It all adds up!
Read More: It all adds up!I had no idea at all! over 100 notifiable and probable “State Based” significant hacks to October 2021 – either against government orgs or with a value of more than $1 million. Four of those were against Australian government orgs and one against a New Zealand Government org. One of our business partner orgs who…
Board level: concepts and explanations
Read More: Board level: concepts and explanationsHave you ever “lost” you audience when presenting a solution to your board of directors? no matter how hard you try to explain why your company needs this cyber security widget or process, they do not understand “your” urgency nor accept what you are explaining? Try this at home when you are passionate about a…
phonespy: Mobile app targeting South Korean citizens
Read More: phonespy: Mobile app targeting South Korean citizensWorrying trend in that criminals are using mobile apps to steal data from our devices. PhoneSpy only affects Android and is not an Android Playstore app, rather it is side loaded via web traffic redirection or social engineering. PhoneSpy is able to access personal images, videos, phone logs, stored data, as well as taking photos…
Advanced Managed Detect Response, AMDR, Articles, Endpoint Detection Response, Extended Detection Response
Zero Trust vendor architecture: Ethical, or not ethical?
Read More: Zero Trust vendor architecture: Ethical, or not ethical?A vulnerability is disclosed in Palo Alto VPN hardware/software, the company who discovered this: Randori may not have disclosed this to the vendor in a timely fashion. The premise that is suggested for this, is that as Randori are a Red Teaming company they used this Vulnerability to infiltrate their clients who used Palo Alto…
Advanced Managed Detect Response, AMDR, Articles, Breach, Endpoint Detection Response, Extended Detection ResponseNo business too small to be a target for Cyber crime
Read More: No business too small to be a target for Cyber crimeSmall to Mid enterprise companies in Australia are extremely vulnerable to revenue disruption and most likely financial disaster from cyber breach – Auto parts importer lost $880k 2 months ago as an example, not the typical target for a cyber criminal, or is it? Yesterday in one Risk Intelligence report we ran for a client…
Bypassing an EDR
Read More: Bypassing an EDRFollowing Blue team security researchers is extremely fascinating. The battleground of Blue teams vs cyber criminals is constantly moving forward. The linked article below is a security researchers demonstrating how to avoid detection with most EDR solutions. combining all of our knowledge, we now can practically use everything we want, under the radar, evading the…
Articles, ACSC, ASD, ASD essential 8, Cyber Security Framework, MFA, Multi factor Authentication, multifactor authentication, Privileged Access ManagementACSC Essential Eight #1
Read More: ACSC Essential Eight #1Commence your cyber security resilience journey with the ACSC Essential eight, the ACSC is short for the Australian Cyber Security Centre and the ACSC the central source for all things related to the Australian Government cyber security strategy. The ACSC is not the sole source of truth and most of the ACSC recommendations do relate…
“inventory stock” for Facebook, is you!
Read More: “inventory stock” for Facebook, is you!But you know that already! Interesting comparison in the linked article below and somewhat equivalent , though the post “person” selling our private information could not go as far as Facebook has been able to unhindered. In my opinion it is not that my data is being sold which is an issue, it is the…
Empathy in cyber security
Read More: Empathy in cyber securityEmpathy, the ability to understand the feelings of others as if we are in their shoes. Have we as cyber security professionals really thought that the target of a Malware attack is not us when we evaluate our cyber security posture? It is almost never the business leader or the person reading these articles that…
The problem is NOT Cyber security!
Read More: The problem is NOT Cyber security!The “Compliance with the NSW Cyber Security Policy” special report released on the 28th October 2021 should be a serious concern to every NSW resident who has their Personally Identifiable Information being “securely” held by a government agency. Vic, NSW, QLD, SA, NT and TAS could very likely be transposed with NSW and these findings…
Are you an MSP and want to ask a question about ‘how to’ with Microsoft Security? QR code for my WhatsApp group.
About me
I am passionate about Australian organisations improving their cyber security posture, where possible I want to help improve by sharing the questions that I am asked along with some answers, there are many cyber security experts who have a vast amount of knowledge to share, if I can help to aggregate some of this then it is achieving my objective to improve the security posture for all businesses.
I am a current member of AISA Australia (Melbourne), and though I am not a cyber security expert I am a Microsoft Cyber security Expert by certification. I am an enthusiast and continue to learn every day from every conversation I have.
.
Recent Posts
- Microsoft Defender for Endpoint Intro video
- Kasaya CEO says MSP’s will benefit by Vendor Consolidation?
- When to Microsoft Sentinel and when to just XDR!
- Microsoft Sentinel Log ingestion from Business Premium
- Total Tools Totally messed up – Credit card details stolen for 30k customers
Tags
#acsc (2) #asd8 (2) #kicksecio (16) 101 (3) ACSC (2) AI (3) Alan Metcalfe (6) Artificial Intelligence (4) ASD 8 (2) Breach (15) Cyber Security (38) Data leakage (6) Data Protection (5) Endpoint Detection response (3) Extended Detection Response (3) GenAI (2) Generative AI (3) Kicksecio (3) Managed Detection Response (6) Managed Service Provider (6) Microsoft (20) Microsoft Defender for cloud (2) Microsoft Defender for endpoints (11) microsoft licensing (2) okta (2) Safeworlds (9) Safe worlds Safeworlds Safe worlds IPTV Alan Metcalfe (7) Sentinel (4) SIEM (5)
Recent Comments
Archive
- November 2024
- September 2024
- August 2024
- July 2024
- June 2024
- May 2024
- April 2024
- December 2023
- September 2023
- August 2023
- July 2023
- March 2023
- January 2023
- December 2022
- November 2022
- October 2022
- August 2022
- July 2022
- June 2022
- May 2022
- April 2022
- March 2022
- January 2022
- December 2021
- November 2021
- October 2021
- September 2021
- August 2021
- July 2021
- June 2020
- April 2018
- September 2016
- May 2016
- October 2014
- September 2014
- August 2014
- July 2014
- May 2014
- February 2014
- January 2014
- July 2011
- July 2010
- May 2010
- March 2010
- July 2009
- June 2009
- March 2009
Categories
- ACSC
- ACSC essential 8
- Active Directory
- Active Roles Server
- Advanced Managed Detect Response
- AI
- Airlock Digital
- Alan Metcalfe
- AMDR
- Apple
- Application Control
- Architect
- Articles
- Artificial Intelligence
- As Secure As Practical
- ASAP
- ASD
- ASD 8
- ASD essential 8
- Attack surface reduction
- Australian cyber security centre
- Azure Active Directory
- Azure Application Proxy
- Backup
- Bing
- Bitlocker
- Blog
- Bombs
- Breach
- Business Email Compromise
- CASB
- ChatGPT
- CIS 18
- CISA
- CISA Scuba
- Citrix
- Client Access Security Broker
- Cloud
- CoPilot for Security
- Crowdstrike
- Cyber risk
- Cyber Security Framework
- Data Breach
- Data Loss Prevention
- Data Protection
- Defender for O365
- Dell
- Device
- DLP
- DMARC
- Do something
- Email Archiving
- Endpoint Detection Response
- EndPoint Protection
- Entra identity
- EPP
- Exam prep
- Extended detection and response
- Extended Detection Response
- Facebook scams
- Fake news
- FIM 2010
- Funny
- GDAP
- Gen AI
- Global Warming
- Hiring
- HP
- Identity Access Management
- Incident response
- Industry
- Information Protection
- iPad
- IT secrets
- IT senior
- JGES
- Journalistic flare
- Just good enough security
- Kin
- Large Language Model
- Large Language Models
- Least privilege
- M365
- Mac
- mac mini
- Machine Learning
- Macro
- Malware
- Managed Detection Response
- MDR
- MFA
- Microsoft
- Microsoft Autopatch
- Microsoft Azure Active Directory
- Microsoft certification
- Microsoft Defender
- Microsoft Defender Application Guard
- Microsoft Defender for Cloud
- Microsoft Defender for Endpoint
- Microsoft Defender for Endpoint Server
- Microsoft Defender for Identity
- Microsoft Defender Vulnerability Management
- Microsoft Endpoint Manager
- Microsoft Intune
- Microsoft licensing
- Microsoft purview
- Microsoft Sentinel
- Migration
- Mimosa
- Mitre Att&ck
- ML
- money
- MSP
- Multi factor Authentication
- multifactor authentication
- MVCS
- NAS
- NASA
- Network detection and response
- NIST CSF
- O365
- Office 365
- Office Macro
- Open source
- Operating System Hardening
- Opinion
- OSX
- PAM
- people
- Phishing
- Pig Butchering
- Planning
- poor performance
- Privileged Access Management
- Process
- Protection
- Purview Information Protection
- Quest
- Quest Software
- Ransomeware
- Ransomware
- Recession
- Recovery
- repair Disk
- Safe Worlds' IPTV
- Safeworlds
- Safeworlds IPTV
- Safeworlds itv Alan Metcalfe
- safeworlds tv
- SAN
- Sandbox
- SASE
- Scam
- Scams
- SCUBA
- Search
- Secure Access Service Edge
- Security
- Security Assessment
- Security information event management
- Security posture
- SIEM
- Single Label Active Directory
- Single Sign On
- slow
- Social Media
- Software Industry
- Solutions Architect
- SSO
- Storage
- Supplier Breach
- Tablets
- Terminal services
- Tethering
- Thin Provisioning
- Threat and vulnerability management
- Threat Hunting
- universal logic
- VMware
- vWorkspace
- Wifi
- Windows 10
- Windows Autopilot
- Windows Sandbox
- WTH
- Xbox
- XDR
- Zero day
- Zero Trust Network Architecture
- ZTNA