A report released by Microsoft explained how attackers compromised admin accounts in a tenant and created a malicious OAuth app to control Exchange Online.
At the TEC 2022 conference, Alex Weinert, Microsoft VP for Identity, outlined the need to deploy Azure AD MFA to protect accounts in Microsoft 365 tenants.
A security researcher reports that Microsoft Teams access tokens are stored in clear text on user workstations and could be used to compromise an account.
The Teams external access configuration includes an allow list to define the organizations that can collaborate with your users.
Microsoft 365 tenants usually include many Azure AD apps. These apps hold permissions, including permissions that hackers like to exploit.
The GIFShell attack describes how attackers can penetrate Teams to run commands using special GIFs, including the ability to exfiltrate data.
Microsoft is giving Exchange Online customers one last chance to pause the deprecation of basic authentication for seven email connectivity protocols.
On August 26, Microsoft announced that they will retire Kaizala in August 2023. Kaizala retirement is not big news as it's been coming for a while.
Microsoft doesn't support using an Azure Automation managed identity and Exchange Online PowerShell. However, that doesn't mean the two can't work together.
This article explains how to use an Azure Managed Identity with the Microsoft Graph PowerShell SDK and Teams PowerShell modules to do real work.
Microsoft is not doing a good job to communicate how long Office 2016 and Office 2019 can be used with Microsoft 365.
This article describes how to write a PowerShell script to search user mailboxes for items matching criteria. The items can then be reported or deleted.
