Privileged Access Management in Microsoft 365

As cyber threats rapidly increase, monitoring every aspect of your Microsoft 365 environment is crucial. While securing an organization, preventing unwanted access to resources is a prominent concern as we identify suspicious actions. The real challenge arises when users still retain access to sensitive resources even after completing their tasks. It’s essential to revoke this…

Will Microsoft Require MFA for all Azure Users?

A recent post from Microsoft has left admins uncertain and with a lot of queries flashing in their minds. Microsoft said that the Azure teams will begin the gradual rolling out of additional tenant-level security measures this July that require multi-factor authentication (MFA) for all users. Unfortunately, no additional details about the enforcement of MFA and its…

Track User Sign-ins Using Scenario Monitoring in Entra

Microsoft Entra Health (preview) helps you monitor the Microsoft Entra tenant health efficiently. It includes a report of Service Level Agreement (SLA) attainment and the ability to review sign-in reporting scenarios using scenario monitoring. In an organization, monitoring user sign-ins is crucial to identify suspicious logins and prevent unauthorized access. There are usually many additional checks…

Configure Microsoft 365 Passkeys for Secure Logins

Microsoft report reveals that 4000 password attacks are happening every second (i.e., more than 300 million per day). How terrific!? Amidst all these attacks, going passwordless becomes a stronger solution. Ever imagined a world without passwords? Looks interesting, right? Thus, passwordless authentication is essential to prevent password attacks. Basically, there are four passwordless options integrated with Microsoft Entra…

Retirement of RBAC Application Impersonation Role in Exchange Online

Microsoft’s announcement about the retirement of the application impersonation role in Exchange Online is the response to the Midnight Blizzard attack. Initially, the attackers got in using a password spray attack in a legacy test non-production system that lacks MFA configuration. Then, they compromised a test OAuth app with elevated access in the non-production tenant. Adding…

Control Authentication Flows Using Conditional Access Policy

In this digital world, we can access data from anywhere using any device. Consider accessing an application from your device that asks you to enter your credentials. Some devices have complex authentication processes to enter your credentials which is truly frustrating! Here comes authentication flows in Conditional Access that streamline the authentication process and make it…

Microsoft 365 Copilot – Privacy & Security Impact on User Data

On Day 18 of cybersecurity awareness month, learn how Microsoft addresses the privacy and security concerns when using Microsoft 365 Copilot and how it safeguards user data. Stay tuned for the upcoming blogs in our Cybersecurity blog series. Imagine the digital world with AI where there is no need for taking notes, composing emails, writing creative…

Best Practices to Prevent Security Risks in Azure Shared Access Signatures

On Day 9 of cybersecurity awareness month, learn the best practices and recommendations to prevent security risks associated with Shared Access Signatures in Azure AD. Stay tuned for the upcoming blogs in our Cybersecurity blog series. A few days back, Microsoft made a public disclosure that Microsoft AI researchers had exposed 38TB of private data through…

Reporting Suspicious Messages in M365 Shared and Delegated Mailboxes

Dear admins, the long wait is over! Microsoft announced the extension of support for reporting junk and phishing emails from shared & delegated mailboxes in the Outlook Web App soon. Reporting suspicious emails in Outlook is one of the most prominent features to identify phishing or junk emails received in your organization. Also, reporting suspicious messages…

Password Spray Attack Detection with New Microsoft 365 Defender Alert

Microsoft continues to updating its tools and features to deliver customers the utmost security they can. As a part of this, a new alert for ‘password spray attack originating from single ISP’ has been added in Microsoft 365 Defender portal. Threat actors use various techniques to identify account passwords. One among them is a password…

Follow us!