Florian Adolf ⚡
@fload_sec
#Microsoft #Azure Identity Security and Threat Protection 🐱💻🦾👨💻all Tweets are my own
You might like
Finally! Thanks to everyone in the community. #az500 #azuread #security #microsoft View my verified achievement from @microsoft. youracclaim.com/badges/abde9e6…
⚡ Check out this new Microsoft Entra blog post 👇 MFA enforcement for Microsoft Entra admin center sign-in coming soon techcommunity.microsoft.com/t5/microsoft-e…
I'm excited to share the Entra Story tomorrow @ the Cloud Identity Summit with Tarek Dawoud. Here's a sneak peek 👇
Getting ready to share The Entra Story at the Cloud Identity Summit
If you were (or are) a CISO, what are your 5 non-negotiables? For me: 1. If it's vulnerable, it's being patched 2. Connecting to a VPN? You are coming from a device I trust. 3. MFA everywhere. 4. Any security tools are fully deployed and actively monitored 5. I get all the logs
MS Cloud MFA/2FA bypasses: AiTM Illicet Consent PRT theft Browser Cookies Theft PRT/Cookie Proxy Device Code Conditional Access Gaps Which ones did I miss?
Microsoft just released their updated Microsoft Cybersecurity Reference Architectures (MCRA). A slide deck full of high-level guidance on securing one's organisation. Very handy for orgs starting out or already on the way. learn.microsoft.com/en-us/security…
When you ask Microsoft consultants how putting all your trust in Entra is zero trust.
Nigerian Official pretends to faint after he is questioned about missing funds
Oh, what the hell. Risk accepted. Congratulations! 🎉
Holy shit Microsoft figured out how their signing key was leaked msrc.microsoft.com/blog/2023/09/r…
MFA fatigue is real. Check this thread.... Most folks think Azure MFA is easy. They just flip the switch. But there are so many settings out there that can impact user experiences. Here are some quick tips that might ease the pain a bit: 1. Do not user per-user MFA. Go with…
There are two options to enforce compliant devices via #AzureAD Conditional Access: A) Grant Require compliant device vs B) Block with device exclusion rule "(device.deviceOwnership -eq "Company" -and device.isCompliant -eq True)" What do you use and why?
View my verified achievement from @microsoft. credly.com/badges/1d5738d…
The second best thing about going Passwordless is the improved security. The best thing is the great end to end user experience: techcommunity.microsoft.com/t5/microsoft-e…
New chapter of #AzureAD Attack & Defense ☁️🔐 playbook has been published by @samilamppu and me: „Abuse of #AzureADConnect Sync Service Account for suspicious activities“. #MicrosoftSentinel detections and mitigations for #HybridIdentity are also included. github.com/Cloud-Architek…
Basics
Yesterday I had to use my "break glass" account or emergency access account in @azuread for the first time. I cant enough state the importance of having, at least, one. It is not only for faults, it is also for when you mess up. #AzureAD #MVPBuzz docs.microsoft.com/en-us/azure/ac…
Repeat after me: Disable user grant
Attackers are already using OAuth (too few orgs are monitoring this), seen it a lot in IR This is why your end users shouldn't be granting applications permissions to access your company data Disable user grant and create an approval process to review security/privacy concerns
Quick m365maps.com update: I'm working on the next release, but want to share a new feature coming soon. "Compare Diagrams" allows you to view two diagrams at once and slide between them. This is useful for comparing diagrams and saved diagrams. #Microsoft365 #m365maps
United States Trends
- 1. Araujo 172K posts
- 2. Chelsea 588K posts
- 3. Barca 237K posts
- 4. Estevao 231K posts
- 5. Ferran 74.1K posts
- 6. Barcelona 425K posts
- 7. Yamal 179K posts
- 8. Oklahoma State 4,217 posts
- 9. Eric Morris 2,755 posts
- 10. Cucurella 89.3K posts
- 11. Flick 44.2K posts
- 12. Rashford 23.6K posts
- 13. Godzilla 24.4K posts
- 14. Kounde 46K posts
- 15. Pedri 50.7K posts
- 16. Enzo 62.5K posts
- 17. #CHEBAR 16.1K posts
- 18. Raising Arizona 1,626 posts
- 19. Skippy 4,077 posts
- 20. Caicedo 36.7K posts
Something went wrong.
Something went wrong.