Security

ScubaGear: Open-source tool to assess Microsoft 365 configurations for security gaps https://www.helpnetsecurity.com/2024/11/18/scubagear-open-source-tool-assess-microsoft-365-security/

The environment:Windows 10+, VMware 8u2, SentinelOne, Fortigate Fw 7.0.15, Unsecured VPN tunnels to biz partners The Good:+Cove backup w Cloud really good. Attackers will wipe local backup repo. Caveat; when…

BasicFirewall, Spam Filter, Backup (AV if not Windows) MidPatch Mgt, Web Filter, Monitoring, Password managers, MFA on email + Cloud, Users are not local Admin BronzeEDR, VPN, Scheduled Vulnerability Scanning,…

80%+ breaches originate from emailNeed to make a safer email client or Outlook Plugin geo filtered logindont’ send out-of-office to external addresses, options for in contact list, msg historyspf policy;…

This is why we don’t recommend Sonicwall I am replacing an out of support Sonicwall with a Fortigate firewall Nobody knows the PPPoE password because why would they Get into…

If your SentinelOne fails to login OR you can’t setup MFA / 2FA switch from Chrome to Firefox

Fortigate v7.0+ (?) allow for Zones. I usually call my zones Public and Private. then I can add interfaces to those zones, ie add the WAN interface to the Public…

Best Keep current with updates. When updates are released to the public, bad actors will reverse-engineer the changes and make “Hackz” based on those flaws. Many have methods to include…

Always: uBlock Origin Blocks Ads etc, used it for years, never had any reason to changeBitWarden Password manager, the last remaining free one When needed: Read Aloud lets me multi-taskGoogle…

Free software to audit your AD passwords. Compares passwords to HaveIBeenPwned database. Other software can do the same but this does it for free and it’s easy to use. https://specopssoft.com/blog/checking-pwned-passwords-active-directory/