Microsoft Office app licensing for MSPs utilising RDS
Read More: Microsoft Office app licensing for MSPs utilising RDSMicrosoft Office app licensing for MSPs utilising RDS – short answer is, if you are an Managed Service Provider (MSP) and you are not a Qualified Multitenant Hoster (QMTH) then you can not provide the Microsoft Office apps via Remote Desktop Services (RDS) to your clients. Recently this question was given to me to answer…
Trend XDR – Microsoft sentinel Integration
Read More: Trend XDR – Microsoft sentinel IntegrationUsing Trend XDR – Microsoft sentinel Integration is an excellent way to connect to additional sources of telemetry data and add this to your corporate instance of Microsoft Sentinel for SIEM and SOAR capabilities. I discovered this article this morning in my feed and thought it would be great to share as it is a…
Easy Fail – Australian critical infrastructure
Read More: Easy Fail – Australian critical infrastructureThe Easy Fail in critical infrastructure should have all of us worried right now, whether it is the water being turned off, the traffic lighting systems that we all rely on to get around the cities we live in or much worse, the Electricity that we used to power our homes and provide us warmth…
Why do businesses not do cyber security!
Read More: Why do businesses not do cyber security!for very long), everything a business spends money on that does not make money is an expense and some expenses are more critical than others.
Articles, ACSC, ACSC essential 8, ASD, ASD 8, ASD essential 8, Client Access Security Broker, Data Loss Prevention, Zero Trust Network Architecture, ZTNA
Once the horse has bolted – or detection and response should not be an early stage cyber resilience control
Read More: Once the horse has bolted – or detection and response should not be an early stage cyber resilience controlOr in other words detection and response solutions should not be a first step in a cyber resilience strategy – after the horse has bolted is too late to be worried about how the animal got out of the stable. The Australian Cyber Security Centre does not even list Endpoint detection and Response solutions in…
Vendor acquisitions not good for existing clients
Read More: Vendor acquisitions not good for existing clientsVendor acquisitions not good for existing clients – please prove me wrong… Kaseya has announced their acquisition of Datto for $6.2 Billion. Kaseya is a leader in the Managed Services software space and also less favourably was breached in 2021, Datto for their part is a leader in the managed backup and recovery market for…
Articles, ACSC, ACSC essential 8, ASD, ASD 8, ASD essential 8, EndPoint Protection, Microsoft Autopatch, Microsoft IntuneMicrosoft Autopatch – Patch Tuesday is gone for good!
Read More: Microsoft Autopatch – Patch Tuesday is gone for good!Microsoft Autopatch – Patch Tuesday is gone for good! As an ex-systems administrator my life back in the good ol’ days was busy. Waiting for the next patches Testing the new patches Deploying the new patches …….. rolling back the new patches where it causes a legacy printer or other device to no longer function!…
Cyber Attack Vectors 2022; where marketing and reality diverge
Read More: Cyber Attack Vectors 2022; where marketing and reality divergeCyber Attack Vectors 2022; where marketing and reality diverge. The Identity Theft resource centre ‘Q1 2022 Data Breach Analysis’ report is an interesting 2022 report with a not surprising result to many cyber security professionals. Human Error is the number One source of cyber breach The number one attack vector “Cyber attack” is in-fact Human…
The cyber security herd effect
Read More: The cyber security herd effectClose your eyes and imagine the African Savannah, you are a “be”wildebeest grazing away happily when an alert is raised and the entire herd of 100s of animals suddenly takes to the plains to outrun whatever the alarm was raised for. This time it was a single lioness looking for an easy meal, but the…
Articles, Microsoft, Microsoft Defender, Microsoft Defender Application Guard, Sandbox, Windows SandboxSandboxing with Windows 10 – Microsoft Defender Application Guard
Read More: Sandboxing with Windows 10 – Microsoft Defender Application GuardSandboxing with Windows 10 – Microsoft Defender Application Guard, the feature to sandbox suspicious or unknown documents has been in Windows for some time and is very useful in preventing Malware from Office macros and other runtime nasties from being able to infect your machine. Sandboxing allows applications / documents etc to run inside their…
Are you an MSP and want to ask a question about ‘how to’ with Microsoft Security? QR code for my WhatsApp group.
About me
I am passionate about Australian organisations improving their cyber security posture, where possible I want to help improve by sharing the questions that I am asked along with some answers, there are many cyber security experts who have a vast amount of knowledge to share, if I can help to aggregate some of this then it is achieving my objective to improve the security posture for all businesses.
I am a current member of AISA Australia (Melbourne), and though I am not a cyber security expert I am a Microsoft Cyber security Expert by certification. I am an enthusiast and continue to learn every day from every conversation I have.
.
Recent Posts
- Microsoft Defender for Endpoint Intro video
- Kasaya CEO says MSP’s will benefit by Vendor Consolidation?
- When to Microsoft Sentinel and when to just XDR!
- Microsoft Sentinel Log ingestion from Business Premium
- Total Tools Totally messed up – Credit card details stolen for 30k customers
Tags
#acsc (2) #asd8 (2) #kicksecio (16) 101 (3) ACSC (2) AI (3) Alan Metcalfe (6) Artificial Intelligence (4) ASD 8 (2) Breach (15) Cyber Security (38) Data leakage (6) Data Protection (5) Endpoint Detection response (3) Extended Detection Response (3) GenAI (2) Generative AI (3) Kicksecio (3) Managed Detection Response (6) Managed Service Provider (6) Microsoft (20) Microsoft Defender for cloud (2) Microsoft Defender for endpoints (11) microsoft licensing (2) okta (2) Safeworlds (9) Safe worlds Safeworlds Safe worlds IPTV Alan Metcalfe (7) Sentinel (4) SIEM (5)
Recent Comments
Archive
- November 2024
- September 2024
- August 2024
- July 2024
- June 2024
- May 2024
- April 2024
- December 2023
- September 2023
- August 2023
- July 2023
- March 2023
- January 2023
- December 2022
- November 2022
- October 2022
- August 2022
- July 2022
- June 2022
- May 2022
- April 2022
- March 2022
- January 2022
- December 2021
- November 2021
- October 2021
- September 2021
- August 2021
- July 2021
- June 2020
- April 2018
- September 2016
- May 2016
- October 2014
- September 2014
- August 2014
- July 2014
- May 2014
- February 2014
- January 2014
- July 2011
- July 2010
- May 2010
- March 2010
- July 2009
- June 2009
- March 2009
Categories
- ACSC
- ACSC essential 8
- Active Directory
- Active Roles Server
- Advanced Managed Detect Response
- AI
- Airlock Digital
- Alan Metcalfe
- AMDR
- Apple
- Application Control
- Architect
- Articles
- Artificial Intelligence
- As Secure As Practical
- ASAP
- ASD
- ASD 8
- ASD essential 8
- Attack surface reduction
- Australian cyber security centre
- Azure Active Directory
- Azure Application Proxy
- Backup
- Bing
- Bitlocker
- Blog
- Bombs
- Breach
- Business Email Compromise
- CASB
- ChatGPT
- CIS 18
- CISA
- CISA Scuba
- Citrix
- Client Access Security Broker
- Cloud
- CoPilot for Security
- Crowdstrike
- Cyber risk
- Cyber Security Framework
- Data Breach
- Data Loss Prevention
- Data Protection
- Defender for O365
- Dell
- Device
- DLP
- DMARC
- Do something
- Email Archiving
- Endpoint Detection Response
- EndPoint Protection
- Entra identity
- EPP
- Exam prep
- Extended detection and response
- Extended Detection Response
- Facebook scams
- Fake news
- FIM 2010
- Funny
- GDAP
- Gen AI
- Global Warming
- Hiring
- HP
- Identity Access Management
- Incident response
- Industry
- Information Protection
- iPad
- IT secrets
- IT senior
- JGES
- Journalistic flare
- Just good enough security
- Kin
- Large Language Model
- Large Language Models
- Least privilege
- M365
- Mac
- mac mini
- Machine Learning
- Macro
- Malware
- Managed Detection Response
- MDR
- MFA
- Microsoft
- Microsoft Autopatch
- Microsoft Azure Active Directory
- Microsoft certification
- Microsoft Defender
- Microsoft Defender Application Guard
- Microsoft Defender for Cloud
- Microsoft Defender for Endpoint
- Microsoft Defender for Endpoint Server
- Microsoft Defender for Identity
- Microsoft Defender Vulnerability Management
- Microsoft Endpoint Manager
- Microsoft Intune
- Microsoft licensing
- Microsoft purview
- Microsoft Sentinel
- Migration
- Mimosa
- Mitre Att&ck
- ML
- money
- MSP
- Multi factor Authentication
- multifactor authentication
- MVCS
- NAS
- NASA
- Network detection and response
- NIST CSF
- O365
- Office 365
- Office Macro
- Open source
- Operating System Hardening
- Opinion
- OSX
- PAM
- people
- Phishing
- Pig Butchering
- Planning
- poor performance
- Privileged Access Management
- Process
- Protection
- Purview Information Protection
- Quest
- Quest Software
- Ransomeware
- Ransomware
- Recession
- Recovery
- repair Disk
- Safe Worlds' IPTV
- Safeworlds
- Safeworlds IPTV
- Safeworlds itv Alan Metcalfe
- safeworlds tv
- SAN
- Sandbox
- SASE
- Scam
- Scams
- SCUBA
- Search
- Secure Access Service Edge
- Security
- Security Assessment
- Security information event management
- Security posture
- SIEM
- Single Label Active Directory
- Single Sign On
- slow
- Social Media
- Software Industry
- Solutions Architect
- SSO
- Storage
- Supplier Breach
- Tablets
- Terminal services
- Tethering
- Thin Provisioning
- Threat and vulnerability management
- Threat Hunting
- universal logic
- VMware
- vWorkspace
- Wifi
- Windows 10
- Windows Autopilot
- Windows Sandbox
- WTH
- Xbox
- XDR
- Zero day
- Zero Trust Network Architecture
- ZTNA