Reposted by Sascha Kaufmann
Fox News hosts saying Gavin Newsom’s tweets are childish and unbecoming of the governor of the state of California shows that you can lead a horse to water but the joke will still go over their heads.
August 17, 2025 at 12:21 PM
Fox News hosts saying Gavin Newsom’s tweets are childish and unbecoming of the governor of the state of California shows that you can lead a horse to water but the joke will still go over their heads.
Reposted by Sascha Kaufmann
It's here! Modern auth for Entra Connect Sync is now available 🚀
This finally moves from user/pass to auth with Entra to using a Service Principle with a certificate. Another benefit is misconfigs in CA policies will no longer break syncing :)
Docs:
learn.microsoft.com/...
This finally moves from user/pass to auth with Entra to using a Service Principle with a certificate. Another benefit is misconfigs in CA policies will no longer break syncing :)
Docs:
learn.microsoft.com/...
May 28, 2025 at 1:06 AM
It's here! Modern auth for Entra Connect Sync is now available 🚀
This finally moves from user/pass to auth with Entra to using a Service Principle with a certificate. Another benefit is misconfigs in CA policies will no longer break syncing :)
Docs:
learn.microsoft.com/...
This finally moves from user/pass to auth with Entra to using a Service Principle with a certificate. Another benefit is misconfigs in CA policies will no longer break syncing :)
Docs:
learn.microsoft.com/...
Reposted by Sascha Kaufmann
MSTIC is now on BlueSky. Get your follows in
Microsoft has discovered a cluster of worldwide cloud abuse activity by new Russia-affiliated threat actor Void Blizzard (LAUNDRY BEAR), whose cyberespionage activity targets gov't, defense, transportation, media, NGO, and healthcare in Europe and North America. https://msft.it/63324S9Jkp
New Russia-affiliated actor Void Blizzard targets critical sectors for espionage | Microsoft Security Blog
Microsoft Threat Intelligence has discovered a cluster of worldwide cloud abuse activity conducted by a threat actor we track as Void Blizzard, who we assess with high confidence is Russia-affiliated and has been active since at least April 2024. Void Blizzard’s cyberespionage operations tend to be highly targeted at specific organizations of interest to Russia, including in government, defense, transportation, media, non-governmental organizations (NGOs), and healthcare sectors primarily in Europe and North America.
msft.it
May 27, 2025 at 7:24 PM
MSTIC is now on BlueSky. Get your follows in
so we can pay $1.50/core/month to enable hotpatching but still have to do a full reboot 4x/year?
"With hotpatching, you will still need to restart your Windows Servers about four times yearly for baseline updates"
"With hotpatching, you will still need to restart your Windows Servers about four times yearly for baseline updates"
Tired of all the restarts? Get hotpatching for Windows Server - Microsoft Windows Server Blog
Hotpatching for Windows Server 2025, made available in preview in 2024, will become generally available as a subscription service on July 1st, 2025.
www.microsoft.com
April 29, 2025 at 3:26 PM
so we can pay $1.50/core/month to enable hotpatching but still have to do a full reboot 4x/year?
"With hotpatching, you will still need to restart your Windows Servers about four times yearly for baseline updates"
"With hotpatching, you will still need to restart your Windows Servers about four times yearly for baseline updates"
Reposted by Sascha Kaufmann
In Part 1 of my Intune Attack Paths series, I discuss the fundamental components and mechanics of Intune that lead to the emergence of attack paths: posts.specterops.io/intune-attac...
Intune Attack Paths — Part 1
Intune is an attractive system for adversaries to target…
posts.specterops.io
January 15, 2025 at 5:33 PM
In Part 1 of my Intune Attack Paths series, I discuss the fundamental components and mechanics of Intune that lead to the emergence of attack paths: posts.specterops.io/intune-attac...
Reposted by Sascha Kaufmann
A new dedicated resource application to enable Active Directory to Microsoft Entra ID sync using Microsoft Entra Connect Sync or Cloud Sync is coming 😱
In the announcement the mentioned reason is "upcoming security hardening"...
6bf85cfa-ac8a-4be5-b5de-425a0d0dc016
#EntraID
In the announcement the mentioned reason is "upcoming security hardening"...
6bf85cfa-ac8a-4be5-b5de-425a0d0dc016
#EntraID
January 6, 2025 at 6:29 PM
A new dedicated resource application to enable Active Directory to Microsoft Entra ID sync using Microsoft Entra Connect Sync or Cloud Sync is coming 😱
In the announcement the mentioned reason is "upcoming security hardening"...
6bf85cfa-ac8a-4be5-b5de-425a0d0dc016
#EntraID
In the announcement the mentioned reason is "upcoming security hardening"...
6bf85cfa-ac8a-4be5-b5de-425a0d0dc016
#EntraID
Reposted by Sascha Kaufmann
CyberHaven malicious extension (24.10.4) details 🧵
A new content script was added to the extension manifest which runs at the start of every webpage
A new content script was added to the extension manifest which runs at the start of every webpage
December 26, 2024 at 8:37 PM
CyberHaven malicious extension (24.10.4) details 🧵
A new content script was added to the extension manifest which runs at the start of every webpage
A new content script was added to the extension manifest which runs at the start of every webpage
Reposted by Sascha Kaufmann
There's a report that Brazilian certificate authority ICP-Brasil issued an illegal TLS certificate for the google[.]com domain. This might not end well for the CA
bugzilla.mozilla.org/show_bug.cgi...
bugzilla.mozilla.org/show_bug.cgi...
December 3, 2024 at 4:42 PM
There's a report that Brazilian certificate authority ICP-Brasil issued an illegal TLS certificate for the google[.]com domain. This might not end well for the CA
bugzilla.mozilla.org/show_bug.cgi...
bugzilla.mozilla.org/show_bug.cgi...
Reposted by Sascha Kaufmann
Interesting interview in FT. www.ft.com/content/6137...
Ukraine’s Dmytro Kuleba: ‘If it continues like this, we will lose the war’
The former foreign minister on recent military setbacks — and why Zelenskyy and Putin both see Trump as an opportunity
www.ft.com
December 1, 2024 at 3:43 PM
Interesting interview in FT. www.ft.com/content/6137...
Reposted by Sascha Kaufmann
Yi Peng 3 dropped its anchor into the Baltic Sea. Went dark on AIS and dragged it along the bottom, destroyed comms cables. Hull and anchor bear traces of the deed.
Investigators suspect pre-mediation and that RU intelligence directed it.
Bojan Pancevski in a remarkable WSJ-piece.
Investigators suspect pre-mediation and that RU intelligence directed it.
Bojan Pancevski in a remarkable WSJ-piece.
archive.is
November 28, 2024 at 7:39 PM
Yi Peng 3 dropped its anchor into the Baltic Sea. Went dark on AIS and dragged it along the bottom, destroyed comms cables. Hull and anchor bear traces of the deed.
Investigators suspect pre-mediation and that RU intelligence directed it.
Bojan Pancevski in a remarkable WSJ-piece.
Investigators suspect pre-mediation and that RU intelligence directed it.
Bojan Pancevski in a remarkable WSJ-piece.
Reposted by Sascha Kaufmann
Launch of new cybertraining service TRYZUB based on Ukrainian experience in cyberwar
cip.gov.ua/en/news/laun...
cip.gov.ua/en/news/laun...
Державна служба спеціального зв’язку та захисту інформації України
Вебсайт Державної служби спеціального зв’язку та захисту інформації України
cip.gov.ua
November 21, 2024 at 8:56 PM
Launch of new cybertraining service TRYZUB based on Ukrainian experience in cyberwar
cip.gov.ua/en/news/laun...
cip.gov.ua/en/news/laun...