Cybersecurity adores fancy words and buzz…, and you’re in for another joy – ASM, DRP, EASM, CAASM. This blog post provides additional information on the state of external attack surface management, and it’s related...
This post is updated constantly with queries from the field about the Microsoft 365 Defender. Some of the queries are standard, and others are advanced. Additionally, I’m breaking down the queries into building blocks and explanations.
Token protection creates secure cryptography between the token and the device it’s issued to, and without the client’s secret, the bound token is useless. When users register a Windows device and higher in Azure...
Token stealing is a severe threat in Office 365 and any cloud environment. Attackers use various technologies and tactics to steal tokens instead of passwords. With those stolen tokens, they will access critical resources...
Many customers, people in the industry, and the community asked me about applying for a second or additional MFA to the Azure PIM role when there is an existing MFA. We all know the...
This post discusses the new Microsoft Defender for Cloud – Malware Scanning feature. While this feature was released recently, I tested it as a private preview, and it has many notes, some of which...
Identity governance in the cloud refers to managing and controlling user identities and their access to resources in a cloud computing environment. Cloud computing has become popular due to its scalability, flexibility, and cost-effectiveness....
OSINT stands for Open Source Intelligence, which is the practice of collecting and analyzing information from publicly available sources. OSINT can be used for various purposes, including national security, law enforcement, business intelligence, journalism,...
Breaking the Cloud via “some service” is every pentester or red reamer mission. While the Blue team, SecOps, and other security teams struggle to minimize the attack surface area, create friction with attackers, and...
