Podcasts about defender atp

Control Panel is going away, SMS based MFA is bad, Project Management is good, SCCM/MEMCM payload tips, MS product name frustrations, and more! Extended Show Notes available at https://hthpc.com Boot Up How are you? Life Cereal Giving up Control (Control Panel going away) Alternate UWP Control Panel GodMode: Make a new folder named GodMode.{ED7BA470-8E54-465E-825C-99712043E01C} Administrative Tools??? Tiff's Outlook for Mac New Experience Rant AskWoody changing hands Microsoft sez: No more SMS-based 2FA NIST said this in 2016 - Other Article Hope this helps! Bookmark this: Microsoft Portals https://msportals.xyz/ Dangling Domains PROJECT MANAGEMENT PMO IS GOOD Don't be afraid of failing projects When A Problem Comes Along, 7-zip it Deploy SCCM/MEMCM/SMS Payloads better: Large applications with large size & many files? 7-zip it! Include the 7-zip executable and DLL, and include a script to locally extract and THEN install. Microsoft's product names are annoying Defender ATP is called what now? Moffice 365? Sharepoint Syntex? WTF is this Some new Teams Features Timed statuses Statuses from Skype for Business/Outlook (OOO/Invisible) That is Accurate Tiff and Steve are Advanced Glasses Users Ask the Stiffs: Question of the Week What is the dumbest acquisition you can think of? Microsoft buys OnlyFans and makes it a social network merged with Yammer Outro - "Plus Delta" 12/8/20 4pm Australian time - Tiff and Adam Fowler - How to Keep Up with Microsoft https://youtu.be/LqeNXx3cxTI We help you, you help us: Rate us on iTunes Send us a Tweet, or a Yam, follow us on OnlyFans --- This episode is sponsored by · Anchor: The easiest way to make a podcast. https://anchor.fm/app

Show Links: YouTube Playlist ALERT! New Blog Series: Automation in Cloud App Security Accelerate your Azure Sentinel Deployment with this Azure DevOps Boards Template A new look for threat analytics Webinar: How to maximize Microsoft Defender ATP configuration using attack simulations Microsoft Defender ATP Ninja Training: August 2020 update              

Attendees Guest: Yoad Dvir Guest title: Security Lead, Central and Eastern Europe Company: Microsoft Abstract Microsoft security portfolio has been growing and diversifying in the last couple of years, adding more capabilities at various areas of information security. In order to better understand Microsoft strategy and offering, we talked with Yoad Dvir, Cyber Security Lead at Microsoft, about the Microsoft new security pillars: Monitoring, Threat Protection and Information Protection. Timing: 0:00 - Introducing our guest 5:45 - Introducing Microsoft security strategy 12:50 - Security monitoring pillars - Azure monitor, Sentinel, Azure analytics and more 21:10 - Microsoft Threat Protection family - Cloudapp, O365 ATP, Defender ATP, Azure ATP 30:50 - diving deeper into Cloudapp 35:30 - Microsoft Information Protection 44:00 - summary and last words

Show Links: Categorizing Microsoft alerts across data sources in Azure Sentinel Microsoft Defender ATP awarded a perfect 5-star rating by SC Media Webinar series: Unleash the hunter in you! Microsoft Threat Protection advanced hunting cheat sheet Introducing event timeline – an innovative, new way to manage your security exposure Introducing Project Freta 13Cubed - Linux Memory Forensics - Memory Capture and Analysis    

Defender ATP web content filtering, HEVC codec security issues, critical F5 vulnerability, Newly announced Teams features, WTF is Docker Compose, Logic Apps, Windows Admin Center frustrations, PowerShell fixes, and more. Extended show notes available at https://hthpc.com Boot-Up (Random topics) ○ Web content filtering with Microsoft Defender ATP now in public preview ○ What the HEVC? ○ CVE-2020-1425 | Microsoft Windows Codecs Library Remote Code Execution Vulnerability ○ CLARIFICATION: HEVC is not related to the iOS file format HEIC. ○ What The F5? No seriously if you have an F5 device you need to stop reading this and patch ○ US considering banning TikTok ○ https://venturebeat.com/2020/07/07/u-s-is-probing-allegations-tiktok-violated-childrens-privacy/ Teams! ○ Teams Announcements - Together Mode! ○ Examining network issues with Teams at the client side - MS Docs - Pulling Logs ○ Complaints about notifications, pop-out, etc. Dock it and Pull It • Docker Compose • Examples: Plex, QBitTorrent, FileBrowser, Minecraft, httpd • Why do we care? IaC / Azure / etc • Docker and Kubernetes comparisons What the P-P-P-PowerApp? • PowerShell vs Power Automate vs Logic Apps • https://powerofpowerplatform.com/power-automate-vs-azure-logic-apps/ That's WAC • Gripe about Windows Admin Center for a bit • "Never RDP into a server again" • Firefox support is iffy • FOLLOW-UP : Shared Connections seems to work in Firefox as of WAC 1910.2. • Slow load times • Can't connect to servers in batches • Credential management is annoying: "To perform a single sign-in using your Windows account, you might need to set up Kerberos constrained delegation." • Tabbed UI when? • Local groups management not possible? • Scheduled tasks (no import options?) etc • CORRECTION: WAC updates more then semi-annually Steve Does PowerShell • What to do if you can't update modules • Unable to resolve package source 'https://www.powershellgallery.com/api/v2' • TLS 1.0 could be the culprit. You can run this per-user command to fix it: • [Net.ServicePointManager]::SecurityProtocol = [Net.SecurityProtocolType]::Tls12 • Source That Is Accurate • Email existed before the world wide web Ask the Stiffs: Question of the Week • If you could bring one technology back what would it be? Outro - "Plus Delta" • We help you, you help us: Rate us on iTunes --- This episode is sponsored by · Anchor: The easiest way to make a podcast. https://anchor.fm/app

Show Links: Webinar: How to get started with Microsoft Defender ATP https://techcommunity.microsoft.com/t5/microsoft-defender-atp/webinar-how-to-get-started-with-microsoft-defender-atp/ba-p/1484869  

Milad Aslaner, principal security program manager at Microsoft, part of the Microsoft Threat Protection engineering team, talks about Defender ATP, his ThreatHunt tool, advanced hunting with KQL, the newly announced Android protection and his brother and sister also get a mention!

Ruben Bouman and Marcus Bakker, both threat hunters and cyberdefense specialists, join me in talking about their DETT&CT project, the MITRE ATT&CK framework, Microsoft Defender ATP and threat hunting in general.

This Week: Threat hunting simplified with Microsoft Threat Protection Short & sweet educational videos on Microsoft Defender ATP Protecting Your (Microsoft) Teams with Azure Sentinel

We talk about Defender ATP's expansion, Exchange retention policies, O365 licensing and compromised accounts, O365 Exchange recipient limits, and more. Extended show notes available at https://hthpc.com/ Boot-Up (Intro…random topics) 00:12 • Ring 2FA: https://www.engadget.com/2020/02/18/ring-requires-two-factor-authentication/ • Microsoft is bringing Defender ATP to Linux, iOS and Android https://www.theverge.com/2020/2/20/21145388/microsoft-antivirus-ios-android-apps-software-defender-security-malware • A brief tangent about Wine on Linux Retention Intervention 9:23 -Exchange MRM VS. Retention Tag Vs. Retention -Global Retention and retention tagging -Why do I need this? Mailboxes: Suggests using Litigation hold or retention polices https://docs.microsoft.com/en-us/microsoft-365/compliance/inactive-mailboxes-in-office-365 https://docs.microsoft.com/en-us/microsoft-365/compliance/create-and-manage-inactive-mailboxes OneDrive: https://docs.microsoft.com/en-us/onedrive/retention-and-deletion O365: Retention Policies and Retention Tags https://docs.microsoft.com/en-us/microsoft-365/compliance/retention-policies. Teams and Sharepoint Limitations to Retention Policies O365 License Recycling and Management 24:30 • https://github.com/AaronDinnage/Licensing O365 Compromised Accounts 31:30 • https://www.reddit.com/r/Office365/comments/f2jkzv/office_365_hack_what_they_did_and_how_to_stop_them/ • Enable 2FA! ○ Do not use SMS based 2FA, listen to this story: https://gimletmedia.com/shows/reply-all/v4he6k/ ○ CORRECTION: The episode was from Reply All, not This Is Uncomfortable (still worth listening to though) • Separate on prem admin accounts “Unplanned Outage” (Sponsor section - "Hope this Helps is helped by…") 39:38 • The Cutting Edge - Bleeding Where It Doesn't Matter O365 Exchange Recipient Limits 40:45 • They have finally come to Exchange Online after a strange absence • https://techcommunity.microsoft.com/t5/exchange-team-blog/customizable-recipient-limits-in-office-365/ba-p/1183228#.Xk2tqMyqnPU.twitter Ask the Stiffs: Question of the Week 43:35 • What kind of IT Instagram Influencer are you? Outro - "Plus Delta”48:04 • Twitter: @HTHThePodcast • We help you, you help us: Rate us on iTunes • Facebook Group: https://www.facebook.com/groups/268339020812998/ • You can watch the raw/unedited feed of the podcast at https://www.twitch.tv/hopethishelps --- This episode is sponsored by · Anchor: The easiest way to make a podcast. https://anchor.fm/app

Podcast of TalkingSecurity with Alexander Benoit about Microsoft Threat Protection, Defender ATP and ExpertsLiveEU.

First up, in our Wanderings, I picked up a hard drive docking station, Tony tests the new Gnome, Moss fights overscanning, and Joe volunteers for Full Circle. Then, in the news, Microsoft is working overtime, Docker gets a second wind, new Debian updates, big .org changes, and more. In security, Microsoft brings Defender ATP to Linux, and another speculative execution vulnerability. Download

Windows Defender ATP (Advanced Threat Protection) ist mehr als ein Virenscanner der mit Virendefintionsdatenbanken arbeitet.  https://docs.microsoft.com/en-us/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-advanced-threat-protection Du hast Feedback oder Fragen, die kannst du gerne per Mail an podcast@hobmaier.net oder in meiner Facebook Gruppe stellen.

# News * Amazon Mitarbeier hören Recordings an: https://www.macrumors.com/2019/04/10/amazon-employees-alexa-voice-recordings/ * Edge Chromium Beta: https://blogs.windows.com/msedgedev/2019/04/08/microsoft-edge-preview-channel-details/#KAJfdJqV37bf1Qok.97 * Home Realm Discovery change: https://docs.microsoft.com/en-us/azure/active-directory/users-groups-roles/signin-realm-discovery * Office 365 Dev Subscription (renewable but 90 days): https://developer.microsoft.com/en-us/graph/blogs/new-renewable-office-365-developer-subscriptions-launch-on-april-3rd/?utm_source=Direct * MS Teams DLP: https://www.petri.com/teams-supports-office-365-data-loss-prevention-policies * ShareGate Apricot O365 Governance Tool: https://sharegate.com/blog/introducing-sharegate-apricot-office-365-governance-tool * Multi Geo is OK, but: https://docs.microsoft.com/en-us/office365/enterprise/configure-search-for-multi-geo # Hörerfragen zu ATP * Unterschied Defender AV und Defender ATP bzw warum nicht ne 3rd Party # Microsoft 365 Evergreen HowTo Was kommt nach der Migration zu Microsoft 365? Der Kunde muss sich mit dem Greenfield beschäftigen. * Microsoft Message Center * Microsoft Roadmap * Microsoft Events (Build, Ignite, ...) * Blogs (Tech Community, MVP, Techies, ...) * Twitter # Feedback, Kritik, Lob, Fragen? * Email: podcast@hairlessinthecloud.com * Twitter: @hairlesscloud * Web: www.hairlessinthecloud.com (Links zu allen Podcast Plattformen) * YouTube: https://www.youtube.com/channel/UCZyx8_G8bbB0YsjMLUGE87Q * Coverarts by CARO (mit Hilfe von pixabay.com)

Reset the x number of days without a Facebook scandal calendar, Microsoft launches Virtual Desktop but begins sunsetting Windows 7, European Wikipedia goes dark, and the hottest coin in crypto is making people remember the glory days of 2017. Sponsors: GetQuip.com/ride Metalab.co  Links: Facebook Stored Hundreds of Millions of User Passwords in Plain Text for Years (Krebs on Security) Can Duruk's Tweet Storm Windows Virtual Desktop is now in public preview (TechCrunch) Microsoft launches previews of Windows Virtual Desktop and Defender ATP for Mac (VentureBeat) Microsoft warns Windows 7 users of looming end to security updates (TechCrunch) European Wikipedias have been turned off for the day to protest dangerous copyright laws (The Verge) Hottest Crypto Coin's Massive Rally Echoes Bitcoin's Glory Days (Bloomberg) APPLE IPAD MINI REVIEW: NO COMPETITION (The Verge) Subscribe to the ad-free feed!

Vorsorge ist gut, aber erst eine Nachsorge komplementiert den Schutz. Nachdem Cyberangriffe immer raffinierter werden, müssen auch die Tools vorhanden sein, um die Angriffe zu erkennen und die Beweislage zu sichern. Tools, die sich wechselnden Bedrohungen anpassen, neue Abwehrmechanismen bereitstellen und die Abhilfemaßnahmen koordinieren. Windows Defender ATP kann dabei unterstützen. Es ist tief in Windows 10 integriert und verschafft dabei den notwendigen Überblick und liefert die Verwaltung von Analysen und Gegenmaßnahmen. glueckkanja.com youtube.com/glueckkanja

In this episode of Defrag Tools, Chris Jackson, the "App Compat Guy" (@appcompatguy), joins us to discuss Windows Defender Advanced Threat Protection (ATP) - a unified platform for preventative protection, post-breach detection, automated investigation, and response.Defender ATP can be used to automatically investigate alerts and remediate complex threats in minutes.We delve into the Windows Defender Security Center, and perform Kusto queries to discover security events for the associated enterprise. Star a trial here.Example Queries - https://github.com/Microsoft/windowsDefenderATP-Hunting-Queries/ATP Blog - https://techcommunity.microsoft.com/t5/What-s-New/bd-p/WDATPNewChris on Channel9 - https://channel9.msdn.com/Events/Speakers/Chris-Jackson

In this episode of Defrag Tools, Chris Jackson, the "App Compat Guy" (@appcompatguy), joins us to discuss Windows Defender Advanced Threat Protection (ATP) - a unified platform for preventative protection, post-breach detection, automated investigation, and response.Defender ATP can be used to automatically investigate alerts and remediate complex threats in minutes.We delve into the Windows Defender Security Center, and perform Kusto queries to discover security events for the associated enterprise. Star a trial here.Example Queries - https://github.com/Microsoft/windowsDefenderATP-Hunting-Queries/ATP Blog - https://techcommunity.microsoft.com/t5/What-s-New/bd-p/WDATPNewChris on Channel9 - https://channel9.msdn.com/Events/Speakers/Chris-Jackson

Security experts from Microsoft discuss phishing, malware protection, threat intelligence, and more. They share candid insights and best practices about using Advanced Threat Protection in Azure, Windows 10, and Office 365 to combat sophisticated cyberattacks from advanced adversaries and to protect company data.These questions — and more — are discussed during this session:[01:30] What are the different Advanced Threat Protection (ATP) products that Microsoft offers?[06:10] With regards to phishing threats, what did the Security Operations Center (SOC) use prior to Office 365 ATP and what are the benefits from this?[10:38] Within the SOC, what—if any—SIEM (Security Information and Event Management) tools and third-party threat feeds do you use to complement your intelligence?[20:01] With regards to phishing—there are a lot of tools to help understand and remediate email text, but can I search for emails using URLs?[24:25] For a company with lots of proprietary information, how secure would ATP be if information about files on a network needs to be sent to Microsoft to be analyzed? Are copies of these files kept on Microsoft servers?[25:44] How is ATP different from normal virus scanning?[32:56] How do Microsoft ATP products compare with other third-party products?[40:42] Is ATP analysis available on free email accounts such as Hotmail or live.com within the context of users accessing personal email on work computers?[45:08] In the SOC, what was one of the most significant findings using Defender ATP?[46:26] How does Microsoft technology help against attack trends?[50:46] What is the one key take away that you would like to leave our audience with today?Access additional technical content, discover new and exciting career opportunities in IT, and much more:Microsoft IT ShowcaseMicrosoft IT CareersLinkedInGet the IT Showcase App

Security experts from Microsoft discuss phishing, malware protection, threat intelligence, and more. They share candid insights and best practices about using Advanced Threat Protection in Azure, Windows 10, and Office 365 to combat sophisticated cyberattacks from advanced adversaries and to protect company data.These questions — and more — are discussed during this session:[01:30] What are the different Advanced Threat Protection (ATP) products that Microsoft offers?[06:10] With regards to phishing threats, what did the Security Operations Center (SOC) use prior to Office 365 ATP and what are the benefits from this?[10:38] Within the SOC, what—if any—SIEM (Security Information and Event Management) tools and third-party threat feeds do you use to complement your intelligence?[20:01] With regards to phishing—there are a lot of tools to help understand and remediate email text, but can I search for emails using URLs?[24:25] For a company with lots of proprietary information, how secure would ATP be if information about files on a network needs to be sent to Microsoft to be analyzed? Are copies of these files kept on Microsoft servers?[25:44] How is ATP different from normal virus scanning?[32:56] How do Microsoft ATP products compare with other third-party products?[40:42] Is ATP analysis available on free email accounts such as Hotmail or live.com within the context of users accessing personal email on work computers?[45:08] In the SOC, what was one of the most significant findings using Defender ATP?[46:26] How does Microsoft technology help against attack trends?[50:46] What is the one key take away that you would like to leave our audience with today?Access additional technical content, discover new and exciting career opportunities in IT, and much more:Microsoft IT ShowcaseMicrosoft IT CareersLinkedInGet the IT Showcase App

Security experts from Microsoft discuss phishing, malware protection, threat intelligence, and more. They share candid insights and best practices about using Advanced Threat Protection in Azure, Windows 10, and Office 365 to combat sophisticated cyberattacks from advanced adversaries and to protect company data.These questions — and more — are discussed during this session:[01:30] What are the different Advanced Threat Protection (ATP) products that Microsoft offers?[06:10] With regards to phishing threats, what did the Security Operations Center (SOC) use prior to Office 365 ATP and what are the benefits from this?[10:38] Within the SOC, what—if any—SIEM (Security Information and Event Management) tools and third-party threat feeds do you use to complement your intelligence?[20:01] With regards to phishing—there are a lot of tools to help understand and remediate email text, but can I search for emails using URLs?[24:25] For a company with lots of proprietary information, how secure would ATP be if information about files on a network needs to be sent to Microsoft to be analyzed? Are copies of these files kept on Microsoft servers?[25:44] How is ATP different from normal virus scanning?[32:56] How do Microsoft ATP products compare with other third-party products?[40:42] Is ATP analysis available on free email accounts such as Hotmail or live.com within the context of users accessing personal email on work computers?[45:08] In the SOC, what was one of the most significant findings using Defender ATP?[46:26] How does Microsoft technology help against attack trends?[50:46] What is the one key take away that you would like to leave our audience with today?Access additional technical content, discover new and exciting career opportunities in IT, and much more:Microsoft IT ShowcaseMicrosoft IT CareersLinkedInGet the IT Showcase App