Gecko Technology Partners’ Post

Enhancements to the Outbound Messages in Transit Security Report https://lnkd.in/g5dD5xV7

Everything evolves. And so will user authentication for your digital services. Read this article to learn how you can implement authentication and then easily change the method(s) used, both to keep your security up to date and to meet your business requirements: https://bit.ly/3B3PqU1

𝐍𝐞𝐰 "𝐒𝐭𝐚𝐠𝐞𝐝 𝐑𝐨𝐥𝐥𝐨𝐮𝐭" 𝐅𝐞𝐚𝐭𝐮𝐫𝐞 𝐢𝐧 𝐂𝐨𝐧𝐝𝐢𝐭𝐢𝐨𝐧𝐚𝐥 𝐀𝐜𝐜𝐞𝐬𝐬! Recently turned to the report-only Conditional Access policy for a periodic security policy review and was in for a surprise. When sifting through the filters, stumbled upon a new state: "𝐒𝐭𝐚𝐠𝐞𝐝 𝐑𝐨𝐥𝐥𝐨𝐮𝐭." 🙄Curious, surfed the web and only Daniel Bradley has investigated & shared his findings.   𝐓𝐨 𝐬𝐞𝐞 𝐢𝐭 𝐟𝐨𝐫 𝐲𝐨𝐮𝐫𝐬𝐞𝐥𝐟, 𝐡𝐞𝐚𝐝 𝐭𝐨 𝐌𝐢𝐜𝐫𝐨𝐬𝐨𝐟𝐭 𝐄𝐧𝐭𝐫𝐚 𝐚𝐝𝐦𝐢𝐧 𝐜𝐞𝐧𝐭𝐞𝐫 > 𝐏𝐨𝐥𝐢𝐜𝐢𝐞𝐬 > 𝐀𝐝𝐝 𝐅𝐢𝐥𝐭𝐞𝐫 > 𝐒𝐭𝐚𝐭𝐞. 𝐘𝐨𝐮'𝐥𝐥 𝐧𝐨𝐰 𝐬𝐩𝐨𝐭 𝐭𝐡𝐞 "𝐒𝐭𝐚𝐠𝐞𝐝 𝐑𝐨𝐥𝐥𝐨𝐮𝐭" 𝐨𝐩𝐭𝐢𝐨𝐧.   Could this feature be for testing policies with a subset of users before deploying them organization-wide? Has anyone else noticed this? If you have any insights, please share your findings! #Microsoft365 #EntraID #AzureAD #ConditionalAccess #Entra #CAPolicy #AdminDroid

🔥Today, we are excited to announce Adaptive Protection is now also integrated with Conditional Access. You can now create Conditional Access polices to automatically add users to policies in response to insider risks levels. https://lnkd.in/e2M2wVDG #microsoftpurview #conditionalaccess

❕We introduced Microsoft-managed conditional access policies in November 2023, providing an alternative to Security Defaults for tenants without #EntraID Premium licenses. If you are using #AzureVirtualDesktop ( #AVD ) or #Windows365 ( #W365 ) you need to be aware of this. These policies, initially in report-only mode, focus on MFA for admin portals, users with legacy MFA, and high-risk sign-ins. They automatically activate after 90 days unless manually adjusted. Organizations should review these policies, especially those covering critical security scenarios, to ensure proper security measures are in place🔒👩💼. 👉🏻For more details, you can read more from Lukas Beran here: https://lnkd.in/e_jsZAdh

If you missed the CISA report on the 2023 Microsoft intrusion, it's worth a read. Most interesting? ODIC + outdated SDKs lead to consumer and enterprise keys working in both environments. The endpoint returning the current set of signing keys specified the type, but the SDKs didn't understand it, so all certs were allowed between the environments. Why was it a single endpoint instead of two? Customer demand – which is totally understandable. Direct link to the report: https://lnkd.in/ec44bwBw

⚡ Check out this new Microsoft Entra blog post 👉 Introducing new and upcoming Entra Recommendations to enhance security and productivity

In October 2023, the Federal Acquisition Regulation (FAR) Council proposed two new cybersecurity rules for federal contractors that sell or operate software for use by or on behalf of the federal government. These rules impose new requirements for cloud and non-cloud software systems that process government data and outline a framework for incident reporting and information sharing between private industry and the government. While the rules cover a lot of ground, two notable items stand out. The first is mandated vendor compliance with CISA’s Binding Operational Directives (BODs) and Emergency Directives (EDs) for non-cloud systems. The second is the expansion of required FedRAMP compliance to cloud systems used by vendors on behalf of the federal government, not just those used by the government itself.

This report shows it is best not to have all your eggs in one security basket. Fortra's Digital Guardian can help enhance, if not replace, Microsoft Purview, giving you another outlet for logs and alerts. Ask me how we can help mitigate this possibility and fortify your data loss strategy. https://lnkd.in/eyUY8DKA