AD-Based Attacks in 2023 – What We’ve Learned So Far
In this blog, Paul Robichaux covers a recent TEC Talk where he discusses AD-Based Attacks in 2023 and what we've learned so far.
August 22, 2023
Latest Articles
Practical Protection: Five Years is Too Long
Five years is way too long to leave a vulnerability unpatched. Unfortunately, forgetting to patch isn't uncommon and hackers love when you do... This blog discusses how to stay on top of patching and stop easily avoidable breaches.
August 11, 2023
Practical Protection: Who Watches the Watchers?
Are you on watch for data breaches? This Blog talks about how soft skills, trainings, and investments can be used as tools to minimize the harm from data breaches.
July 28, 2023
Practical Protection: Five Things To Know About Microsoft 365 Auditing
Most of us don’t spend much time poking around in the unified audit log, but all of us probably should. In this article, we dive into 5 things you need to know about Microsoft 365 auditing.
July 12, 2023
Practical Protection: Two Routes to Avoiding Malware in Teams
Recently, security researchers at JumpSec labs identified a vulnerability in Teams that allows malware delivery through Teams chat. Microsoft Acknowledged the vulnerability but didn't release any immediate remedies. In this blog, we will discuss two practical methods to avoiding malware delivery within Teams.
June 29, 2023
Practical Protection: Asking the Right Questions to Break the Kill Chain
You can’t disrupt a chain if you can’t identify the links. In this blog, Paul Robichaux goes over some of the ways you can break a Kill Chain in your environment. And it all starts with asking yourself the right questions.
June 15, 2023
Practical Protection: Recycling the Safe Way
Recycling is not only good for the planet, but it's also good for the security of your organization. In this article, Paul Robichaux discusses how to properly dispose of your devices so that you stay protected.
May 31, 2023
Practical Protection: MFA is Coming for You, Ready or Not
Whether you like it or not, MFA is coming for you! You can either deploy and support MFA for your users, or Microsoft is going to do it for you. The choice is yours. Learn more about how Microsoft will be enforcing MFA in the future, and what you should do.
May 17, 2023
Practical Protection: Limiting the Damage from Local Admin Accounts
Because of the way the Windows security model works, it’s not currently possible to eliminate the use of passwords for local administrator accounts. Given that fact, the next best solution is to remediate the biggest problems with passwords for these local accounts, including weakness, reuse, and tenure. In this article, we discuss how the Local Administrator Password Solution (LAPS) helps with all of those!
May 3, 2023
Practical Protection: Baby Steps Towards Zero Trust
Implementing zero trust in the world is a big hassle, often uncomfortable, and frequently dorky—plus, it can be expensive. At the same time, moving closer to a zero trust model helps harden your network significantly, and you may already have many of the tools and techniques you need available without much extra cost. In this article, we discuss how to take baby steps toward Zero Trust.
April 19, 2023
Microsoft Reports New Attack Using Azure AD Connect
A writeup about the MERCURY attack by the Microsoft Threat Intelligence team reveals how a nation state actor linked to the Iranian government compromised an Azure AD tenant by using the AADConnect tool. In this article, we discuss how the attack developed and what you can do to prevent the same attack techniques being used against your tenant.
April 10, 2023
Practical Protection: Azure AD Apps and Tenancy
In this edition of Practical Protection with Paul Robichaux, we dive into understanding what multi-tenant applications are, what they can do, and how to manage them in order to keep your tenant and users safe.
April 6, 2023