Azure identity services overview Azure identity services are part of the broader concepts of IAM (Identity and Access Management). Also given the zero trust nature of the cloud, the new SCI (Security, Compliance and Identity) concept has risen, since identity is now the new security boundary of hybrid cloud systems. The current post presents an … Read more
Microsoft is organizing a security-related virtual event by the name of “Secure”. The Microsoft Secure event is coming online on March 28th 2023 and will be covering the following topics. Tuesday, March 28 2023 Time (EEST) Description 6:30 PMthrough–6:35 PM Welcome to Microsoft Secure: Our hosts will guide you through the event and get you … Read more
Given the recent events in Europe, cybersecurity has become imperative as a national and a business priority. Furthermore, governments and organizations are looking to harden their digital networks and protect their critical infrastructure from cyber-attacks. Microsoft’s Security Summit aims to provide key insights on current and future cybersecurity trends, uncover Microsoft’s security strategy and internal … Read more
If you are a Web content creator, you know that you will have to face various challenges with securing your content from theft and plagiarism. Whether you create e-books, e-courses, scientific research or artistic content, you need to be aware of a few basic techniques to protect your content’s security and privacy and allow it … Read more
Citrix ADC and Citrix Gateway Security Bulletin for CVE-2022-27507 and CVE-2022-27508 The following vulnerabilities have recently been discovered and announced by Citrix. CVE-2022-27507 Authenticated denial of service CWE-400: Uncontrolled Resource Consumption VPN (Gateway) virtual server with DTLS, and either ‘HDX Insight for EDT traffic’ or ‘SmartControl’ is configured CVE-2022-27508 Unauthenticated denial of service … Read more
Introduction The Distributed Component Object Model (DCOM) Remote Protocol is a protocol for exposing application objects by way of remote procedure calls (RPCs). The protocol consists of a set of extensions layered on Microsoft Remote Procedure Call Protocol Extensions as specified in [MS-RPCE]. The DCOM Remote Protocol is also referred to as Object RPC or … Read more
The Payment Card Industry Data Security Standard (PCI DSS) is a global standard that provides a baseline of technical and operational requirements designed to protect account data. It is a multi-layered set of specifications which target at acceptable security and privacy levels for all organizations which process any type of payment cards in their transactions … Read more
OCSP SHA-1 support ending 30 May 2022 Microsoft has announced the sunset for SHA-1 Online Certificate Standard Protocol signing. Microsoft is updating the Online Certificate Standard Protocol (OCSP) service to comply with a recent change to the Certificate Authority / Browser Forum (CA/B Forum) Baseline Requirements. This change requires that all publicly-trusted Public Key Infrastructures … Read more
Citrix ADC security vulnerabilities description A new security vulnerability with ID CVE-2021-22955 (Unauthenticated denial of service) has been discovered in Citrix ADC, which affects the following Citrix products and firmware versions: Citrix ADC and Citrix Gateway 13.0 before 13.0-83.27 Citrix ADC and Citrix Gateway 12.1 before 12.1-63.22 Citrix ADC and NetScaler Gateway 11.1 before 11.1-65.23 Citrix ADC 12.1-FIPS before 12.1-55.257 Also a new security vulnerability with … Read more
Introduction Microsoft 365 security score is a consolidated security score based on Microsoft best practice security configurations for Microsoft 365 tenants. The higher the score the higher theoretically your overall Microsoft 365 tenant security levels. The score comprises a list of improvement actions based on your current security posture. Not all improvement actions may be … Read more
