Let's talk Azure AD join and what that means to a Windows device. What's it mean to be joined to something?
System Center Configuration Manager, now Microsoft Endpoint Configuration Manager (MECM), is a software management product that has been widely adopted by la...
Threat actors target AWS login credentials with phishing websites and malverts returned in Google web searches.
Intro Event logs are a great way to detect adversary activity on a windows machine and be able to tell the story of […]
Brit AI video tech caught up in pro-PRC disinformation campaign
Based on our investigation so far, Reddit user passwords and accounts are safe, but on Sunday night (pacific time), Reddit systems were hacked as a result of a sophisticated and highly-targeted phishing attack. They gained access to some internal documents, code, and some internal business systems.
Spelling mistakes? Poor understanding of grammar? Yes, it looks like your work...
A few years ago, I was asked to define an auditd configuration which would serve as the primary detection technology for a large organization. While I had a fair understanding of Linux systems, I found surprisingly little on utilizing auditd for at-scale security monitoring purposes.
The topics I look to cover in this article are...