Another day of Cybersecurity
Think of LSASS as the master key ring at a hotel. It’s supposed to be used only by authorized staff, like security or management, to access any room in case of emergencies. This key ring has copies of every room … Read the rest
Imagine a tool that can quickly uncover risks in your generative AI models, helping you secure your AI applications. Enter PyRIT—a cutting-edge tool designed to identify potential vulnerabilities in generative AI environments with surgical precision. Developed by the forward-thinkers at … Read the rest
PowerShell is a critical tool in any security team and IT admin’s arsenal, offering powerful scripting capabilities for automating tasks across both on-premises and cloud environments. However, its flexibility makes it an attractive target for attackers seeking to run malicious … Read the rest
What is the best way to run programmatic prompts and responses against Microsoft 365 Copilot? Is it directly from the user? Maybe specific services? Or through a cloud application (Entra ID Enterprise Application)? All answers can be correct as long … Read the rest
Azure Blob Containers are meant to be opened…
The cloud’s capabilities, particularly security, are expanding and bringing impressive value. However, old misconfigurations still occur even in the most hardened and monitored environments, one of which is an open Azure Blob … Read the rest
What is the best way to run programmatic prompts and responses against Microsoft 365 Copilot? Is it directly from the user? Maybe specific services? Or through a cloud application (Entra ID Enterprise Application)? All answers can be correct as long … Read the rest
Many parties have recently contacted me regarding TLS support. The intention is to extract from Microsoft Sentinel findings or reports of all the old versions of Azure services TLS. In order to understand where old versions are, where new versions … Read the rest
Shadow AI, the unauthorized use of AI tools within organizations, is like that sneaky kid in class who brings a slingshot to school—fun until someone is injured. As employees tap into AI platforms without IT’s blessing, the risks multiply faster … Read the rest
