This is a new series where I will summarize some awesome feature releases as they come to certain Microsoft Security Products. First up the Defender for all Defenders! 😎 The May 2023 edition of the Microsoft 365 Defender Blog includes a range of updates and announcements regarding Microsoft’s security offerings. These updates include enhancements to Microsoft Defender […]
Category: Uncategorized
Microsoft Entra and Azure AD: The Cornerstone of Enterprise Identity Security
As organizations continue to shift towards cloud-based services, security becomes a top concern. Enterprises need to ensure that their employees and partners have secure and reliable access to corporate resources, while also protecting against a range of threats and vulnerabilities. Microsoft Entra, a cloud-based security service, and Azure Active Directory (AD), a cloud identity and […]
What is Azure Active Directory Identity Governance: Protecting Digital Identities at Scale
Effective identity management is a crucial component of cybersecurity as more organizations move their data and applications to the cloud. Microsoft Azure Active Directory (Azure AD) provides identity and access management services that can help organizations secure their resources and comply with regulatory requirements. Azure AD Governance is a set of capabilities that enable organizations […]
Hybrid Cloud Security: Azure Arc and Microsoft Defender, Better Together
Hybrid Cloud Security. What does Hybrid Cloud Security even mean? Well simply put HCS is referred to when you combine Cyber Security strategies and models to protect organization data both “On-Premises” and in “the Cloud”. For example think of an typical business model from 2000-2015. Organizations would “build” or “host” their infrastructure and operations On-Premises […]
Streamline cloud content delivery for Windows clients using Delivery Optimization
Originally posted to https://www.mjshellenberger.com on 1/17/2023. Cross-posting here as well. The shift to endpoint management (Microsoft Intune) and Windows Updates (Windows Update for Business) in the cloud is an absolute success in terms of supporting modern Windows endpoints. The ability to manage devices and ensure updates are flowing regardless of a device’s current location is […]
How to Stop LLMNR/NBT-NS Poisoning and SMB Relay Attacks
While this attack has been around for a long time, it’s still a common finding, and successful method of lateral movement, when our red team performs vulnerability assessments for customers. I thought it might be helpful to revisit how this attack works and how easy it is to remediate and defend against it. An description […]
Security baseline for Microsoft Edge v101
Microsoft has announced the enterprise-ready release of the security baseline for Microsoft Edge, version 101! Version 101 has been reviewed and Microsoft has determined that there are no additional security settings that require enforcement. The Microsoft Edge version 98 package continues to be the recommended baseline. That baseline package can be downloaded from the Microsoft Security […]