Al Berg’s Post

Are you looking for an ID solution that creates, issues, and verifies privacy-respecting decentralized identity credentials? See how Microsoft Entra Verified ID can help your help organization enable more secure interactions with anyone or anything.

Encrypting your data ensures your data’s confidentiality, integrity, and authenticity. You’ll also minimise the chances of unauthorised access and tampering. And it is so easy to implement with Microsoft 365 once you know how. #makingtechnologyworkforyou #powerbits #ITManagedServicesAndSecurity

Encrypting your data ensures your data’s confidentiality, integrity, and authenticity. You’ll also minimise the chances of unauthorised access and tampering. And it is so easy to implement with Microsoft 365 once you know how. #makingtechnologyworkforyou #powerbits #ITManagedServicesAndSecurity

This is a reminder that attackers only need a single way in. You need to protect _all_ ways in. 🔒 Intriguing reading. Here is a snippet of what happened 🤯 "Those safeguards broke down in April 2021, more than two years before Storm-0558 gained access to Microsoft’s network. When a workstation in the dedicated production environment crashed, Windows performed a standard “crash dump,” in which all data stored in memory is written to disk so engineers can later diagnose the cause. The crash dump was later moved into Microsoft’s debugging environment. The hack of a Microsoft engineer’s corporate account allowed Storm-0558 to access the crash dump and, with it, the expired Exchange signing key. Normally, crash dumps strip out signing keys and similarly sensitive data. In this case, however, a previously unknown vulnerability known as a “race condition” prevented that mechanism from working properly."

Back to basics in this one. Configuration and strong best practices could have avoided this one and just about every other breach. So easy to say yet hard to get perfect, especially with a target as big as Microsoft - Strange that the attackers penetrated production using test credentials. https://lnkd.in/ej98TdEc

This is why companies cannot rely solely on SSO to protect their organization. Shadow IT is a big problem, and its very easy for a weak password (named after a cat or dog) to give an opening to a bad actor. (i,e: Microsoft) By getting employees to adopt the easiest enterprise password manager on the market (#1 most purchased on Vendr), most people would find it very annoying to go back to manually creating and entering terrible passwords 1Password + SSO = Great password coverage https://lnkd.in/eEGj_nDb

With Microsoft Entra Password Protection, default global banned password lists are automatically applied to all users in a Microsoft Entra tenant. https://lnkd.in/gbsvC5AN

Are you prepared to for conducting Mass Password Resets in a moments notice if the need arises? If not take a read (and bookmark) if need be the following excellent post by Deniz Sezer who works at Microsoft Detect and Response Team (DART). Link to Post: https://lnkd.in/d-rp3wZb In most cases if you are not prepared - you are not fast enough, and give the momentum to the attacker.

Cheat sheets or spark notes...however you want to look at it, Microsoft Incident Response are proud to introduce two one-page guides to help security teams investigate suspicious activity in Microsoft 365 and Microsoft Entra. #Microsoft #MicrosoftSecurity #MicrosoftEntra #MicrosoftEntraID #MicrosoftIncidentResponse #Microsoft365 #cybersecurity #m365copilot #securitycopilot #Gartnerleader #forresterwave #SOC