All Office365 components are adequately protected from accidental deletion via the usage of various Office365 features. The following features are offered out of the box for Office 365 data protection. Feature Sharepoint and OneDrive for Business Recycle Bins In SharePoint Online, items are retained for 93 days from the time […]
The acquisition of CloudKnox further enables Microsoft Azure Active Directory customers with granular visibility, continuous monitoring and automated remediation for hybrid and multi-cloud permissions. Microsoft is committed to providing their customers with unified privileged access management, identity governance and entitlement management including: Automated and simplified access policy enforcement in one […]
Microsoft Azure Security Tools Besides the Microsoft Security Response Center (MSRC), Microsoft offers a handful of security related tools and APIs which are available via Web-based consoles, Microsoft Graph API and Powershell. By navigating to https://security.microsoft.com/info, you should be able to utilize all available security tools and consoles as described […]
Introduction The Covid-19 era has introduced a series of changes which are still being unfolded and which are bringing a profound impact on the lives of billions of people around the world. New terms such as “the future of work”, “remote working” and “remote learning” are being used in at […]
Case Citrix announced on November 10th 2020 the following vulnerabilities. CVE ID Description Vulnerability Type Pre-conditions CVE-2020-8269 An unprivileged Windows user on the VDA can perform arbitrary command execution as SYSTEM CWE-269: Improper Privilege Management The attacker must be an authenticated user on the Windows VDA with write access to the C:\ directory CVE-2020-8270 An unprivileged Windows user on the VDA or a SMB user can perform arbitrary command execution as SYSTEM […]
Citrix released today (11th June 2020) a security bulletin alert regarding a discovered software vulnerability in the Citrix Workspace App client: https://support.citrix.com/article/CTX275460 A new version of Citrix Workspace app client for Windows has been released. Citrix strongly recommends that all customers upgrade Citrix Workspace app to the latest version via Auto Update, or by directly running […]
In 2016, 81% of hacking-related breaches leveraged stolen and/or weak passwords. The most common way credentials are stolen is through phishing, and these attacks often take advantage of the prevalence of password reuse. Turning on multi-factor authentication (MFA) and maintaining good password hygiene greatly strengthen account security. Together, LastPass and […]
The Tinywall software firewall has recently been revamped to its new major version, i.e. version 3.0. The following release notes from the developer and creator of TinyWall outline its new functionality. TinyWall 3.0 focuses on improving its firewall engine, and achieves this by not piggybacking on the built-in firewall in […]
Introduction to security and privacy Security and privacy is a frequent topic of discussion nowadays. With ever increasing IT infrastructures at the service provider and enterprise level as well as with increasing IT knowledge among the average knowledge workers and home users, being aware of security and privacy fundamentals is […]
The Cybersecurity and Infrastructure Security Agency (CISA) has released a utility that enables users and administrators to test whether their Citrix Application Delivery Controller (ADC) and Citrix Gateway software is susceptible to the CVE-2019-19781 vulnerability. According to Citrix Security Bulletin CTX267027, beginning on January 20, 2020, Citrix will be releasing new versions of […]
