Lucene search
K

77 matches found

Microsoft Secure
Microsoft Secure
added 2023/11/06 5:0 p.m.33 views

Automatic Conditional Access policies in Microsoft Entra streamline identity protection

Extending our commitment to help customers be secure by default, today were announcing the auto-rollout of Microsoft Entra Conditional Access policies that will automatically protect tenants based on risk signals, licensing, and usage. Weve designed these policies based on our deep knowledge of t...

7.2AI score
Exploits0
Microsoft Malware Protection
Microsoft Malware Protection
added 2023/11/06 5:0 p.m.20 views

Automatic Conditional Access policies in Microsoft Entra streamline identity protection

Extending our commitment to help customers be secure by default, today were announcing the auto-rollout of Microsoft Entra Conditional Access policies that will automatically protect tenants based on risk signals, licensing, and usage. Weve designed these policies based on our deep knowledge of t...

7.3AI score
Exploits0
Malwarebytes
Malwarebytes
added 2023/08/04 1:45 p.m.18 views

Microsoft Teams used in phishing campaign to bypass multi-factor authentication

Attackers believed to have ties to Russia's Foreign Intelligence Service SVR are using Microsoft Teams chats as credential theft phishing lures. Microsoft Threat Intelligence has posted details about the perceived attacks targeted at fewer than 40 unique global organizations. The targeted...

7.1AI score
Exploits0
Microsoft Malware Protection
Microsoft Malware Protection
added 2023/07/11 4:0 p.m.23 views

Microsoft Entra expands into Security Service Edge and Azure AD becomes Microsoft Entra ID

A year ago when we announced the Microsoft Entra product family, we asked what the world could achieve if we had trust in every digital experience and interaction.1 This question inspired us to offer a vision for securing the millions and millions of connections that happen every second between...

7.4AI score
Exploits0
Microsoft Secure
Microsoft Secure
added 2023/07/11 4:0 p.m.27 views

Microsoft Entra expands into Security Service Edge and Azure AD becomes Microsoft Entra ID

A year ago when we announced the Microsoft Entra product family, we asked what the world could achieve if we had trust in every digital experience and interaction.1 This question inspired us to offer a vision for securing the millions and millions of connections that happen every second between...

7.4AI score
Exploits0
Microsoft Secure
Microsoft Secure
added 2023/05/31 4:0 p.m.21 views

XDR meets IAM: Comprehensive identity threat detection and response with Microsoft

Identity has become the corporate security perimeter. The average organization used 130 different cloud applications in 2022. That’s up 18 percent from 2021 alone.1 And as organizations continue to embrace digital transformation and enable remote work, they look to identity and access management...

7.2AI score
Exploits0
Microsoft Secure
Microsoft Secure
added 2022/11/30 5:0 p.m.27 views

Implementing Zero Trust access to business data on BYOD with Trustd MTD and Microsoft Entra

This blog post is part of the Microsoft Intelligent Security Association guest blog series. Learn more about MISA. As more employees work remotely on a variety of devices and networks, businesses need a security model that supports this new operational efficiency. An expanding perimeter poses...

0.3AI score
Exploits0
Pen Test Partners Blog
Pen Test Partners Blog
added 2022/10/11 5:45 a.m.9 views

Living off the Cloud. Cloudy with a Chance of Exfiltration

Part one of a series aimed at demonstrating malicious usage of Office 365 services. TL;DR Unless default settings are changed, typical Office 365 O365 licences come loaded with various services that are all usable by end users without special permissions. Power Automate can be used maliciously by...

0.3AI score
Exploits0
Microsoft Malware Protection
Microsoft Malware Protection
added 2022/07/26 4:0 p.m.15 views

How one Microsoft product manager acts as champion for identity security

A technology career embodies the ancient Roman saying that “luck happens when preparation meets opportunity.” Few industries are as dynamic, fast-paced, or intense as technology. With so many challenges to solve, opportunities are everywhere, but as I’ve learned myself through the years, the best...

7.4AI score
Exploits0
Microsoft Secure
Microsoft Secure
added 2022/07/26 4:0 p.m.22 views

How one Microsoft product manager acts as champion for identity security

A technology career embodies the ancient Roman saying that “luck happens when preparation meets opportunity.” Few industries are as dynamic, fast-paced, or intense as technology. With so many challenges to solve, opportunities are everywhere, but as I’ve learned myself through the years, the best...

7.4AI score
Exploits0
Microsoft Secure
Microsoft Secure
added 2022/07/13 5:0 p.m.25 views

Microsoft recognized as a Leader in UEM Software 2022 IDC MarketScape reports

Competition for talent has increased pressure to lead in the digital space, and business decisions now weigh user experience for employees heavily among costs and benefits. Workers insist on experiences that mirror their personal experiences, often on their own devices. As enterprise computing ha...

6.7AI score
Exploits0
Microsoft Malware Protection
Microsoft Malware Protection
added 2022/07/12 4:0 p.m.57 views

From cookie theft to BEC: Attackers use AiTM phishing sites as entry point to further financial fraud

A large-scale phishing campaign that used adversary-in-the-middle AiTM phishing sites stole passwords, hijacked a user’s sign-in session, and skipped the authentication process even if the user had enabled multifactor authentication MFA. The attackers then used the stolen credentials and session...

Exploits0
Microsoft Secure
Microsoft Secure
added 2022/07/12 4:0 p.m.75 views

From cookie theft to BEC: Attackers use AiTM phishing sites as entry point to further financial fraud

A large-scale phishing campaign that used adversary-in-the-middle AiTM phishing sites stole passwords, hijacked a user’s sign-in session, and skipped the authentication process even if the user had enabled multifactor authentication MFA. The attackers then used the stolen credentials and session...

Exploits0
BDU FSTEC
BDU FSTEC
added 2022/06/29 12:0 a.m.9 views

The vulnerability of the Microsoft Office 365 software, related to access control deficiencies, allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the Microsoft Office 365 software package is related to errors in the implemented Conditional Access Policy for the end-point. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to protected information...

5CVSS5.5AI score
Exploits0References6
Microsoft Malware Protection
Microsoft Malware Protection
added 2022/03/17 4:0 p.m.23 views

A Leader in multiple Zero Trust security categories: Industry analysts weigh in

The massive shift toward remote and hybrid work over the last two years has prompted many security professionals to reassess where siloed security may create vulnerabilities.1 For that reason, Zero Trust has become the gold standard for enterprise security. An effective Zero Trust approach requir...

7.4AI score
Exploits0
Kitploit
Kitploit
added 2021/12/24 8:30 p.m.20 views

Spray365 - Makes Spraying Microsoft Accounts (Office 365 / Azure AD) Easy Through Its Customizable Two-Step Password Spraying Approach

Spray365 is a password spraying tool that identifies valid credentials for Microsoft accounts Office 365 / Azure AD. How is Spray365 different from the many other password spraying tools that are already available? Spray365 enables passwords to be sprayed from an "execution plan". While having a...

7.8AI score
Exploits0References2
Microsoft Malware Protection
Microsoft Malware Protection
added 2021/10/27 4:0 p.m.52 views

New insights on cybersecurity in the age of hybrid work

As we approach the last week of Cybersecurity Awareness Month, I think about what is top of mind for myself and my peers in security. The past year has continued the 2020s major shift in the way organizations operate. Recent data shows that 81 percent of enterprise organizations have begun the mo...

7.4AI score
Exploits0
Microsoft Secure
Microsoft Secure
added 2021/10/27 4:0 p.m.43 views

New insights on cybersecurity in the age of hybrid work

As we approach the last week of Cybersecurity Awareness Month, I think about what is top of mind for myself and my peers in security. The past year has continued the 2020s major shift in the way organizations operate. Recent data shows that 81 percent of enterprise organizations have begun the mo...

7.4AI score
Exploits0
Microsoft Malware Protection
Microsoft Malware Protection
added 2021/08/17 4:0 p.m.40 views

Microsoft and NIST collaborate on EO to drive Zero Trust adoption

2020s Nobelium attack sent shock waves through both government and private sectors. 2021 has already seen large-scale nation-state attacks such as Hafnium1 alongside major ransomware attacks2 on critical infrastructure. The breadth and boldness of these attacks show that, far from being deterred,...

8.1AI score
Exploits0
Microsoft Secure
Microsoft Secure
added 2021/08/17 4:0 p.m.43 views

Microsoft and NIST collaborate on EO to drive Zero Trust adoption

2020s Nobelium attack sent shock waves through both government and private sectors. 2021 has already seen large-scale nation-state attacks such as Hafnium1 alongside major ransomware attacks2 on critical infrastructure. The breadth and boldness of these attacks show that, far from being deterred,...

8.1AI score
Exploits0
Rows per page
Query Builder