unrecognizable black colleagues browsing laptop at table with face mask

Avoid PlugX malware

Once these two items have been set the ability of PlugX to take advantage of innocent people should be thwarted.

man raising his right arm

Disrupting Qakbot

All it took was an email attachment policy, a little hardening of Microsoft Office and the configuration of the built-in anti-virus software

person wearing white pants and white socks standing beside brown broom

How to isolate a device using Defender

let’s say that you’ve come across a situation, and you want to remove a device from the network – remotely, while you investigate. Interestingly this device, need not be enrolled in Defender for Business. It can an unmanaged device to

The Frozen Wild Dnieper River

How to prevent weak MFA session token theft

Microsoft recently published an analysis of the techniques used by one popular phishing-as-a-service provider. We’ll take that analysis and implement a solution based upon it

a man in red shirt covering his face

Error setting up Identities in Defender

To resolve this error, you need to remove three security groups from Azure AD. These groups were created by default in your tenant but have since been deprecated by Defender.

How to Defender

This is a collection of posts about Microsoft Defender. How to set, configure, troubleshoot and implement.

sunflower during sunset

How to use the Azure AD conditional access templates

Finally, there is an easy way to deploy a base set of conditional access policies to users, devices and apps in a tenant. Microsoft calls it Conditional Access Templates and you will find them in Azure AD – Security – Conditional Access – Conditional Access Templates.