Tag Archives: Cloud

Microsoft requires MFA for all Azure users; it begins in July 2024

[German]Brief information that should have been known since mid-May 2024. Microsoft wants to improve the security of Azure user accounts. Redmond is therefore making multifactor authentication (MFA) mandatory for all Azure user accounts. Implementation is set to begin in July … Continue reading

Posted in Cloud, Security | Tagged , , | Leave a comment

Advertising

Microsoft will better secure private Outlook mail accounts

[German]A few days ago, Microsoft made an announcement that it wants to better secure "Outlook for private users" in future. The mention of Outlook is a bit of a misnomer. The aim is to improve the security of online e-mail … Continue reading

Posted in Cloud, Security | Tagged , , | Leave a comment

How to find weak passwords in Active Directory and eliminate them with PowerShell

[Sponsored Post]Weak or compromised passwords are a known gateway for attackers. If you are able to identify which users in Active Directory (AD) are threatened by this, then PowerShell can help to remedy it. However, PowerShell scripts cannot eliminate basic AD deficits, other tools are needed for this. More ...

Whistleblower: Microsoft ignored warnings about AD bug; was exploited in 2020 SolarWinds hack

[German]We all know that security has been a priority at Microsoft for years – no kidding. And every Windows is the best and most secure Windows ever. Whistleblower and ex-employee Andrew Harris says Microsoft ignored his warnings about an Active … Continue reading

Posted in Cloud, Security | Tagged , | Leave a comment

Advertising

Hornetsecurity is down (June 7, 2024; since ~ 7:00 a.m.)

[German]German blog reader Jona contacted me a few minutes ago and asked, whether I know anything about a malfunction at "Hornet-Security". In the meantime, there is a second report from Matthias about a service disruption. But it looks as if … Continue reading

Posted in Cloud, issue | Tagged , , | 1 Comment

Tenable discovers critical vulnerability in Microsoft Azure; company won't patch (June 2024)

[German]The security experts at Tenable have discovered a vulnerability in Microsoft Azure that they classify as critical. However, Microsoft has announced that it does not intend to patch this vulnerability, which affects more than ten Azure services. This means that … Continue reading

Posted in Cloud, Security | Tagged , , | Leave a comment

Advertising

Strange cloud access to collector.azure.*

[German]I'm posting here an observation from readers that relates to Microsoft's Azure and Microsoft 365 services. Since mid-April 2024, there have been cyclical accesses to various domains that list "collector" as a subdomain. Virustotal probably has no complaints, so it's … Continue reading

Posted in Cloud, Security, Software | Tagged , , , | 1 Comment

Azure Entra ID: Microsoft confirms issues with Single Sign On (SSO)

[German]Administrators have been complaining for some time about sporadic problems with Single Sign On (SSO) under Microsoft's Azure Entra ID. Users are then sporadically unable to log in to their Microsoft 365 apps. Now there seems to be confirmation from … Continue reading

Posted in Cloud, issue, Office, Security | Tagged , , , | Leave a comment

Broadcom leaks email-addresses from VMware administrators; AWS is out as a VMware customer, relief for cloud customers

[German]Today we have a small collective article on Broadcom and VMware. Broadcom made a mistake and, as the company had to admit, they sent the e-mails of administrators at customer sites around the world for everyone to see. And at … Continue reading

Posted in Virtualization | Tagged , , , | Leave a comment

Advertising

Does Intune store on-premises CA certificates permanently in the cloud?

[German]Good question raised by a Microsoft Intune administrator. The man had problems with certificates and took a closer look. It looks like Intune is permanently storing the CA certificates generated for on-premises systems in the cloud. Another Intune administrator pointed … Continue reading

Posted in Cloud, devices, Security, Windows | Tagged , , , | Leave a comment

US CISA orders admins in authorities to mitigate the cyber risks of the Microsoft Cloud

[English]On April 2, 2024, the US cybersecurity authority CISA issued a directive to the administrators of US authorities requiring them to "mitigate" or eliminate the cyber risks posed to customers by a hack of the Microsoft Cloud or the Microsoft … Continue reading

Posted in Cloud, Security | Tagged , | Leave a comment