Hairless in the Cloud - Microsoft 365 - Security und Collaboration

Heute zu Gast rund um das Thema Apple Intelligence Ugur Koc (Microsoft MVP) https://ugurkoc.de https://www.linkedin.com/in/ugurkocde/ https://github.com/ugurkocde/ Copilot Summary [Einführung und Podcast-Setup]: Marco, Jan und Ugur besprachen die Einrichtung ihres Podcasts, einschließlich der Nutzung von Copilot zur Zusammenfassung des Transkripts und der Bedeutung des Herausschneidens irrelevanter Teile. 0:38 [Podcast-Reihe "Welcome to AI"]: Jan erklärte, dass ihre Podcast-Reihe "Welcome to AI" sich auf AI-Themen konzentriert und erwähnte, dass Kollegen möglicherweise aufgrund des Titelformats nicht über die verschiedenen Episoden informiert sind. 1:51 [Gastvorstellung]: Jan und Marco stellten Ugur Koc vor und hoben seine Beiträge zur Community und seine Expertise in Apple AI und Intune-Management hervor. 2:47 [Überblick über Apple Intelligence]: Ugur gab einen Überblick über Apple Intelligence und erklärte, dass der Fokus auf verbraucherorientierten Funktionen wie Gamification, Zusammenfassung und Umformulierung liegt und wie diese in das Apple-Ökosystem integriert sind. 5:52 [AI in Apple-Produkten]: Ugur diskutierte, wie AI bereits in Apple-Produkte integriert ist, wie z.B. die Erkennung von Haustieren durch HomeKit und die Verbesserung der Benutzererfahrung durch Funktionen wie Bildbearbeitung und Benachrichtigungszusammenfassung. 8:21 [Vergleich mit anderen AI-Tools]: Marco und Ugur verglichen Apple AI mit anderen AI-Tools wie Google Photos und Microsoft Copilot und stellten die Unterschiede in den Funktionen und der Integration fest. 10:37 [Verbesserungen bei Siri]: Ugur erklärte die Verbesserungen bei Siri durch die Integration von AI, die eine bessere Kontextualisierung und genauere Antworten ermöglichen, sowie die bevorstehende Integration mit ChatGPT. 21:34 [Geschäftsanwendungen und Integration]: Jan und Ugur diskutierten die potenziellen Geschäftsanwendungen für Apple AI und stellten fest, dass es derzeit eher auf Verbraucher ausgerichtet ist, aber in Zukunft Möglichkeiten zur Integration mit Geschäftstools bestehen. 25:19 [Datenschutz- und Sicherheitsbedenken]: Ugur hob die Datenschutz- und Sicherheitsmaßnahmen hervor, die Apple für AI-Funktionen implementiert hat, einschließlich der Verarbeitung auf dem Gerät und der Nutzung von privaten Cloud-Computing für intensivere Aufgaben. 16:35 [Tests und Verfügbarkeit]: Ugur gab Informationen darüber, wie man Apple AI-Funktionen testen kann, indem man die Region und Spracheinstellungen ändert, und erwähnte die erwartete breitere Verfügbarkeit im April nächsten Jahres. 45:53 [Abschluss und Kontaktinformationen]: Jan und Marco beendeten den Podcast, indem sie Ugur dankten und Informationen darüber gaben, wie man Ugurs Arbeit auf LinkedIn und GitHub verfolgen kann. 47:21

Wir haben unser Version 100 gefeiert und schauen nun vorwärts. Jan hat sich heute mit dem Hacken der AI auseinander gesetzt und auch versucht den Microsoft 365 Copilot ausztutrickes. Marco hat versucht seine Stimme zu clonen und hat sich in den Tiefer der Anforderungen von Hardware und Software verloren. Wir müssen also noch eine Episode mehr alles selber machen ;) Links zur Themen in der Folge: https://www.youtube.com/@ThorstenMueller

Kim Kischel is a good friend of our podcast team. We talked to her in 2019 when Ignite was much bigger and the world wasn't aware of what an pandemic is. In the meanwhile Kim is Director for Marketing of the whole Defender XDR suite - and this is exactly what we talk about with her. Its great to see and hear her excitement about the product - was really good to have her back in our podcast!

Lavanya Lakshman is a Director for Product Management at Microsoft and working on one of the most exciting topics Microsoft is currently focusing on: Copilot. Together with our friend Oliver Kieselbach we talk with Lavanya about Copilot in Intune, Security Copilot and how all this interacts.

Paul Huijbregts is a Principal Product Manager for Defender for Endpoint and a legend in the team. We talk about the latest improvements he and his team is working on, like for example MDE for Windows Subsystem for Windows.

We had the honor to host Alex Weinert and Etan Basseri on our podcast. Alex is a vice president at Microsoft and responsible for multiple identity security topics. Etan is an old friend of us and he is a product manager in Ales' team. Together we talk identity security in Microsoft products and Alex' vision on identity security. This episode is a must.

Our guest James Key is a Senior Product Manager at Microsoft and working on Security Copilot. We dive into this brand new product, its capabilities and the future of SOC and Blue Team work. We had a blast talking with James, the future is going to be very interesting. https://www.linkedin.com/in/jameskeyholisticsecurity/

Guest: Miceile Barrett (Product Manager at Microsoft) https://www.linkedin.com/in/miceile-barrett https://twitter.com/MSFTMiceile We talked about the Next Generation of OneDrive. Colored folders, Mac support, OneDrive limits and more with Miceile from the OneDrive Team. Unveiling the Next Generation of OneDrive https://techcommunity.microsoft.com/t5/microsoft-onedrive-blog/unveiling-the-next-generation-of-onedrive/ba-p/3935612

Guest: Joe Fernandez (Product Manager at Microsoft) https://www.linkedin.com/in/fernandezjoe/ https://twitter.com/fdezjose We talk about the Ignite Announcements of Copilot Studio and Power Automate in general. Introducing Microsoft Copilot Studio and new features in Copilot for Microsoft 365   | Microsoft 365 Blog

Tiander Turpijn is Principal Program Manager at Microsoft and working on the integration of the Microsoft 365 Defender Portal and the Sentinel Portal. We discussed with Tiander what we can expect from this new unified portal. Tiander on LinkedIn: https://www.linkedin.com/in/tianderturpijn Tiander on X: https://x.com/TianderTurpijn?s=20

Eben ist die Keynote fertig und wir haben uns kurz hingesetzt und all die Copiloten und AIs sortiert. Das Setup ist noch etwas frisch und bei unseren Gästen für den Rest des Tages bekommen wir auch das Audio besser hin. Haltet durch.

Der Start unsere 2023 Ignite Podcast Serie vom Frankfurter Flughafen

Chris Brumm zu Gast bei uns - wir sprechen über seinen Besuch auf der Identiverse in Las Vegas. Chris auf LinkedIn: https://www.linkedin.com/in/christopherbrumm/ Chris auf Twitter: https://twitter.com/@cbrhh

News - Teams: Auto hand lowering (after speak) - Teams: Greenscreen - Teams: Video Filter Snapchat - Teams: Leave meeting on all devices - Teams: Premium - Apple VR/AR Vision Pro - Apple Camera Gimmicks - Neue Leute für CSOC: https://www.glueckkanja-gab.com/de/jobs/#cyber-security-analyst-fk02xvz - ChatGPT - Gandalf AI https://gandalf.lakera.ai - Analyse LEDs to steal secrets https://arstechnica.com/information-technology/2023/06/hackers-can-steal-cryptographic-keys-by-video-recording-connected-power-leds-60-feet-away/ Security Copilot - https://www.microsoft.com/en-us/security/business/ai-machine-learning/microsoft-security-copilot Avatar in Meetings - 3D Avatars (aka Mesh) - Install a app - Create your avatar (3 stück) - Lippenbewegungen - Emotes (raise hands) - Immersive Meetings (Spaces) - Walk in Meetings

Azure verbindet Florian Stöckl, Azure Lead bei glueckkanja-gab sowohl mit seiner Freizeit als auch - ihr ahnt es- mit seinem Beruf. In dieser Episode erzählt er, wie er die Allgäuer Faschingsparade, seines Heimatdorfes über Azure Media Services stream, was eine Landing Zone wirklich ist und vor allem: was man tun kann, wenn der schlimmste aller Fälle eingetroffen ist. Die Buchempfehlung von Florian lautet: The Phoenix Project.

Es ist 2023 und wir sind gut angekommen. Der erste Freitag der 13. des Jahres hat gehalten was der Aberglaube hergibt. Leere Startmenüs und was nun Herr Microsoft Defender? Eine Runde ChatGPT und dann analysiert Marco Jans Teams Chat Verhalten und hat auch gleich ein ungefragten Verbesserungsvorschlag parat. Links: - Cloud Security Day 2023-02-16 in München https://www.linkedin.com/events/cloudsecurityday20237020735507227627520/about/ - Microsoft Immersion Workshop: Shadow Hunter (In-Person) - GlueckKanja GAB https://msevents.microsoft.com/event?id=32863655 - Microsoft Immersion Workshop: Into the Breach (In person) https://msevents.microsoft.com/event?id=2098158774 - ASR Goes Wild aka #ASRmagedon https://techcommunity.microsoft.com/t5/microsoft-defender-for-endpoint/recovering-from-attack-surface-reduction-rule-shortcut-deletions/ba-p/3716011

Die letzte Folge in 2022 blickt auf ein Jahr im Microsoft 365 Umfeld zurück. Was erwartet uns 2023? Was macht Hairless in the Cloud 2023? Nach "nur" 10 Folgen in 2022 haben wir Luft nach oben und könnten die 100er Marke knacken. Wir wünschen euch schöne Feiertage und einen guten Rutsch. WIr sehen und hören uns 2023 wieder. Links: - Pink Thumb 2023 https://emptydc.com/2022/12/09/pink-thumb-2023

Gast: Oliver Kieselbach Das Wichtigste Zur Ignite 2022 rund um die Themen: - Workplace und Device Management - Collaboration und Communication - Security und Threat Protection Wir freuen uns über eine gute Bewertung in Deiner Podcast App !!

News - Wie war Dein Urlaub? - Die Queen ist tot - 10 Sexdezillarden - Sentinel manual Incident Creation - Guided Hunting in M365 Defender - https://techcommunity.microsoft.com/t5/microsoft-365-defender-blog/hunt-in-microsoft-365-defender-without-kql/ba-p/3607989 - WPNinjaSummit - Microsoft Ignite - Teams Room Licensing Changes 3x the price - https://www.microsoft.com/en-us/microsoft-365/blog/2022/09/06/meet-microsoft-teams-rooms-pro/?utm_source=pocket_mylist - Viva Engade now with Stories - By By AAD Viral Tenants aka unmanaged Tenants - https://techcommunity.microsoft.com/t5/microsoft-entra-azure-ad-blog/say-goodbye-to-unmanaged-azure-ad-accounts-for-b2b-collaboration/a-p/3094111?utm_source=pocket_mylist - SPO Doc Lob with Default Label for Docs - https://twitter.com/YusufsDSBlog/status/1563640950265679872 - Visio On Web more icons - https://www.microsoft.com/microsoft-365/roadmap?featureid=98116 - New Power Toys Text Extractor - https://www.thurrott.com/windows/windows-11/272569/microsoft-adds-three-more-tools-to-powertoys - Podcast Empfehlung Geschichte aus Geschichte - https://www.geschichte.fm/ Hacking Teams - GIFShell - https://www.bleepingcomputer.com/news/security/gifshell-attack-creates-reverse-shell-using-microsoft-teams-gifs/ - Teams Token Stealing - https://www.bleepingcomputer.com/news/security/microsoft-teams-stores-auth-tokens-as-cleartext-in-windows-linux-macs/

NEWS Musk kauf Twitter - nicht Pwn2Own (TrendMicro), Sandbox Outbreak Teams: 450k $, aber auch privescalation Win11, Ubuntu und Sandbox Outbreak Tesla Infotainment System Teams Collaborative Annotations - https://www.microsoft.com/microsoft-365/roadmap?featureid=86732 Google Pixel Ökosystem wie Apple? - https://www.mobiflip.de/kommentar-google-pixel-oekosystem/ New Outlook - https://techcommunity.microsoft.com/t5/outlook-blog/things-to-know-about-the-new-outlook-for-windows/ba-p/3383964 MS Build vom 24. - 16.05.2022 - https://mybuild.microsoft.com/ Cross Tenant Access Policies Azure AD External Identities Azure AD B2B Collaboration (2017) Azure AD B2B Direct Connect (Shared Channels) - https://docs.microsoft.com/en-us/azure/active-directory/external-identities/b2b-direct-connect-overview Wichtig: Es gibt kein AAD Object in eurem Tenant mehr Conditional Access funktioniert, aber denkt dran dass es keine User Objekt mehr gibt (Trusted Guest Scenario) Tech Community Post zu XTAP: https://techcommunity.microsoft.com/t5/microsoft-teams-community-blog/teams-connect-with-your-partners-get-to-know-the-azure-ad-config/ba-p/3267140 Trust Settings sind cool besonders für Complex Orgs Defender Updates TVM heißt jetzt Microsoft Defender Vulnerability Management: https://docs.microsoft.com/de-de/microsoft-365/security/defender-vulnerability-management/defender-vulnerability-management-capabilities?view=o365-worldwide Stand alone oder als Add-On zu P2 P2 Device discovery Device inventory Vulnerability assessment Configuration assessment Risk based prio Remediation tracking Software assessment Add-on Security Baseline Assessment Block vuln apps Browser extensions Certificate assessment Network Share Analysis MDE Troubleshooting Mode: https://jeffreyappel.nl/microsoft-defender-for-endpoint-troubleshooting-mode-how-to-use-it/

Oliver Kieselbach https://twitter.com/okieselb Gibt ein Überblick über die Ankündigungen aus dem Windows Hybrid Work Event aus dem Bereich MEM und Windows 11 Hardware (Security) Windows powers the future of hybrid work (microsoft.com) #Windows11 - #MicrosoftPluton support - #SmartAppControl - Enhanced #DefenderSmartScreen - #CredentialGuard by default - Additional LSA protection by default - #PersonalDataEncryption - #ConfigLock - (#HVCI) default enhancements - #WDAC driver blocks

Thorsten Pickhan MVP for Office Apps & Services | #MicrosoftTeams enthusiast and UC guy | #Community Speaker | blogger | Organizer of the @TeamsUG_DE in #Bochum - https://twitter.com/tpickhan - https://office365.thorpick.de/ - https://www.youtube.com/c/ThorstenPickhan/ Agenda - Wer bist du und wo (Tech) kommst du her? Thema - Was ist der Unterschied zwischen Telefonieren und mit Teams telefonieren? - Braucht man heute noch die klassische Telefonie? - Was ist die einfachste Option für Telefonie in M365? - Was ist die "komplizierte" Version? - Wenn noch Zeit… dann noch Audio Conferencing? Words for Bullshit Bingo für dein nächsten Meeting - Public Switched Telephone Network (PSTN) - Private Branch Exchange (PBX) - Session Border Controller (SBC)

Danke an Andrej!

Special Guest für diese Folge: Unser Kollege Thomas Naunheim und wir sprechen über das Thema Identitäten im Azure Umfeld. Benutzer, Service Principal, App Regsitration, Enterprise Apps, Workload Identities... am Ende habt ihr den Durchblick. https://twitter.com/thomas_live https://www.cloud-architekt.net/ Federated identity credentials https://docs.microsoft.com/en-us/graph/api/resources/federatedidentitycredentials-overview?view=graph-rest-beta Managed Identities (System vs. Assigned): https://docs.microsoft.com/en-us/azure/active-directory/managed-identities-azure-resources/overview#managed-identity-types Application Registration vs. Service Principal https://docs.microsoft.com/en-us/azure/active-directory/develop/app-objects-and-service-principals Detection of abusing Azure AD Federated Identity Credentials in GitHub Actions https://www.cloud-architekt.net/github-enterprise-monitoring-sentinel/

Gundog v2: install-module gundog https://emptydc.com/2022/02/08/gundog-2/ PowerShell um TenantID zu bekommen: https://github.com/jangeisbauer/MiscPowerShell/blob/main/Get-TenantIDbyName.ps1 Basic Logs (im Kontrast zu Analytic Logs) Große Datenmenen wie Netzwerklogs Günstigere Ingestions Kosten Dafür Kosten für Queries Retention 8 Tage (statt 90) Keine Alerts nur für Ad Hoc Hunting Archived Logs 7 Jahre Low cost IngestionTime Transformations: https://docs.microsoft.com/en-us/azure/azure-monitor/logs/ingestion-time-transformations

News - Teams News 2022-01 https://techcommunity.microsoft.com/t5/microsoft-teams-blog/what-s-new-in-microsoft-teams-january-2022/ba-p/3082888?utm_source=pocket_mylist - Custom Background on the web - Meine Hardware - Dell vs Microsoft - Teams Meeting Recording Expiration https://techcommunity.microsoft.com/t5/microsoft-teams-blog/how-to-manage-microsoft-teams-meeting-recording-auto-expiration/ba-p/3053035?utm_source=pocket_mylist - Azure AD Cross Tenant Access policies leaked (NDA/private preview) - AIP Client outphase https://techcommunity.microsoft.com/t5/security-compliance-and-identity/announcing-aip-unified-labeling-client-maintenance-mode-and/ba-p/3043613?utm_source=pocket_mylist Umfragen in Teams - https://support.microsoft.com/en-us/office/poll-attendees-during-a-teams-meeting-9923b7d4-ea97-4aa2-b8b8-b45fefe7d454 - Basiert auf Microsoft Forms - Einfach den Termin auswählen und die Forms App hinzufügen - Umfragen können im Vorfeld erstellt werden - Im Termin kann man die dann einfach starten udn wieder schließen - Bei den Usern kommt ein Popup - Umfragen können so eingestellt werden, dass alle Presenter diese bearbeiten können - Reduziertes Set an Funktion von Forms - Multiple Choice - Multiple Choice Quiz - Word Cloud - Im Englischen werden auch Fragen vorgeschlagen - Erbenisse landen auch in der Forms Appp aber da kein Bezug auf das Meeting :( - Export nach Excel - In Teams Kalender über die die Details am besten einzusehen - Organizer, Presenter und Attendee wird hier immer wichtiger (Result, Delete, …)

Special Guest for this episode is: Olaf Hartong one of the founders of Faclon Force. He is also a MVP, Detection Engineer and knows stuff about Security Threats https://twitter.com/olafhartong https://olafhartong.nl

Gäste Thomas Naunheim (Twitter: @thomas_live) Oliver Kieselbach (Twitter: @okieselb) Themen: Book of news: https://news.microsoft.com/ignite-november-2021-book-of-news Modern Collab (Marco) Microsoft Loop Mesh for Microsoft Teams (Avatar as video + full VR mode) Microsoft Editor with Context IQ Identity (Thomas) Security of Workflow Identities Conditional Access Enhancements Identity Governance und Entitlement Management Enterprise Mobility (Oliver) Custom Compliance Linux Compliance Linux enrollment (Intune App) Defender Risk Score for macOS Security (Jan) MDE: Tabs in Hunting and TVM for iOS and Android New Names: https://www.linkedin.com/feed/update/urn:li:activity:6861630452428505088?commentUrn=urn%3Ali%3Acomment%3A%28activity%3A6861630452428505088%2C6861929350405611520%29 Sentinel Solutions and Near Realtime Rules

News Neue MS Roadmap (nur in EN-US) https://www.microsoft.com/en-us/microsoft-365/roadmap?filters= Teams Rich Broadcasting – Cameo, Seaker Coach, Rich Q&A, Stream to linkedin https://techcommunity.microsoft.com/t5/microsoft-teams-blog/elevate-webinar-and-broadcasting-experiences-with-microsoft/ba-p/2784943 Teams Recording Playback up to 2x - https://m365admin.handsontek.net/microsoft-stream-variable-playback-speed-0-5-2x-for-microsoft-teams-meeting-recordings/ Backup and Restore Edge profile - https://regarding365.com/back-up-restore-and-migrate-microsoft-edge-browser-profiles-between-pcs-e953f7aa053d Stack Overflow Keyboard - https://stackoverflow.blog/2021/09/28/become-a-better-coder-with-this-one-weird-click/ OneDrive Files in O365 Files On Demand No disk space waste, 3 states Office is always cloud first Mobile Features Differential Sync 250 GB files Easy sharing Best on windows Good to know TMP, desktop.ini, .ds_store files are not synced Sync for B2B is a thing (MFA will block) Invalid character " * : < > ? / | PST is now supported and solved by lower sync frequency and lower version history https://support.microsoft.com/en-us/office/restrictions-and-limitations-in-onedrive-and-sharepoint-64883a5d-228e-48f5-b3d2-eb39e07630fa Konnekt for the rescue – https://konnekt.io Sentinel Data KQL Query Events Alerts Incidents

- Windows 11 - Neue Surface Geräte (Studio & Duo2) - Guter Samariter Attack mit AirTag: https://krebsonsecurity.com/2021/09/apple-airtag-bug-enables-good-samaritan-attack/ - GitHub Copilot ………………………….. Marco mal ausprobiert???? - Brute Force Azure AD https://www.secureworks.com/research/undetected-azure-active-directory-brute-force-attacks - Seamless SSO Enpoint /usernamemixed, eigentlich für hybrid joined clients für SSO - Ist aber momentan für alle Tenants enabled - Dagegen kann man BF attacken fahren, ohne MFA und ohne CA - Diese werden nicht gelogged - Es gibt auch schon einen PoC für ein BF script auf Github - Gegen eine BF Attacke hilft trotzdem SmartLockout in AAD - Allerdings nicht gegen password spray - es hängt also weiter an der PW Qualität - Außerdem, selbst wenn einer an ein PW kommt hilft ggf noch CA oder und MFA - Microsoft hat nun angekündigt, dass diese Events künftig gelogged werden und dies wurde auf TW schon bestätigt - Außerdem wird der Endpoint per default disabled und man kann ihn künftig disablen manuell - Teams News - https://techcommunity.microsoft.com/t5/microsoft-teams-blog/what-s-new-in-microsoft-teams-september-2021/ba-p/2793627 - CarPlay - Pin a message - Reply to message - Open in Office by default - Neue Apple Devices - MIP Co-Authoring im Desktop GA - https://techcommunity.microsoft.com/t5/security-compliance-and-identity/co-authoring-on-microsoft-information-protection-encrypted/ba-p/2693718 - GKGAB Webcast: https://www.youtube.com/watch?v=vOz4JIJoSW8 - Teams Co Organizer (Nov 2021) - https://www.microsoft.com/en-in/microsoft-365/roadmap?filters=Microsoft%20Teams&searchterms=co-organize - Events - Microsoft Ignite November 2–4: https://myignite.microsoft.com/home - WorkplaceNinjaSummit - Lightweight PLans in Planner - https://m365admin.handsontek.net/lightweight-plans-in-planner - Trek vs Wars: 34 Jahre https://mobile.twitter.com/jonathansfrakes/status/1443678370676437012

https://scepman.com Special Guest: Dr. Christoph Hannebauer

News Fußball EM202(0|1) Pride: https://mobile.twitter.com/Oly_Berlin/status/1394224565551828994 Hunting Queries on https://github.com/jangeisbauer Teams Feature by Platform: https://support.microsoft.com/en-us/office/teams-features-by-platform-debe7ff4-7db4-4138-b7d0-fcc276f392d3?ui=en-US&rs=en-US&ad=US Dave Kennedy Playlist: https://twitter.com/HackingDave/status/1401545215157149696?s=20 Viva Insights Wellbeing https://www.youtube.com/watch?v=DnQeo4KI3lM https://techcommunity.microsoft.com/t5/microsoft-viva-blog/introducing-headspace-a-new-focus-mode-and-quiet-time-settings/ba-p/2431919 New Whiteboard for Hybrid Work: https://techcommunity.microsoft.com/t5/microsoft-365-blog/meet-the-new-microsoft-whiteboard-designed-for-hybrid-work/ba-p/2445539 John McAfee ist tot Und dann hat er ein Video hochgeladen: https://www.youtube.com/watch?v=bKgf5PaBzyg Teams Room System New: https://techcommunity.microsoft.com/t5/microsoft-teams-blog/new-experiences-coming-to-microsoft-teams-rooms-to-allow/ba-p/2451553 Pink thumb: search for pink thumb in google store: https://emptydc.com/2021/06/22/pink-thumb/ Teams Webinar Webcast: https://youtu.be/74hwAOSV0gI?t=297 Visio for everyone: https://www.microsoft.com/en-us/microsoft-365/blog/2021/06/09/bringing-visio-to-microsoft-365-diagramming-for-everyone/ Visual Studio 2022 Preview: https://visualstudio.microsoft.com/vs/preview/vs2022/ Rename your SharePoint tenant: https://docs.microsoft.com/en-us/sharepoint/tenant-rename M365 Free DNS Domain: https://www.myo365.site/ Windows 11 Snaplayout Snapgroups Dock Widgets Store Android Apps Teams MSA Required for Home

Dr. Nestori Syynimaa (Senior Principal Security Researcher at Secureworks) Dr Azure AD, Identity Hacker and Blackhat Speaker From Finland, the Author of AADInternals - Dr Nestori Syynimaa - https://twitter.com/DrAzureAD - https://o365blog.com/ - https://www.linkedin.com/in/nestori/ Topics: - BPRT - Bulk Primary Refresh Tokens - Join Devices to AAD - Password hash sync --> seamless sign in (additional option for PHS)

Mit Christian Heim und Christian Keller (beide Customer Engineers bei Microsoft --> aka PFEs) sprechen wir in dieser Episode über den Umgang mit dem Wandel in einer Microsoft Cloud Welt. Insbesondere sprechen wir ausgiebig über den sehr erfolgreichen Blogpost, den die beiden geschrieben haben: https://techcommunity.microsoft.com/t5/core-infrastructure-and-security/staying-on-top-of-office-365-updates/ba-p/1201118

Microsoft Azure Security Center, 3rd Edition available for pre-order now https://www.microsoftpressstore.com/store/microsoft-azure-security-center-9780137343423 Guests: Yuri Diogenes (Principal Program Manager at C+AI Security CxE Team at Microsoft) https://www.linkedin.com/in/yuridiogenes/ https://twitter.com/yuridiogenes https://about.me/ydio https://podcasts.apple.com/podcast/id1536487206 Tom Janetscheck (Security Program Manager at Microsoft) https://www.linkedin.com/in/thomas-janetscheck/ https://twitter.com/azureandbeyond https://blog.azureandbeyond.com/ We had a great talk with Tom and Yuri regarding their new book covering Azure Security Center. Listen to the show and you will get the opportunity to win a free copy of the book!

News Hafnium Ever Given - https://www.theverge.com/tldr/2021/3/25/22350300/suez-canal-ship-stuck-ever-given-boat-stuck Yammer Guests - https://techcommunity.microsoft.com/t5/yammer-blog/guest-access-in-yammer-is-now-generally-available/ba-p/2218392 MVP Summit Ignite Endpoint Manager - https://www.youtube.com/watch?v=bZUP1dh8AF8 I'm a PC wechselt die Seiten - https://www.thurrott.com/windows/windows-10/248213/justin-long-is-no-longer-a-mac-in-new-intel-ads?utm_source=rss&utm_medium=rss&utm_campaign=justin-long-is-no-longer-a-mac-in-new-intel-ads Jan Findtime Remote Desktop aus dem Store Power Toys Fancy Zone Camtasia + Snagit Marco Zoomit ShareX Paint.net PowerPoint Replace Image https://m365maps.com/ Fun https://www.youtube.com/watch?v=URqDE1l5XT4 https://www.youtube.com/watch?v=IbC1ZRPtOpY

Heute mit Niklas, Oliver, Jan und Marco rund um die Ignite News https://news.microsoft.com/ignite-march-2021-book-of-news/ Azure Niklas Bachmann https://www.linkedin.com/in/niklas-bachmann-66a863158/ Virtual WAN updates - User VPN and VMware SD-WAN Partnering Scalable Bastion Service Azure Backup Archive Tier Preview Azure Private Marketplace GA Azure Resource Mover GA Azure Firewall Premium Preview Azure Disks Performance Tiers Collab Marco Scheel https://techcommunity.microsoft.com/t5/microsoft-teams-blog/what-s-new-in-microsoft-teams-microsoft-ignite-2021/ba-p/2118226 Meetings Presenter View Video Layouts 1k interactive Meetings Microsoft Teams Connect Shared Channels based on B2B Teams Multi Geo Safe Links for Teams Operator Connect (Calling + Conferencing) Low Data Mode Teams + Azure Calling Services SharePoint Governance Reports (Anonymous Sharing Links) Security Jan Geisbauer Security Kram eben die Show notes liest eh keiner Windows Oliver Kieselbach https://www.linkedin.com/in/oliver-kieselbach-a4a3409/ 1 Application Reliability 2 Restart frequency 3 Productivity Score Windows Update for Business improvements 4 Driver and Firmware update policies 5 Expediting Quality Updates 6 Known Issue Rollback (KIR) Delivery Optimization 7 Cloud-based congestion detection -> prevent download storm -> service elects someone and then this device can be the super spreader client min. 2004 -> cloud -> later this year 8 Settings Catalog 9 Defender + Tunnel App combined 10 Setup Assistant iOS native MFA support -> henne ei trotzdem -> TAP

News Das Ende ist Nahe - https://twitter.com/timpritlove/status/1362756062072422405?s=20 Pandemie Stay Alive Calls - https://mobile.twitter.com/vanhybrid/status/1358709192371154945 New file sharing in teams - https://m365admin.handsontek.net/new-file-sharing-experience-in-microsoft-teams/ Community Calls - https://developer.microsoft.com/en-us/office/blogs/microsoft-365-pnp-general-developer-sig-recording-18th-of-february-2021/ Microsoft Journal - https://www.microsoft.com/en-us/garage/blog/2021/02/an-ink-first-experience-with-journal-a-microsoft-garage-project/ Power Apps in Teams Milestones & Bulletins - https://techcommunity.microsoft.com/t5/microsoft-teams-blog/track-projects-and-share-news-in-teams-with-two-new-power-apps/ba-p/2118479 Dave Plummer - https://www.youtube.com/watch?v=f8VBOiPV-_M TAP https://docs.microsoft.com/en-us/azure/active-directory/authentication/howto-authentication-temporary-access-pass https://goodworkaround.com/2021/02/12/checking-out-the-new-azure-ad-temporary-access-pass-preview-feature/ Microsoft Viva https://www.microsoft.com/en-us/microsoft-viva Insights = MyAnalyics (früher Delve) + MyWorkplace Analytics (Böse in deutschland) Topics = Project Cortex ist Knowlegde Management mit Tags, Wiki, etc Connections = Ist quasi ein SharePoint Intranet das man auch in Teams einbinden kann (früher Home Site App) Learning = "iframe" um alle möglichen Lernplatformen in Teams anzuzeigen (LinkedIn Learning)

News - Emotet - Solarwinds - OWA KI - SharePoint OneDrive merged admin center - https://techcommunity.microsoft.com/t5/- microsoft-onedrive-blog/bringing-onedrive-settings-into-sharepoint-admin-center-for/- ba-p/2054894 - Request data move 30.04.2021!!! - https://docs.microsoft.com/en-us/microsoft-365/- enterprise/request-your-data-move?view=o365-worldwide - Clubhouse - Apple macht jetzt Kopfhörer - Neue Website - https://hairlessinthecloud.com - Microsoft Security 10 Mrd: https://www.microsoft.com/security/blog/2021/01/27/- microsoft-surpasses-10-billion-in-security-business-revenue-more-than-40-percent-year-- over-year-growth/ - Teams WebHook - https://marcoscheel.de/post/2021/01/- 20210127-microsoftteams-webhookupdate/ - Unified Labels with SPO Sharing - https://docs.microsoft.com/en-us/microsoft-365/- compliance/sensitivity-labels-teams-groups-sites?view=o365-worldwide Marco - Automation PowerShell, CLI, … - Teams, SharePoint, Azure AD, AZ, Microsoft Graph SDK, … - https://marcoscheel.de/post/2021/01/20210124-m365teamsbackup-aadapp/ - https://pnp.github.io/powershell/articles/upgrading.html Jan - Privilege Escalation in AAD: https://emptydc.com/2020/12/10/privilege-escalation-in-azure-ad/

Zusammen mit GeekSprech spielen wir Hardcore TechTabu.

oliverkieselbach.com

Ragnar Heil (Channel Account Manager EMEA Central bei Quest) https://twitter.com/ragnarh https://ragnarheil.de/ https://ragnar.blog/ Wer ist Ragnar Heil? Ignite Ankündigung „MS Stream New Vision“ - Zurück zu SharePoint - Gut oder schlecht? Deine Meinung Microsoft Stream basierte Events - Team Live Events vs Stream Live Events Event Setup - Software - Hardware - Tipps & Tricks Links https://streamyard.com/ https://obsproject.com/de https://techcommunity.microsoft.com/t5/microsoft-stream-blog/a-new-vision-for-microsoft-stream/ba-p/1686304

News Trump Corona Gegner & der Schülerbesuch in einer Lungenklink Blackfriday Woche! Pluton: https://www.techradar.com/news/microsoft-debuts-mysterious-new-processor-that-will-define-the-future-of-windows-pcs Hunt across cloud app activities with M365 Defender :https://techcommunity.microsoft.com/t5/microsoft-365-defender/hunt-across-cloud-app-activities-with-microsoft-365-defender/ba-p/1893857 Exchange Online Microsoft Teams KI Fundstück der Woche: Alexa reagiert auf WC Spülung .NET Conf 2020 - https://www.youtube.com/watch?v=mS6ykjdOVRg .NET 5 - https://www.youtube.com/watch?v=o-esVzL3YLI DLP Policies & Sens Label - https://office365itpros.com/2020/07/06/data-loss-prevention-with-sensitivity-labels/ Bill Gates' neuer Podcast: https://www.gatesnotes.com/Podcast Security Voraussagen für 2021 (https://securelist.com/apt-predictions-for-2021/99387/) APTs will buy initial network access from cybercriminals Von anderer Quellen: Zukunft liegt in data exfiltration / not locking Canary Tokens: https://canarytokens.org/generate Fritbox2Sentinel FritzBox2Sentinel: https://emptydc.com/2020/11/13/fritzbox-2-sentinel/ Productivity Score https://docs.microsoft.com/en-us/microsoft-365/admin/productivity/productivity-score?view=o365-worldwide

News: STOP THE VOTE !1!!! KI Fussballkamera verwechselt glatzköpfigen Linienrichter mit Ball: https://www.heise.de/news/Autonome-Fussballkamera-verwechselt-glatzkoepfigen-Linienrichter-mit-dem-Ball-4943323.html Teams Connector Sentinel: https://techcommunity.microsoft.com/t5/azure-sentinel/expanding-microsoft-teams-log-data-in-azure-sentinel/ba-p/1811827 Mandalorian Staffel 2: https://www.kino.de/serie/the-mandalorian-2019/news/the-mandalorian-staffel-2-ab-freitag-geht-der-kampf-um-baby-yoda-weiter/ Sign-ins Report for Service-Principals: https://docs.microsoft.com/en-us/azure/active-directory/reports-monitoring/concept-all-sign-ins Advanced Password Spray Attack Detection: https://techcommunity.microsoft.com/t5/azure-active-directory-identity/advancing-password-spray-attack-detection/ba-p/1276936 Low and slow (many thousand IP addresses as source) e.g. from a botnet Diese Attacken gehen unter, fallen fast nicht auf NUR Wenn Microsoft über ALLE TENANTS weltweit schaut Password Spray Detection: check single hash failing across multiple accounts worldwide Das alles ist jetzt in ID Protection Teams Meeting Recording 3x3: https://admin.microsoft.com/Adminportal/Home?ref=MessageCenter&id=MC225568 Exchange + Adressing (no groups): https://techcommunity.microsoft.com/t5/exchange-team-blog/plus-addressing-now-available-in-exchange-online/ba-p/1824651 Xbox und Playstation next gen: https://www.thurrott.com/games/xbox/xbox-series-x/243536/xbox-series-x-review?utm_source=rss&utm_medium=rss&utm_campaign=xbox-series-x-review Teams News: Spotlight (for all) https://techcommunity.microsoft.com/t5/microsoft-teams-blog/what-s-new-in-microsoft-teams-october-2020/ba-p/1824864 Teams Display und Audio https://techcommunity.microsoft.com/t5/microsoft-teams-blog/microsoft-teams-displays-now-available/ba-p/1810291 Jupyter Notebooks in Azure https://docs.microsoft.com/en-us/azure/sentinel/notebooks

In this episode we deeply talk about Microsoft Defender for Office 365 with our special guest Pawel Partyka. Pawel is Program Manager at Microsoft in the Microsoft Defender for Office 365 team. This is a technically deep dive into the most important features in the area of Email security. Pawel was a great guest and great fun to talk to! Follow Pawel on Twitter: https://twitter.com/Pawp81

Collaboration - Stream stirbt und SharePoint lebt - Meetings werden besser (Together Mode Backgrounds, Custom layouts, Breakout, …) - Teams Federation in Gruppen Chats - Meeting Teilnehmer immer auf Mute - SharePoint File Sharing Guest expiration - Info Protection (Group oder Datei) und SharePoint Sharing - Exchange Email +Notation - Teams Templates im Admin - Teams Panels, Capacitiy - Teams search Links https://techcommunity.microsoft.com/t5/microsoft-teams-blog/what-s-new-in-microsoft-teams-microsoft-ignite-2020/ba-p/1665600 https://techcommunity.microsoft.com/t5/microsoft-stream-blog/a-new-vision-for-microsoft-stream/ba-p/1686304 https://techcommunity.microsoft.com/t5/microsoft-sharepoint-blog/what-s-new-in-security-and-compliance-in-sharepoint-and-onedrive/ba-p/1696705 Security - MTP = Microsoft 365 Defender - MDATP = Microsoft Defender for Endpoint - OATP= Microsoft Defender for Office 365 - AATP = Microsoft Defender for Identity The Azure Security Center solutions are rebranded accordingly: - Azure Defender for Servers - Azure Defender for IoT (cool CyberX stuff for OT) - Azure Defender for SQL - Microsoft Defender for Endpoint (fka: MDATP) now supports Android (GA) and iOS (Preview) and macOS is now supported with TVM. Microsoft Threat Protection == Microsoft 365 Defender + Azure Sentinel + Azure Defender Neue Attack Simulator Szenarien: - Credential Harvest - Malware Attachment - Link in Attachment - Link to Malware

News - Tesla wurde gehackt - naja fast - https://www.zdnet.com/article/elon-musk-confirms-russian-hacking-plot-targeted-tesla-factory/ - Corona Update - Computer Health: Monitor Placement / Setup - https://ergo-plus.com/office-ergonomics-position-computer-monitor/ - top eye level - Tilt - Teams Recording in DE und PowerAutomate! - https://techcommunity.microsoft.com/t5/microsoft-teams-blog/what-s-new-in-microsoft-teams-august-2020/ba-p/1619717 - Billige Meetings - https://www.microsoft.com/en-us/microsoft-365/blog/2020/09/08/3-deals-meeting-calling-experiences-microsoft-teams/ - Azure AD B2B Lizenzupdate 50k MAU free - https://azure.microsoft.com/en-us/pricing/details/active-directory/external-identities/ - Fluid Framework Open Source - https://fluidframework.com/playground - MS Lists GA - https://techcommunity.microsoft.com/t5/microsoft-teams-blog/microsoft-lists-in-microsoft-teams-is-now-generally-available/ba-p/1621979 Grüße - GeekSprech - https://geeksprech.de/geeksprech-podcast-folge-43-hairless-in-the-cloud-ist-schuld/ Vertrauen in die Cloud - Apple, Google und/oder Microsoft? - https://docs.microsoft.com/en-us/microsoft-365/compliance/encryption?view=o365-worldwide - Wer hat den Key? Wer hat den Key erstellt? - Service Encryption - Exchange Online, Skype for Business, SharePoint Online, and OneDrive for Business - Customer Key (aka Advanced Encryption with BYOK) - HSM or AKV - Availability Key - Azure Information Encryption - Single file Verschlüsselung - RMS - BYOD - HYOK-DoubleKeyEncryption - Only Unified Labeling Client - https://techcommunity.microsoft.com/t5/microsoft-security-and/announcing-public-preview-of-double-key-encryption-for-microsoft/ba-p/1534451 - Double Key Encryption helps organizations protect their mission-critical data - a small volume of their overall data. - Customer Lockbox - Organisatorisch, technisch unterstützt und zertifiziert

NEWS Mimikatz: https://dirkjanm.io/digging-further-into-the-primary-refresh-token/ Ignite 2020: https://www.microsoft.com/en-us/ignite Become a KQL Ninja: https://security-tzu.com/2020/08/07/become-a-kql-ninja/ Teams: https://techcommunity.microsoft.com/t5/microsoft-teams-blog/what-s-new-in-microsoft-teams-july-2020/ba-p/1551561 SCC Report: https://github.com/jangeisbauer/SCCReport Booking "14 people are currently watching this product" --> random()*12 + 3: https://twitter.com/RoninDey/status/1292002070363541505?s=20 MCAS spoofing: https://stephanwaelde.com/2020/08/04/mitigate-mcas-issue-with-user-agent-spoofing/ Überall tauchen DUOs auf: https://twitter.com/matvelloso/status/1291576776238305281?s=20 I LIKE TO MOVE IT Mover.io (2019 gekauft) "Alternativen" SharePoint Migration Tool, ShareGate, AvePoint, … Viele Anbindungen (14): S3, AZ Blob, Box, Dropbox, G Suite, Gdrive, O365, OneDrive User vs Admin Self Service Migration OneDrive 2 OneDrive DropBox 2 OneDrive OneDrive 2 DropBox Admin driven migration Immer noch die Rede von User! User Mapping = Site Mapping = Url 2 Url Permission Mapping (upn = upn) - damit auch B2B machbar? UX Anmelden an Service 1 Anmelden an Service 2 Auf jeder Seite den Ordner wählen Im Ziel auch anlegbar Tech 2 AAD Apps (alles OIDC/Oauth) Anmeldung an zwei Tenants in derselben Browser Session Mover OneDrive (user consent) Office 365 Mover (admin consent) Keine "Lizenz" Performance: Mein OneDrive 45k 106 GB = 12 stunden Use Case Blob to SharePoint über ein Schedule https://www.youtube.com/watch?v=vuo8kD5zF5I BUT YOU ARE NOT ALLOWED TO: Microsoft Endpoint Data Loss Prevention Public Preview Native built into Windows (in MDATP component and edge) Compliance.microsoft.com Sensitive Info Type: ex german passport number AND Share Condition: Is shared with somebody inside or outside my org Audit or restrict activities on windows devices Upload to cloudservices or access by unallowed browsers Copy to clipboard Copy to USB Copy to network share Access by unallowed apps Print https://techcommunity.microsoft.com/t5/microsoft-security-and/announcing-public-preview-of-microsoft-endpoint-data-loss/ba-p/1534085

Special Guest: Christian Baumgartner Ein neuer Tenant muss her, auf was muss ich achten. Namen, Dienste, … News Collaboration Bar im Test https://glueckkanja.com/blog/collaboration/futureworkplace/teams/2020/06/yealink-vc210-product-review/ Teams Breakout rooms https://myteamsday.com/2020/04/17/breakoutrooms-in-teams/ Corona App https://mobile.twitter.com/ard_bab/status/1272909142819299330 BLM https://www.hanselman.com/blog/EasilyRenameYourGitDefaultBranchFromMasterToMain.aspx gkgab https://www.gab.de/fuehrende-microsoft-partner-fusionieren/ https://glueckkanja.com/de/unternehmen/media-kit Neuer Tenant Name des Tenant Christian, wie hast du das "bulk" geprüft Services Exchange Teams SharePoint OneDrive Security Conditional Access All the ATP Migration O365 Security AD

News from Build Edge Sidebar search Pinterest integration Switch profiles Progressive Web Apps Lists Project Reunion Desktop und UWP Neue Auth Api für MFA in https://techcommunity.microsoft.com/t5/azure-active-directory-identity/manage-your-authentication-phone-numbers-and-more-in-new/ba-p/1257359 PowerToys Linux GUI apps Fluid Office Doc (Modularisierung von Content) Every Developer is welcome - Scott Hanselman - https://mybuild.microsoft.com/sessions/871ef73f-f04a-405b-a0fa-01d7433067d1 Windows 2004 Graphic Card Temp in Task Manager Only with dedicated GPU card Only supported in Celsius Rename virtual desktops Reset from cloud Win Taste und Punkt für Emojis Menü Windows Hello PIN in Safe Mode Recover from the cloud Restart Apps Many Notepad features