The invasive Otter
In today's meeting, a person I met with was sent a meeting recap from "me". Otter had joined a meeting that I was invited to and then emailed them that person a recap of our meeting. I was very disturbed by this event
security
35 posts
Setting up Defender for Business XDR in 45 minutes or …
In this session, I reviewed the very most important parts to start with when setting up your XDR. That doesn't mean, skip the rest. It means start here and then go back through and configure everything.
Peer groups and learning groups for 2024
It was my pleasure to introduce peer groups to Third Tier. In 2024, we're introducing focused learning groups for Defender, Intune, Public speaking and more
Include IPv6 in Azure AD policies
Criminals of the world would love to know that they don't have to deal with MFA if they phish you while you're in the office. Now we've taken that option away
Conclusions from reading threat analyst reports
Despite criminal masterminds and "security researchers" always coming up with the next greatest tool for causing financial damage to our businesses and economy, there are patterns.
Ransomware prevention, not defense
Defense implies a reactionary approach. Prevention set the scene where ransomware can't get you in the first place.
Setup up automated investigation and response
Many vendors call this Endpoint Detection and Response (EDR) or Extended Detection and Response (XDR). Microsoft calls it Defender for Business.
How to manage Office updates with Microsoft 365
It's one of the least known and used portal in the entire Microsoft 365 suite. Too bad, because it contains some configuration and automation gems. Let's see how we use it to automate Office updates.
Protect accounting firms from spreading malware via uploaded tax documents
Fortunately, Defender protects against this when configured correctly. In addition to the Defender for Endpoint sensor installation, Attack Surface Reduction rules and certain anti-virus configurations should also be deployed
Configure security settings for Edge
The Chrome version of Edge has a full set of Group Policy and Intune configuration options that can enhance security.
Avoid PlugX malware
Once these two items have been set the ability of PlugX to take advantage of innocent people should be thwarted.
Disrupting Qakbot
All it took was an email attachment policy, a little hardening of Microsoft Office and the configuration of the built-in anti-virus software