Louis Mastelinck previews common Entra ID pitfalls around authentication, Conditional Access, privilege and app consent.
Before installation, it’s crucial to understand that Microsoft Graph is a RESTful web API that integrates various Microsoft services. You only need to authenticate once to access data across these ...
Today is Microsoft's October 2025 Patch Tuesday, which includes security updates for 172 flaws, including six zero-day vulnerabilities. This Patch Tuesday also addresses eight "Critical" ...
Multi-Factor Authentication (MFA) is a critical security feature for Microsoft 365, but situations like lost phones or forgotten passwords can lock users out of their accounts. Resetting MFA is a ...
Storm-0501, a financially motivated cybercrime crew, recently broke into a large enterprise's on-premises and cloud environments, ultimately exfiltrating and destroying data within the org's Azure ...
Verify that both **AzureAdJoined** and **DomainJoined** are set to **YES**. You can use the **DeviceId** and compare the status on the service using either the Microsoft Entra admin center or ...
We’ve seen an increase in multi-stage Adversary in the Middle (AiTM) phishing BEC in M365. These usually originate from a compromised trusted party, and lead to a series of AiTM attacks and follow-on ...
August 27, 2025 update: Storm-0501 has continuously evolved to achieve sharpened focus on cloud-based TTPs as their primary objective shifted from deploying on-premises endpoint ransomware to using ...
Update 19-Aug-2024: Microsoft has now resolved this bug. See details below. Five years ago, after a particularly embarrassing run of flawed Windows updates, Microsoft vowed to do better. Part of its ...