🔥The 9th Round of Easy Loan, Earn $40 Reward is in progress❗️ ⏰ Promotion Period: January 15th - Feburary 15th, 2025 👉 Register now and check more details at gate.io/campaigns/358

ICYMI, MDEManaged and MDEJoined are being replaced by MicrosoftSense as the managementType for Security Management/Intune managed Defender for Endpoint devices. Update your Azure AD dynamic groups etc.

One of the biggest architectural + management changes for Defender for Endpoint is finally in preview: managing endpoint settings in the Defender portal. In this blog, I kick the tyres on things, explain its importance, and what you need to do next. campbell.scot/microsoft-impr…

Microsoft's making it easier for SaaS vendors to integrate with Defender for Cloud Apps (MDA) as part of the code-less Open App Connector Platform. More third party apps in MDA = more visibility in your advanced hunting and automatic governance actions. techcommunity.microsoft.com/t5/microsoft-3…

MDI sensor on AD CS is coming soon! Spoilers, starting convincing your IT enabling events 4888 and 4887.

July 2023 update to Defender for Identity adds some new items that will appear in Secure Score. learn.microsoft.com/en-us/defender…

#MDE now supports #eBPF as a replacement for auditd. This should result in better performance where auditd was overwhelmed. If your machines are in the insider channel and have 101.23062.0005 installed this will automatically turn on in the next days. techcommunity.microsoft.com/t5/microsoft-d…

Graph PowerShell users, do you just connect with the default app? (now that there is more permission control). Or do you create new app registrations for specific tasks? In this blog I look at using Conditional Access to Protect MS Graph PowerShell access ourcloudnetwork.com/protect-micros…

Public Preview: Strictly Enforce Location Policies with Continuous Access Evaluation techcommunity.microsoft.com/t5/microsoft-e…

Microsoft has been published a #TokenTheft playbook which includes investigation checklist, hunting queries, response/recovery task list but also accompanying decision tree. A must read for every #AzureAD, #Entra, #SecOps admin and architect. learn.microsoft.com/en-us/security…

Are you ready for some DMARC policy changes? Even more so, does your 1st line support team know how to fix error 550 5.7.509? > ourcloudnetwork.com/how-to-fix-err… #dmarc #m365 #security #email #office365

Just sent in my initial draft for an upcoming blog post! 🚀 Honestly, the whole deal with AD CS protection is pretty unique, and Microsoft Defender for Identity seems like it's gonna shake things up in this often ignored area. Stay tuned for more! #CyberSecurity

As Microsoft works on feature parity for the Microsoft Graph API, you can now disable directory sync using the beta endpoint! Replacing the Set-MsolDirSyncEnabled command! ourcloudnetwork.com/turn-off-direc…

Vincent Le Toux (Paris, France) #MDE is not happy with the latest version of PingCastle -> Thinks it's mimikatz

Entra/Azure AD PIM may not be the security control you think it is. Here's five common mistakes, limitations, and misunderstandings you want to avoid tripping up with. Privileged Identity Management (PIM) – Common Microsoft 365 Security Mistakes Series: campbell.scot/pim-common-mic…

First blog of the year: A deep dive in MDE update management french365connection.co.uk/post/mde-keepi…

🌱 Did you know that we have 100+ built-in roles in Microsoft Entra? Here's a free mind map of all of them 👇 BONUS → I'm giving away a free pdf of all my Entra mind maps

I’ll be delivering “Zero to Hero: Adaptive Protection with Insider Risk Management and Conditional Access” at 8:15 AM (GMT) on February 21st, 2025, during the Workplace Ninja User Group Denmark meeting. Register now: meetup.com/wpninjasdk/eve…