Category: Security

If you’ve ever used your Microsoft 365 credentials to log in to a third-party app or set up a workflow integration, then congratulations — you’ve interacted with an OAuth application.…

Managing a software application inventory for a business can feel overwhelming. With the rapid proliferation of SaaS tools, lack of governance, and users signing up for applications on their own,…

How many of you can confidently say that your business maintains a centralized and approved application inventory? If you’re like most organizations, the answer is either “no” or “we have…

In today’s security landscape, retaining audit and sign-in logs for an extended period is crucial for effective threat detection and incident response. Unfortunately, the default data retention periods for Entra…

Some of you out there might be thinking, “not another article on the end of passwords, we’ve been listening to this for years.” And to your credit, you are spot…

If you want to provide secure access to your corporate data on personal smart phones without enrolling that device under full IT management, stay tuned because in this article, I…

Did you know that users outside your organization can initiate Teams chats with other members of your team by default in Microsoft 365? Attackers are leveraging this to conduct sophisticated…

If Microsoft 365 security feels very ad hoc and reactive to you today, stay tuned because in this blog I am going to show you a tool I built that…

When it comes to data protection, we usually throw out all of our security protections when external collaboration and guest users are added to the mix. Guest users can: Download…

By default in Microsoft 365 Users can register or join any device into your active device inventory in Entra. Additionally, a common method of maintaining persistence for hackers is to…