microsoft

Blog - Everything's gonna be alright

Everything’s Gonna Be Alright

At least if you get patching   The start of Autumn is always a quiet time for us Cyber bloggers. Presumably having taken time off over the summer to rest and recuperate on their islands with flip-top Volcano lairs or Yachts with a submarine, plane and another boat inside therm, we think that this must be planning … Read more

on
Epic - Faith No More

Epic – Faith No More

Domain Name Services – Friend & Foe  Every reader of this blog will know that the Domain Name Service is a program/component/server role (depending on how old you are and how you take your poison) which turns the names for Internet resources like websites, mail servers etc. into their registered IP addresses.  More technical readers … Read more

on
Jitterbug header

Jitterbug

This week we are starting out with something unapologetically geeky, which shows a fresh attitude to platform development at Microsoft and if you are anything like us, has the capability of sending you down a rabbit hole for an afternoon at least.  This week Jonathan Norman, the vulnerability research lead for Microsoft Edge (we are still gruntled … Read more

on
Zero Trust header

Less Than Zero Trust

In this blog we talk about the concept of ‘Zero Trust’, what it is, why it is important and what it means for you.  Ours is an industry of buzzwords, hype, trend and quite often smoke and mirrors. Technologies come, usually in the form of some niche, initially expensive functionality. They enter the mainstream as the big … Read more

on
Header China Crisis - Christian

China Crisis – Christian 

This week has been fairly monumental in the somewhat shady world of Cyber Geopolitics. Can we get our heads around any of it? Let us see.   The UK, US and EU have accused China of being the initial party behind attacks on internet facing Microsoft Exchange servers which have affected 30,000 organisations globally.   In January this year, an alleged “Chinese-linked group (aka state … Read more

on
Microsoft Inspire Event

Microsoft Inspire 2021 – Highlights 

Last week saw the 2021 Microsoft Inspire conference, once more delivered virtually rather than in the decadent halls of Las Vegas.  Here we present our takeouts from the event in case you missed anything!  Hybrid Workforce   ‘Remote working’ is the new normal and is being redefined by Microsoft as having a Hybrid Workforce. Microsoft is supporting this transition … Read more

on
Header post spOOL

spOOL

RCE on DC? Defender for Identity saves the day In this month’s ‘Patch Tuesday’ (so many bugs, so little time), Microsoft announced a patch for a critical remote code execution vulnerability (RCE) in the Windows Print Spooler CVE-20212-1675. Requiring local or remote access to the vulnerable host, Admin privileges were said to be potentially easily available, although … Read more

on

Look Out

This week it is bad news for people running in-house, Internet facing Exchange servers, which are being actively exploited by nation-state actors to facilitate the theft of intellectual property and other data from seemingly specific verticals, including infectious disease researchers, higher education institutions, defence contractors, policy

on

The Swords of a Thousand Men

…and women, possibly children too, if you believe the papers. Even if you had spent the last 2 months trekking across the Mongolian Steppe avoiding what is left of the Horde you will surely have heard about the sublime breach of Government departments, large software companies, and possibly some big Internationals via a supply chain

on