LightNews LightNews
key0p.bsky.social
@key0p.bsky.social
60 followers 230 following 0 posts
Posts Replies Media Videos
Reposted
schneier.com
What LLMs Know About Their Users

Simon Willison talks about ChatGPT's new memory dossier feature. In his explanation, he illustrates how much the LLM -- and the company -- knows about its users. It's a big quote, but I want you to read it all. Here's a prompt you can use to give you a solid idea…
What LLMs Know About Their Users
Simon Willison talks about ChatGPT's new memory dossier feature. In his explanation, he illustrates how much the LLM -- and the company -- knows about its users. It's a big quote, but I want you to read it all. Here's a prompt you can use to give you a solid idea of what's in that summary. I first saw this shared…
www.schneier.com
June 25, 2025 at 11:04 AM
Reposted
rodtrent.com
Discover how automatic attack disruption protects critical assets while ensuring business continuity techcommunity.micros...

#MicrosoftDefender #DefenderforCloud #Security #MicrosoftSecurity #Cybersecurity #DefenderXDR #MicrosoftThreatIntelligence
Discover how automatic attack disruption protects critical assets while ensuring business continuity | Microsoft Community Hub
Protecting critical assets  Traditional security solutions often operate in a one-size-fits-all alert model that treats every detection equally,...
techcommunity.microsoft.com
May 27, 2025 at 7:02 PM
Reposted
rodtrent.com
Busting myths on Microsoft Security Copilot techcommunity.micros...

#SecurityCopilot #Cybersecurity #MicrosoftSecurity #Security #GenerativeAI
Busting myths on Microsoft Security Copilot | Microsoft Community Hub
This blog aims to dispel common misconceptions surrounding Microsoft Security Copilot, a cutting-edge tool designed to enhance cybersecurity measures. By...
techcommunity.microsoft.com
May 20, 2025 at 5:06 PM
Reposted
rodtrent.com
Introducing EntraFalcon – A Tool to Enumerate Entra ID Objects and Assignments blog.compass-securit...

#MicrosoftEntra #MicrosoftSecurity #Cybersecurity #Azure #AzureAD #Identity #CloudSecurity
May 19, 2025 at 2:25 PM
Reposted
malwarejake.bsky.social
It is criminally stupid of Microsoft to enable this by default.

As one example issue, let's suppose one of your employees has "kitty videos" in their OneDrive. Now you'll have an archive of "kitty videos" on your enterprise network too!
May 12, 2025 at 11:24 PM
Reposted
happygeek.bsky.social
By me @forbes.com: A CVSS 10 Azure vulnerability confirmed by Microsoft. CVE-2025-29813

#infosec

www.forbes.com/sites/daveyw...
Microsoft Confirms Critical 10/10 Cloud Security Vulnerability
Microsoft has confirmed several cloud security vulnerabilities, including one with a maximum critical rating of 10.
www.forbes.com
May 9, 2025 at 3:03 PM
Reposted
powers-hell.com
Sing it from the rafters.
nathanmcnulty.com Nathan McNulty @nathanmcnulty.com · May 6
If you are still using client secrets for applications, there is a shiny new doc you should read through and test out ❤️‍🔥

The TL;DR - use Managed Identities or Federated Credentials whenever possible. If you can't, use certificates, limit secret use.

learn.microsoft.com/...
Migrate applications away from secret-based authentication - Microsoft Entra ID
Migrate applications away from secret-based authentication to improve security and user experience.
learn.microsoft.com
May 7, 2025 at 7:45 AM
Reposted
office365itpros.com
When someone invites an external user to a #Microsoft365 tenant, #EntraID makes that person the sponsor of the new guest account. This information is interesting in terms of finding out how guests join a tenant, so here's how to report it office365itpros.com/2025/04/18/g...
How to Report Entra ID Guest Accounts and Their Sponsors
Entra ID populates the sponsor property for new guest accounts with details of the person who invites the guest to the tenant. It's data that should be used
office365itpros.com
April 18, 2025 at 9:03 AM
Reposted
nathanmcnulty.com
Most Microsoft tenants do not have Advanced Auditing configured correctly, and orgs only find out after it is too late :(

I tried really hard to make this as short and simple as possible. Please be nice to your IR folks and set this up, it's important ;)

nathanmcnulty.com/bl...
Comprehensive Guide to Configuring Advanced Auditing
This post provides everything you need to ensure Advanced Auditing is fully configured and auditing everything we possibly can for both existing and new users. I recently shared guidance for this via social media (see below), and it felt like a perfect time to revisit my previous posts and combine everything into one comprehensive guide :) You likely aren't collecting all available events to the Unified Audit Log First, not all events are enabled or retained optimally. Consider creating this policy in the Purview portal (leave users and record types blank to collect everything). Retention is based on license... pic.twitter.com/IEKKfrkpI8
nathanmcnulty.com
April 16, 2025 at 5:13 AM
Reposted
nathanmcnulty.com
This is huge!!! We can now see the impact a policy would have had historically without ingesting sign in logs to Azure Monitor 🤯

There's a new Preview on CA policies that provides insights on a per-policy basis, and the way they implemented this is so elegant and fast. I love it! :)
March 13, 2025 at 4:02 PM
Reposted
quinnypig.com
Oh hey @malwarejake.bsky.social made the paper: www.theregister.com/2025/03/10/i...
How NOT to f-up your security incident response
Experts say that the way you handle things after the criminals break in can make things better or much, much worse
www.theregister.com
March 11, 2025 at 12:42 PM
Reposted
nathanmcnulty.com
If you work with Entra, you'll want to bookmark and monitor this page 😎

Much of this is in Identity / Secure Score, but it's great to see security guidance cleanly laid out in one doc

You might think this is well known stuff, I assure you it is not :(

learn.microsoft.com/...
March 2, 2025 at 12:46 AM
Reposted
gbevin.uwyn.com
I often think back at this video from Derek Sivers: "The first follower transforms a lone nut into a leader."

This has been true so many times in my experience. If you haven't watched this video yet, it's well worth your time, it's only 3 minutes.

youtu.be/fW8amMCVAJQ
First Follower: Leadership Lessons from Dancing Guy
YouTube video by Derek Sivers
youtu.be
February 22, 2025 at 4:28 PM
Reposted
ketanjoshi.co
Microsoft's own research confirms something that was already pretty obvious: relying on a text generating machine to come up with answers erodes critical thinking, and is a method favoured by those who never liked doing critical thinking in the first place

advait.org/files/lee_20...
advait.org
February 9, 2025 at 10:15 AM
Reposted
bsky.ethicalthreat.com
I'm not sure who put this site together, but this PingCastle cheat sheet is awesome. If you're a PingCastle fan, definitely something to check out... https://pentesting.site/cheat-sheets/pingcastle-cheat-sheet/

If anyone knows who this site belongs to, let me know so I can give a proper shout out!
Pentesting.Site | PingCastle Cheat Sheet
The ultimate PingCastle cheat sheet. Master PingCastle commands for effective Active Directory pentesting and security assessments.
pentesting.site
January 20, 2025 at 5:31 PM
Reposted
happygeek.bsky.social
By me @forbes.com: High-speed brute-force password hacking. Here's what Microsoft 365 account holders need to know. #kudos SpearTip

#infosec

www.forbes.com/sites/daveyw...
Microsoft 365 Password Attack Warning As High-Speed Hackers Strike
Security researchers have warned of attackers using new high-speed brute-force password attacks against Microsoft 365 accounts—here’s what you need to know.
www.forbes.com
January 16, 2025 at 12:01 PM
Reposted
office365itpros.com
You've heard this before, but we are in the final days before the retirement of the #AzureAD and #MSOnline #PowerShell modules at the end of a long-running and much-delayed process. Get off these modules... and use the Graph SDK!
office365itpros.com/2025/01/15/m...
#Microsoft365
MSOnline Module Retirement in April 2025; AzureAD Soon After
The MSOnline module retirement happens in April 2025 and the AzureAD module follows in the 3rd quarter. It's way past time to upgrade PowerShell scripts.
office365itpros.com
January 15, 2025 at 10:30 AM
Reposted
hackernewsbot.bsky.social
How Nat Traversal Works Discussion
How Network Address Translator (NAT) works | Tailscale
Learn how Tailscale can get through Network Address Translators (NAT) and securely connect your devices directly to each other.
tailscale.com
January 5, 2025 at 10:40 AM
Reposted
samilaiho.com
AI-generated phishing emails are getting very good at targeting executives
arstechnica.com/security/202...
AI-generated phishing emails are getting very good at targeting executives
Hyper-personalized emails use “an immense amount” of scraped data.
arstechnica.com
January 4, 2025 at 12:52 PM
Reposted
harmveenstra.bsky.social
It’s 2025, so it’s time to reflect on 2024 :). In this blog post, I will highlight all the great PowerShell things that happened during the year.

#PowerShell #Overview #2024

powershellisfun.com/2025/01/03/2...
PowerShell is fun :)2024 Overview
It’s 2025, so it’s time to reflect on 2024 :). In this blog post, I will highlight all the great PowerShell things that happened during the year.
powershellisfun.com
January 3, 2025 at 1:59 PM
Reposted
swiftonsecurity.com
It's lame but working in Security truly opens your eyes on how little Being Correct matters. It doesn't. I've lived that life, of begging and sitting in fucking failure for years, as I knew my righteousness. Someday people will get it. They didn't.
Being a human is learning to navigate humanity.
December 22, 2024 at 4:58 AM
Reposted
happygeek.bsky.social
By me at TechFinitive: AI and automation driving a massive increase in credential compromise attacks.

#infosec

www.techfinitive.com/ai-and-autom...
AI and automation drive 703% increase in credential compromise attacks | TechFinitive
AI-powered attacks on our credentials are up in every way imaginable - including email and social engineering phishing attacks
www.techfinitive.com
December 19, 2024 at 12:15 PM