning System (GPS) data as well as data from nearby mobile and Wi-Fi hotspots that we collect when you activate products or positioning capabilities. Inaccurate location data includes, for example, positions resulting from your IP address or data indicating less precisely where you are, such as city or postal code.
Content. We collect content from your files and communications when necessary to provide the products you use. For example, if you receive an email through Outlook.com or the Exchange Online, we need to collect the content of that message in order to deliver it to your Inbox, display it to you, allow you to reply to it, and store it on your behalf until you choose to delete it. Examples of this data include: the content of your documents, photos, music or videos that you upload to a Microsoft service such as OneDrive, and the content of your communications sent or received using Microsoft products such as Skype or Outlook.com, including the following:
- the theme line and the body of an email,
- the text or other content of an instant message,
- record audio and video from a video and video message
- the recording and transcription of a voicemail you receive or a text message you dictate.
We also collect the content of messages that you send to us, such as comments and reviews you write about the product, or questions and information you provide to customer support. When you contact us, for customer support for example, your phone conversations or chat sessions with our representatives may be monitored and recorded. If you visit our retail stores or other facilities, your image may be captured by our security cameras.
The product sections below describe data collection practices that apply to the use of these products. ”
