Microsoft Security Portal

Overview of Microsoft Azure Security Tools

Microsoft Azure Security Tools Besides the Microsoft Security Response Center (MSRC), Microsoft offers a handful of security related tools and APIs which are available via Web-based consoles, Microsoft Graph API and Powershell. By navigating to https://security.microsoft.com/info, you should be able to utilize all available security tools and consoles as described […]

Citrix Virtual Apps and Desktops Deployment and Adoption Resource Center

Citrix announced VAD security vulnerabilities

Case Citrix announced on November 10th 2020 the following vulnerabilities. CVE ID Description Vulnerability Type Pre-conditions  CVE-2020-8269 An unprivileged Windows user on the VDA can perform arbitrary command execution as SYSTEM CWE-269: Improper Privilege Management The attacker must be an authenticated user on the Windows VDA with write access to the C:\ directory CVE-2020-8270 An unprivileged Windows user on the VDA or a SMB user can perform arbitrary command execution as SYSTEM […]

Citrix Security Bulletin Alert

Citrix Security Bulletin Alert 11 June 2020

Citrix released today (11th June 2020) a security bulletin alert regarding a discovered software vulnerability in the Citrix Workspace App client: https://support.citrix.com/article/CTX275460 A new version of Citrix Workspace app client for Windows has been released. Citrix strongly recommends that all customers upgrade Citrix Workspace app to the latest version via Auto Update, or by directly running […]

Yubico and Lastpass

Yubico and Lastpass

In 2016, 81% of hacking-related breaches leveraged stolen and/or weak passwords. The most common way credentials are stolen is through phishing, and these attacks often take advantage of the prevalence of password reuse. Turning on multi-factor authentication (MFA) and maintaining good password hygiene greatly strengthen account security. Together, LastPass and […]

security and privacy

Security and privacy tips

Introduction to security and privacy Security and privacy is a frequent topic of discussion nowadays. With ever increasing IT infrastructures at the service provider and enterprise level as well as with increasing IT knowledge among the average knowledge workers and home users, being aware of security and privacy fundamentals is […]

CVE Citrix

Citrix Security Vulnerability CVE-2019-19781

The Cybersecurity and Infrastructure Security Agency (CISA) has released a utility that enables users and administrators to test whether their Citrix Application Delivery Controller (ADC) and Citrix Gateway software is susceptible to the CVE-2019-19781 vulnerability. According to Citrix Security Bulletin CTX267027, beginning on January 20, 2020, Citrix will be releasing new versions of […]

Azure AD B2B collaboration users

An Azure Active Directory (Azure AD) business-to-business (B2B) collaboration user is a user with UserType = Guest. This guest user typically is from a partner organization and has limited privileges in the inviting directory, by default. Depending on the inviting organization’s needs, an Azure AD B2B collaboration user can be […]