Blog

Latest Articles

Getting the Most out of Microsoft Defender for Office 365 Policies

This article examines the different components of Defender for Office 365, and how you can customize the configuration beyond the baselines to enhance the relevance and impact the policies have on your tenant. The most important aspects to review when modifying the configuration from baselines and the reasons to consider each configuration option are highlighted, but they don’t take you all the way. The items listed here are a subset of what’s available, but when combined with the baselines will help you to bring your Defender implementation to the next level.

October 1, 2021

Azure Bootcamp – Learn From Global Experts

On September 30, 2021, IT pros and developers from South Africa are coming together once again to host the first online Azure Bootcamp event! User Group Leads will bring you the latest information and features about Azure and Cloud Computing. The online event is free and hosted live on Twitch.

September 29, 2021

Why a Potential Autodiscover Flaw is Just the Tip of an Iceberg

It's often helpful when security researchers like Guardicore shed light on flaws in Microsoft Exchange - however, the Autodiscover protocol isn't flawed in the way they describe. Even though the issue is hard to replicate, it shouldn't distract from the work you need to do to protect your organization from the underlying reason why people want your credentials.

September 28, 2021

Hot Air and Publicity for Purported Autodiscover Security Flaw

Lots of excitement was generated when Guardicore revealed a purported vulnerability with the Exchange Autodiscover service. However, the almost total lack of detail about the configuration used for testing and to generate the reported results makes it impossible for Exchange administrators to check the theory against their own deployment. I don't think a problem exists with Exchange Online, but it's possible that poor DNS practice or flawed third-party clients could cause an issue with on-premises servers. The case remains to be proved.

September 23, 2021

Azure AD App Management Method Policies Harden Application Security Posture

Still in public preview, new application authentication method policies will help Microsoft 365 customers adhere to best practices for managing application credentials, while asserting pressure on ISVs to do the same. Going forward we can expect this to turn into a standard configuration, enforced across many organizations. To address the problem, Microsoft is ready to release a set of features to help. In this article, we introduce you to Azure AD application authentication method policies, one of the features in the set.

September 22, 2021

Contemplating Commsverse

Paul Robichaux provides insights from the independent Microsoft Teams conference, Commsverse, that just took place last week at Mercedez-Benz World outside of London.

September 21, 2021