Been seeing a lot more very sophisticated MocuSign (#docusign) #phishing emails this week. I have been updating my #IOC list on my #GitHub. Fraudsters are doing a much better job on their contents, even using legitimate non-phishing sites as proxy to redirect to the actual #phishing site so they get by email scanners - but they haven't yet gotten past my #endpoint protections (so far, so good).
Keep up-to-date on my findings on my #IOCs #Repository so you can add them to your platforms as well. I update them multiple times per week: https://github.com/Geekmaster-General/IOCs/tree/main
#docusign #phishing #ioc #github #endpoint #iocs #repository
Security professionals unaware of NCSC Cyber Essentials framework – Lookout - New research by Lookout has revealed that there is a lack of awareness towards the NCSC C... https://www.itsecurityguru.org/2023/07/31/security-professionals-unaware-of-ncsc-cyber-essentials-framework-lookout/?utm_source=rss&utm_medium=rss&utm_campaign=security-professionals-unaware-of-ncsc-cyber-essentials-framework-lookout #cybersecurity #infosecurity #editorsnews #endpoint #news
#news #endpoint #editorsnews #infosecurity #cybersecurity
Question for anyone reading this who has experience reverse engineering #endpoint security: Are they really all this bad? Unsigned installs, SQL injection vulnerabilities, bash command injections, disabled TLS verification, unvalidated input and more wtfs than I've seen in a long time. #reverseengineering #vulnerability #EndpointSecurity
#endpoint #reverseengineering #vulnerability #EndpointSecurity
I suppose this is the #EndPoint of #Capitalism
https://www.youtube.com/watch?v=mHEMumaE70U
#Republicans #GOPShite #Elections #Politics #USPol #Delaware #Seaford #TheYoungTurks
#theyoungturks #seaford #delaware #USpol #Politics #Elections #gopshite #republicans #Capitalism #endpoint
Using #DLP with #Defender for Endpoint #Endpoints
Like other DLP policies, Endpoint DLP monitors and blocks activities the engine identifies as potential evidence for data leakage. There is one thing you need to remember if you plan to use EDM or Named Entities as part [...]
https://bit.ly/3MMpfV0 #DLP #policy #endpoint #Microsoft #support
Source: Microsoft Tech Community Office 365 Blog
#dlp #defender #endpoints #policy #endpoint #microsoft #support
If you use #RDP, make sure it's strictly internal, and limited only to specific #admin accounts, and that you *DO NOT* have any #3389 open publicly. That IP will be found (quickly), and your #endpoint will be attacked, if not #breached. #BianLian has shifted their attack model. @cisacyber dropped an advisory this week, here's a decent summary of what's up: https://www.darkreading.com/threat-intelligence/bianlian-cybercrime-group-changes-attack-methods-cisa-advisory-notes?_mc=NL_DR_EDT_DR_weekly_20230518&cid=NL_DR_EDT_DR_weekly_20230518&sp_aid=116563&elq_cid=38046155&sp_eh=144c4ccfdc4bcabeefa4110f1ea26cecf2a866a1c04b99a946a3df0524ced34c&sp_eh=144c4ccfdc4bcabeefa4110f1ea26cecf2a866a1c04b99a946a3df0524ced34c&utm_source=eloqua&utm_medium=email&utm_campaign=DR_NL_Dark%20Reading%20Weekly_05.18.23&sp_cid=48613&utm_content=DR_NL_Dark%20Reading%20Weekly_05.18.23
#Hacking #ThreatIntelligence #Cloud #CloudAttackSurface #DataExfiltration #Exfil #AttackSurfaceReduction #Ransomware
#rdp #admin #endpoint #breached #bianlian #hacking #threatintelligence #cloud #cloudattacksurface #dataexfiltration #exfil #attacksurfacereduction #ransomware
The many reasons combining #endpoint and #identity #security on a single platform is becoming key to a successful #zerotrust strategy. #cybersecurity https://venturebeat.com/security/why-unifying-endpoints-and-identities-is-future-zero-trust/ #press
#endpoint #identity #security #zerotrust #cybersecurity #press
Kurzweilige aktuelle Auflistung von den Eidgenossen... Danke dafür. QBot ist uns auch schon untergekommen. Hat sich in einer Spam OneNote Datei versteckt. PDF Anhang mit Emotet Word Link oder Keylogger? haben wir letzte Woche rausgefischt. Trotz KI Power im Mailgateway und bei der Endpoint :wat: #humanfirewall als Verteidigungslinie hinter der Technik, sonst kuckste nachher blöd :mastobot:
#security #endpoint #spam #qbot #keylogger #emotet #malware
https://www.computerworld.ch/security/malware/qbot-an-erster-stelle-2846151.html
#malware #emotet #keylogger #qbot #spam #endpoint #security #HumanFirewall
How does #MicrosoftDefender for Business #compare to Defender #ForEnterprise?
Defender for Business is a license tailored to small and medium-sized businesses whose feature set sits between Plan 1 and Plan 2. A couple of significant differences exist between Defender for Endpoint Plan 2 and Defend [...]
https://bit.ly/3KslTFL #Defender #Business #Endpoint #Microsoft #Plan
Source: Microsoft Tech Community Office 365 Blog
#MicrosoftDefender #compare #forenterprise #defender #business #endpoint #microsoft #plan
Extremely happy to report that I’m invited to speak at #Appdevcon / #Endpoint, an IT Conference in #Amsterdam. https://appdevcon.nl/schedule-2023/
It’s no secret I’ve been busy developing software from 1997 to 2022 and the last few years I spent time talking about ethical subjects such as Privacy or the Environment.
This talk will hopefully inspire decision makers but also each and every single developer. There’s no reason for them to not help me save the world, and not only code-line-based.
Retoot! :)
#appdevcon #endpoint #amsterdam
RT @IncruxTech: Top-clicked phishing tests.
#phishing #cybersecurity #malware #ransomware #cybercrime #pentesting #microsoft #vpn #hacking #firewall #security #endpoint #cyberattack #virtualprivatenetwork #artificialintelligence https://t.co/7X9XkdPqf8
#artificialintelligence #virtualprivatenetwork #cyberattack #endpoint #security #firewall #hacking #vpn #microsoft #pentesting #cybercrime #ransomware #malware #cybersecurity #phishing
To help with risk mitigation, Microsoft Defender Vulnerability Management (MDVM) users can leverage the application block feature to take immediate action to block all currently known vulnerable versions of applications.
#vulnerability #vulnerabilitymanagement #defender #mdvm #xdr #edr #microsoft #endpoint #protection #cve #application #appcontrol #cloud #cloudsecurity #azure
#vulnerability #vulnerabilitymanagement #defender #mdvm #xdr #edr #microsoft #endpoint #protection #cve #application #appcontrol #cloud #cloudsecurity #azure
Automatic disruption of Ransomware and BEC attacks with Microsoft 365 Defender
We are excited to announce the expansion of the public preview to cover business email compromise (BEC) campaigns, in addition to human-operated ransomware (HumOR) attacks.
#microsoft #xdr #edr #defender #mdi #mde #mdo #azure #cloud #cloudsecurity #email #bec #Ransomware #microsoft365 #microsoft365defender #humor #automation #ir #incidendresponse #siem #identity #casb #endpoint #epp
#microsoft #xdr #edr #defender #MDI #MDE #mdo #azure #cloud #cloudsecurity #email #bec #ransomware #microsoft365 #microsoft365defender #humor #automation #ir #incidendresponse #siem #identity #casb #endpoint #epp
One of my users in #Endpoint has one too many computers attached to him.
This computer is an old local domain unit on which he logged in a long time ago, before returning it to me after it crashed bigtime. He has later been converted to a "cloud unit" with autopilot.
But the old unit it's still listed as his!!
How the fsck do I remove it from the list of his devices?
Nothing I do seems to work!!! 😭
Good morning #fediverse and #cybersecurity #community . Out of curiosity whats your opinion on #Endpoint #security for #macos ?
#fediverse #cybersecurity #community #endpoint #security #macos
Grazie alle Proactive Remediations di #Endpoint Analitycs in #Microsoft #Intune possiamo individuare e rimediare ad alcune delle problematiche più comuni che avvengono sui dispositivi e possiamo farlo prima ancora che l’utente se ne accorga. Ogni pacchetto avrà il suo script di Detection e il suo script di Remediation e l’applicazione sarà schedulata, con tanto di reportistica. #msintune… https://mastodon.uno/home
#endpoint #microsoft #Intune #msintune
Grazie alle Proactive Remediations di #Endpoint Analitycs in #Microsoft #Intune possiamo individuare e rimediare ad alcune delle problematiche più comuni che avvengono sui dispositivi e possiamo farlo prima ancora che l’utente se ne accorga. Ogni pacchetto avrà il suo script di Detection e il suo script di Remediation e l’applicazione sarà schedulata,… https://www.ictpower.it/microsoft-365/microsoft-intune-proactive-remediations-in-endpoint-analitycs.htm?utm_source=dlvr.it&utm_medium=mastodon
there are work days where a good portion of my day is clicking around on Microsoft websites.
#office365 #endpoint #azuread #cloudappsecurity #sysadmin
#VMware #Security #VirtualCloudNetwork #AnywhereWorkspace #SASE #Endpoint - #Employee #surveillance: #Monitoring or spying? - #VMware #EMEA VMware SASE VMware Workspace ONE VMware Carbon Black VMware NSX #vExpert #vExpertSecurity #vExpertNSX #vExpertSASE #vExpertEUC
#vmware #security #virtualcloudnetwork #anywhereworkspace #sase #endpoint #employee #surveillance #monitoring #emea #vExpert #vexpertsecurity #vexpertnsx #vexpertsase #vexperteuc