June 2, 2022

How to Be Notified by Email When a New Zero Day is Reported

Customers of Microsoft Defender for Endpoint have a wealth of knowledge available at their fingertips, enabling the most comprehensive view of the security of the estate. […]
May 26, 2022

Detecting and preventing privilege escalation attacks leveraging Kerberos relaying (KrbRelayUp)

On April 24, 2022, a privilege escalation hacking tool, KrbRelayUp, was publicly disclosed on GitHub by security researcher Mor Davidovich. KrbRelayUp is a wrapper that can […]
April 28, 2022

Microsoft Defender for Endpoint Workbook for Microsoft Sentinel

There’s a new Workbook available in the Microsoft Sentinel console that I’m pretty sure you’ll overlook because it’s been released without much fanfare. However, for those […]
April 27, 2022

Microsoft finds new elevation of privilege Linux vulnerability, Nimbuspwn

Microsoft has discovered several vulnerabilities, collectively referred to as Nimbuspwn, that could allow an attacker to elevate privileges to root on many Linux desktop endpoints. The […]