Here is SANS’ excellent round-up of Microsoft’s Patch Tuesday: Microsoft May 2022 Patch Tuesday – SANS Internet Storm Centre There are the usual array of issues that Microsoft is fixing be they become an issue – one of the Windows patches fixes Windows LSA, this impacts the authentication of accounts …
Life imitates art! “crypto muggings” and proportionality
I just realised I am waiting for “crypto doughnuts”! We recently sat in on a meeting where a security expert suggested to our client, that they move from Microsoft 365 for Business to E5, as they would benefit from the added cyber security features of the enterprise grade Microsoft 365. …
Continue reading “Life imitates art! “crypto muggings” and proportionality”
CISA security advisory from Microsoft for various Azure products.
Microsoft Releases Security Advisory for Azure Data Factory and Azure Synapse Pipelines | CISA These are enterprise products – but you know the drill:
GitHub to require 2FA for all users by end of 2023!
GitHub is a valuable resource to software developers and so it is a key tool being used in many software supply chains. And we now know how vulnerable we all are to software supply chain hacking – look at this example. So my response when I saw this was the …
Continue reading “GitHub to require 2FA for all users by end of 2023!”
NCSC warns of risks with App stores
This is a warning that we not only access App stores from our phones, but smart TVs, smart speakers, voice assistants, games consoles, computers and other devices all have app stores we use. Application Stores – NCSC.GOV.UK If there are any weaknesses in these various app stores, then you can …
