Premium capabilities in Microsoft Defender Vulnerability Management are now generally available https://rodtrent.com/n15
#MicrosoftDefender #Security #MicrosoftSecurity #Cybersecurity
Been waiting to talk about this! I'll be digging into this at @mmsmoa this year.
The Microsoft Intune Suite fuels cyber safety and IT efficiency https://rodtrent.com/3i8
#Intune #Cybersecurity #MicrosoftSecurity #Security #ZeroTrust
Attention! Microsoft Defender issue!
Starting with security intelligence version 1.381.2140.0 (or others depending on OS) Attack Surface Reduction (ASR) will remove .LNK files in start menu and taskbar once they are clicked on. This will trigger an ASR alert in some but not all cases ("Block Win32 API calls from Office macro"). Setting this to audit might help.
This is affecting every environement I have looked at now, so just wanted to share it so as many people as possible.
New blog post out: Passwordless Persistence and Privilege Escalation in Azure.
Link: https://posts.specterops.io/passwordless-persistence-and-privilege-escalation-in-azure-98a01310be3f
In this blog post I explain how new passwordless authentication mechanisms like Azure's Certificate Based Authentication can be subverted by adversaries to establish long-term stealthy persistence, and explain a built-in privilege escalation primitive that exists in CBA.
Ads & trackers.
Compare and contrast.
🐘 vs 🐦
Hello mastodon #infosec friends, I built a new website to better search for #Sentinel #AnalyticsRules.
https://analyticsrules.exchange
It is a searchable and filterable list of all Analytics rules in the public repository built automatically twice a day.
Feedback welcome
Reminder: Put your handle in your Twitter bio so that tools like fedifinder can help folks find and follow you!
Hey folks please share this out - I'm looking for feedback on this ransomware recovery workflow that serves as a framework on which organizations can consider their approach and readiness towards ransomware resilience.
Also interested to see what kind of traction Mastodon has vs Twitter 😊
Looking forward to this #AzureAD change in #MicrosoftEntra.
Policies for #StrongAuthentication, #MFA, and Self-Service Password Reset in one place. You can start migrating now, legacy policies will be deprecated in January 2024.
Y’all, if you’re getting frustrated you’re not seeing the content you want to like news or intel you need on Mastodon, you really need to shift your thinking from algorithmic social media. Follower counts don’t matter much here. Likes do not matter to post reach. Without your interaction, you will just see a live FIFO firehose. Some quick fixes:
Hashtag your posts liberally and consistently, and follow key hashtags of interest to you. Hashtags matter a ton here to being seen.
Follow and also alert on accounts you always want to see content from.
Consider using the built in RSS feature for your feeds and for specific hashtags.
Consider switching to the more advanced UI in your preferences, so you can watch multiple filtered and unfiltered feeds. Or a different mobile app.
Use Fedifinder to follow all the accounts you followed on Twitter, and sync up your follow and block lists.
Avail yourself of the multiple public lists of hundreds of journalist accounts on Mastodon.
What's new: Microsoft 365 Security & Compliance November 2022
#AzureAD #MicrosoftDefender #MicrosoftSentinel #MicrosoftPurview
https://chrisonsecurity.net/2022/11/15/whats-new-microsoft-365-security-compliance-november-2022/