Essential 8 with Microsoft 365
In this post, we’ll explore how the Australian Cyber Security Centre’s Essential Eight framework maps directly to Microsoft 365 security controls—and how you can automate evidence collection and policy checks…
Token Theft Playbook: Proactive Protections
In a previous post, I walked you through an incident response playbook for Token Theft via AiTM. This playbook can be leveraged for BEC incidents as well. Today’s deep dive…
Breaking Down Token Protection In Conditional Access
Microsoft is currently in preview with a new session attribute in Conditional Access policies that Requires token protection for sign-ins. Full Details: Microsoft Entra Conditional Access token protection explained –…
Token Theft Playbook: Incident Response
Token theft is one of the fastest growing attack methods. Lately, I talk to one customer or MSP a week that has had some form of breach that involved this…
Deploy Attack Surface Reduction Rules from Microsoft Intune
Have you ever opened a seemingly harmless Word document, only to have it trigger a script that could have encrypted your entire device? What saved you from disaster? It could…
Fix vulnerabilities with app deployments in Intune
As organizations become more dependent on third-party applications, managing and securing these apps has become increasingly complex. If you’re looking for a streamlined solution to manage and update these applications,…
Enroll Mac devices into Defender | Use these steps
If your organization manages macOS devices, enabling continuous security monitoring is critical—especially with rising threats targeting all endpoints. Microsoft Defender for Endpoint provides 24/7 active vulnerability scanning for macOS, but…
Finding Vulnerabilities on Devices | Use these steps!
Imagine you had a window in your house with a broken lock. Anyone could open it and climb right in. Now imagine your neighbor posts about it on Next Door…
Find risky apps in Microsoft 365
If you’ve ever used your Microsoft 365 credentials to log in to a third-party app or set up a workflow integration, then congratulations — you’ve interacted with an OAuth application.…
Application Inventory Management | Use these templates
Managing a software application inventory for a business can feel overwhelming. With the rapid proliferation of SaaS tools, lack of governance, and users signing up for applications on their own,…