DANA ON DATA

So in the latest episode of #KnowOps I help a community member out by showing how to setup Azure to detect and alert when emergency 'break-glass' accounts ar...

Azure relies heavily on Azure Storage. From your VM disks to your application queues, chances are you have sensitive data already saved in Azure Storage. In ...

So in this week's episode of #KnowOps I help answer the question on how to lock down Internet access to your Azure Key Vault through the use of network restr...

Fellow MVP and ethical hacker Nino Crudele has released an awesome free whitepaper on the Azure Fundamental for Ethical Hackers and Special Ops Team. This wh...

Latest episode of #KnowOps is out. I introduce you to how I sift through millions of records of audit data in Azure in a matter of seconds using KQL, the Kus...

Recently I have had the opportunity to engage with peers on social media about how secure their data is in Azure. It brought up some interesting questions, a...

Azure Bastion is a new managed PaaS service that provides seamless RDP and SSH connectivity to your virtual machines over Secure Sockets Layer (SSL). This is...

Can't believe I missed this, but Azure Security Center for IoT went GA recently. If you aren't aware of what it is, Azure Security Center for IoT unifies sec...

Now this is interesting... Microsoft has setup a set of dedicated cloud hosts for security researchers to test attacks against IaaS scenarios, and which is i...

Last month I read an interesting article from Krebs on Security about the fact that Microsoft will be forcing Cloud Service Providers (CSPs) to use multifact...

Following up from The Azure Solution Architects Map I talked about last time, I was pleasantly surprised to find that Stephane published a mind map relating ...

A couple of weeks ago the Department of Homeland Security published an Analysis Report (AR19-133A) on Microsoft Office 365 Security Observations. In it, they...

It's about time. Today, Microsoft announces that they have changed the 16 character limit for Azure AD passwords, allowing you to set a password with up to 2...

I saw an interesting post from Justin Yoo on 6 Ways Passing Secrets to ARM Templates today. In the article, he provides details on six different ways that yo...

The invention of STRIDE was the key inflection point in the development of threat modeling from art to engineering practice. I saw an article today by Adam S...

I've been asked several times where someone new to Azure should start when it comes to Azure security. There are plenty of posts here that point to a lot of ...

So a few weeks ago Microsoft announced Azure Sentinel, their new cloud-base SIEM system. Security Information and Event Management (SIEM) products can’t keep...

Yesterday Microsoft announced a set of fantastic enhancements—based on your feedback—to the public preview of our combined registration experience for Multi-...

If you are responsible for your company's Azure environment, protecting identity is a key aspect you need to think about. Here are 5 best practices you shoul...

Let's face it. Most people first embracing Azure do so through virtual machines and Infrastructure as a Service (IaaS). This fact is evident in hybrid scenar...