UPDATE: Thanks Amit from Microsoft for clarifying that you don’t need to restart after the installation. Back in March, Microsoft announced their new next-gen threat protection tool. Windows Defender Advanced Threat Protection (ATP). Recently, they’ve expanded that program and opened it up to a broader Preview. It has a few primary goals: 1) Detects Advanced […]

Read More →

Last week, Microsoft announced the latest update to Advanced Threat Analytics (ATA) to version 1.6. This adds some notable enhancements, such as: New detections such as Pass-The-Hash and Bruteforce based on unusual protocol behavior Elevation of privileges Reconnaissance via Net Session enumeration Compromised credentials via malicious DPAPI Request Compromised credentials via malicious Replication Requests New […]

Read More →

So if you’re a fan of automation (as we should all be), you’ll love Microsoft’s newest (Preview) tool, Flow. I, for one, use automation every day, whether it be in my home through SmartThings, Ecobee & cameras, PowerShell for work or IFTTT for getting those things in between done. Microsoft announced Flow to the business […]

Read More →

In my previous blog posts, I covered:                         Introduction to Microsoft Cloud App Security Let’s take a quick spin through the CAS settings Under General Settings, you can see it pulls some of the tenant information from O365, we’ll start by just uploading our logo Let’s take a look at the Cloud Discovery settings, we’ll […]

Read More →

Today, Microsoft announced General Availability of Cloud App Security, previously Adallom, their new CASB (Cloud Access Security Broker) solution. The features of this are: Discover Uncover Shadow IT with Cloud App Security. Gain visibility by discovering apps, activities, users, data and files in your cloud environment as well as third-party apps that are connected to […]

Read More →