Resources
Blog
Azure Sentinel Solution to Find Vulnerable Netlogon Clients
Microsoft is addressing a privilege vulnerability in a two-part rollout by modifying how Netlogon handles the usage of Netlogon secure channels. Phase one, deployment, began on Aug 11. In this phase, secure Remote ProtoCol (RPC) is enforced for machine, trust and domain controller accounts. This phase also includes a new group
AMSI and Machine Learning Help to Stop Active Directory Attacks and Other Post-exploitation Behavior
Last week, Microsoft Defender ATP Research team blogged about Antimalware Scan Interface (AMSI)-driven behavior-based machine learning protections. AMSI helps security software detect malicious scripts by revealing script content and behavior. AMSI integrates with scripting engines on Windows 10 as well as Office 365 VBA to provide insights into the execution of PowerShell, WMI, VBScript,
How One Organization Accidentally Erased 145K Microsoft Teams Chats — Avoid This Mistake
Microsoft recently confirmed that Teams chat data is not recoverable after an IT blunder permanently erased 145,000 users chats at KPMG. With so many remote workers now relying on Microsoft Teams, how can IT teams help protects this critical communication for their end users? While recovering chat data may
Microsoft 365 apps to stop supporting Internet Explorer 11 and Windows 10 Sunsets Microsoft Edge Legacy
This week, Microsoft announced Microsoft 365 apps and services will no longer support Internet Explorer 11 (IE 11) by this time next year. Beginning November 30, 2020, the Microsoft Teams web app will no longer support IE 11. Beginning August 17, 2021, the remaining Microsoft 365 apps and services will no longer
Microsoft Graph Object Pagination and Ordering When Working in PowerShell SDK
Blog by: Dmitry Sotnikov Find him on LinkedIn or Twitter. Question from Justin during our webinar, “Microsoft Graph Basics for PowerShell Admins”: Is Graph data sorted in some way so TOP returns the same value every time, or will it just return the first object that happens to be returned? Microsoft Graph
How to setup a Web UI for LAPS Password Management
Microsoft’s LAPS Password Management now has a secure Web UI Cayosoft Administrator’s free web-based Active Directory Management solution comes complete with support for Local Administrator Password Solution (LAPS) password management. LAPS provides the ability to manage local administrative passwords individually and thereby reducing the chances of later movement should one
Resolving UserId and GroupId parameters to Id property in Microsoft Graph PowerShell SDK pipeline
Blog by: Dmitry Sotnikov Find him on LinkedIn or Twitter. Question from Robb during our webinar, “Microsoft Graph Basics for PowerShell Admins”: Couldn’t you use $_.id? In PowerShell, we are used to just be able to pipe the output of one cmdlet to the next one. For example: Get-ADGroup beatles | Get-ADGroupMember
How to Minimize Complexity in Managing Microsoft Office 365 Licenses
Prior to 2014, IT administrators could simply activate their Microsoft licenses by entering a single license key and the organization was good to go. Today, Microsoft’s platform provides dozens of license plans, which allow enterprise organizations to tailor the office 365 services to their specific requirements and budgets. This
More than 900 VPN Passwords Leaked by Hacker
A list of plaintext usernames and passwords, along with IP addresses for more than 900 Pulse Secure VPN enterprise servers, has been published on a Russian-speaking hacker forum frequented by multiple ransomware gangs. According to a threat intelligence analyst, the list includes: IP addresses of Pulse Secure VPN servers
Connecting to Microsoft Graph using certificate to run scripts without a user present
Blog by: Dmitry Sotnikov Find him on LinkedIn or Twitter. Questions asked during our webinar, “Microsoft Graph Basics for PowerShell Admins”: For automating with Microsoft Graph and using PowerShell. When working as a user, you needed to enter the code and then sign-in as your user. How would an automation/service account work, do
Cayosoft Guardian “Clearly Delivers on Its Promises;” Gets 4.6/5 Rating From Microsoft MVP
Microsoft MVP Nuno Mota reviewed Cayosoft Guardian, a solution for Azure and hybrid AD recovery and protection. The review, which includes some useful tips on requirements, step-by-step installation, and product functions, gave Guardian 4.6/5 rating. “Guardian clearly delivers on its promises. Its continuing monitoring and protection of on-premises and/or Azure Active Directories guarantees
Class-action lawsuit has accused Microsoft of sharing customer data
A lawsuit has been filed with Microsoft for allegedly sharing the content of business customers’ emails, documents, contacts, calendars, location data, audio files, and video files, among other forms of data, without consent. According to the lawsuit, Microsoft is routinely sharing business customers’ data, including personal and corporate information, with Facebook and other third parties
4 Reasons Why the Recycle Bin Can’t Fully Protect Azure Active Directory
Let’s face it, user errors are a reality, and the threat of malicious actors breaching Active Directory –both on-premises and in Azure – is on the rise. Protecting your data has never been more important, yet no native tooling exists to tracks changes, store previous values or enable administrators to
6 Tips to Optimize and Reduce Microsoft Office 365 Licensing Costs – Part Two
Welcome to part two of this blog, where we’re covering six tips to optimize Office 365 license costs. We recently introduced the first three tips in part one of the blog. Microsoft provides numerous license options and flexibility for organizations, but it’s difficult to make informed decisions on the “best”
Hybrid Microsoft Administration with Powershell and Microsoft Graph: Understanding the Basics
Blog by: Dmitry Sotnikov Find him on LinkedIn or Twitter. Scripting in the Microsoft world has evolved significantly in the last few decades. For a long time Microsoft administrators were stuck with MS-DOS command line and batch files for any scripting around it. While the batch language included some basic capabilities