Exchange Online and SharePoint Online data protection mechanisms

Exchange Online and SharePoint Online data protection mechanisms

All Office365 components are adequately protected from accidental deletion via the usage of various Office365 features. The following features are offered out of the box for Office 365 data protection. Feature Sharepoint and OneDrive for Business Recycle Bins In SharePoint Online, items are retained for 93 days from the time […]

cloudknox

Microsoft acquires CloudKnox Security to offer unified privileged access and cloud entitlement management

The acquisition of CloudKnox further enables Microsoft Azure Active Directory customers with granular visibility, continuous monitoring and automated remediation for hybrid and multi-cloud permissions. Microsoft is committed to providing their customers with unified privileged access management, identity governance and entitlement management including: Automated and simplified access policy enforcement in one […]

Microsoft Security Portal

Overview of Microsoft Azure Security Tools

Microsoft Azure Security Tools Besides the Microsoft Security Response Center (MSRC), Microsoft offers a handful of security related tools and APIs which are available via Web-based consoles, Microsoft Graph API and Powershell. By navigating to https://security.microsoft.com/info, you should be able to utilize all available security tools and consoles as described […]

Citrix Virtual Apps and Desktops Deployment and Adoption Resource Center

Citrix announced VAD security vulnerabilities

Case Citrix announced on November 10th 2020 the following vulnerabilities. CVE ID Description Vulnerability Type Pre-conditions  CVE-2020-8269 An unprivileged Windows user on the VDA can perform arbitrary command execution as SYSTEM CWE-269: Improper Privilege Management The attacker must be an authenticated user on the Windows VDA with write access to the C:\ directory CVE-2020-8270 An unprivileged Windows user on the VDA or a SMB user can perform arbitrary command execution as SYSTEM […]

Citrix Security Bulletin Alert

Citrix Security Bulletin Alert 11 June 2020

Citrix released today (11th June 2020) a security bulletin alert regarding a discovered software vulnerability in the Citrix Workspace App client: https://support.citrix.com/article/CTX275460 A new version of Citrix Workspace app client for Windows has been released. Citrix strongly recommends that all customers upgrade Citrix Workspace app to the latest version via Auto Update, or by directly running […]

Yubico and Lastpass

Yubico and Lastpass

In 2016, 81% of hacking-related breaches leveraged stolen and/or weak passwords. The most common way credentials are stolen is through phishing, and these attacks often take advantage of the prevalence of password reuse. Turning on multi-factor authentication (MFA) and maintaining good password hygiene greatly strengthen account security. Together, LastPass and […]

security and privacy

Security and privacy tips

Introduction to security and privacy Security and privacy is a frequent topic of discussion nowadays. With ever increasing IT infrastructures at the service provider and enterprise level as well as with increasing IT knowledge among the average knowledge workers and home users, being aware of security and privacy fundamentals is […]

CVE Citrix

Citrix Security Vulnerability CVE-2019-19781

The Cybersecurity and Infrastructure Security Agency (CISA) has released a utility that enables users and administrators to test whether their Citrix Application Delivery Controller (ADC) and Citrix Gateway software is susceptible to the CVE-2019-19781 vulnerability. According to Citrix Security Bulletin CTX267027, beginning on January 20, 2020, Citrix will be releasing new versions of […]