Microsoft's Sysmon and Azure Sentinel are easy and inexpensive ways to log events on your network. Here's how to get started with them. Logging is the key to knowing how the attackers came in and how ...

We've all seen this before, and with the newest cloud platforms, we need to think about housecleaning. I can distinctly remember cleaning up file shares 15 years ago. I also remember (and still find ...

The Cybersecurity and Infrastructure Security Agency (CISA) has released a PowerShell-based tool that helps detect potentially compromised applications and accounts in Azure/Microsoft 365 environments ...

Microsoft highlighted a couple of Azure tools, including Just-in-Time VM Access, this week. The tools are currently at the preview stage. There's a new Just-in-Time VM Access capability at the "public ...

Government and private organizations, including Microsoft, have released a wealth of information and tools to assess risk from SolarWinds-like attacks. One silver lining that has come out of the ...

Microsoft is tightening access to virtual machines running on Azure. The security measure, called Just-in-Time VM Access, is a new tool that's now in preview. Microsoft also unveiled a "private ...

Azure Blob Storage is a high-value target for threat actors due to its critical role in storing and managing massive amounts ...

Microsoft announced the addition of an Azure Active Directory (AD) sign-in history feature that would allow users to get an overview of past sign-ins and quickly detect any unusual login activity.