> If your organization is increasing your usage of @MicrosoftTeams [https://twitter.com/MicrosoftTeams?ref_src=twsrc%5Etfw] and you want to monitor for suspicious activity then read this blog on collecting Teams data with #AzureSentinel [https://twitter.com/hashtag/AzureSentinel?src=hash&ref_src=twsrc%5Etfw] and how to hunt in that data: https://t.co/CdmqejB3Ff — Pete Bryan (@MSSPete) March 30, 2020 [https://twitter.com/MSSPete/status/1244737461109936128?ref_src=twsrc%5Etfw] MS link here; Pro…
All posts in Cloud
Great post here about getting up and running with security baselines in InTune. > *NEW BLOG POST* - Getting started with Security Baselines: Moving from Group Policy to Microsoft Intune: https://t.co/oH15DitiA1 #msintune [https://twitter.com/hashtag/msintune?src=hash&ref_src=twsrc%5Etfw] #intune [https://twitter.com/hashtag/intune?src=hash&ref_src=twsrc%5Etfw] #microsoft [https://twitter.com/hashtag/microsoft?src=hash&ref_src=twsrc%5Etfw] #security [https://twitter.com/hashtag/security?src=hash…
Some interesting comments in the the thread here; > TOP @azuread [https://twitter.com/azuread?ref_src=twsrc%5Etfw] policy recommendations: 1. Azure MFA for Admins - 2. Risk-based MFA for users - 3. Require compliant PCs - 4. Mobile app protection - 5. Require approved app - https://t.co/k5kfEmDdKy — Yusuf Dikmenoglu (@YusufsDSBlog) July 6, 2019 [https://twitter.com/YusufsDSBlog/status/1147468496034574341?ref_src=twsrc%5Etfw] MS link; Identity and device access configurations - Microsoft 3…
Interest stuff in this blue team guide for azure/O365; > A Blue Team guide to Azure & Office 365 monitoring - https://t.co/gLYuvX8zor — Thomas Patzke (@blubbfiction) June 21, 2019 [https://twitter.com/blubbfiction/status/1142201194137473025?ref_src=twsrc%5Etfw] A Blue Team guide to Azure & Office 365 monitoringA few weeks ago I thought that 0x00sec didn’t have enough Blue Team focused posts. Yet, detection of potential threats is incredibly important in any organization. Because Azure and Offi…
Manage emergency access admin accounts - Azure ADThis article describes how to use emergency access accounts to help prevent being inadvertently locked out of your Azure Active Directory (Azure AD) organization.Microsoft Docsmarkwahl-msft [https://docs.microsoft.com/en-us/azure/active-directory/users-groups-roles/directory-emergency-access]…