Secure Your Office 365 Tenant – By Attacking It (Part 2)

By David Branscome   In my previous post (https://blogs.technet.microsoft.com/cloudyhappypeople/2018/04/04/secure-your-office-365-tenant-by-attacking-it ), I showed you how to use the Office 365 Attack Simulator to set up the Password Spray and Brute Force Password (Dictionary) Attacks. What we often find, though, is that spear phishing campaigns are extremely successful in organizations and are often the very first point…

2

Secure Your Office 365 Tenant – By Attacking It (Part 1)

By David Branscome I’ve been waiting several months for this day to arrive. The Office 365 Attack Simulator is LIVE! If you log into your Office 365 E5 tenant with the Threat Intelligence licensing, it shows up here in the Security & Compliance portal. When you click on it, the first thing it will tell…

0

The End of Support for Older TLS Versions in Office 365

by David Branscome, with a callout to Joe Stocker at Patriot Consulting for the heads-up! The SSL/POODLE Attack Explained UPDATE: As per the support article listed here (https://support.microsoft.com/en-us/help/4057306/preparing-for-tls-1-2-in-office-365) We will be extending support for TLS 1.0/1.1 through October 31, 2018 in order to help ensure our customers are adequately prepared for the changes.   As most…

4

Leveraging the Office 365 Service Assurance Portal in Customer Scenarios

August 23, 2017 By David Branscome In the partner organization at Microsoft, we get lots of requests from partners that are in the process of responding to an RFP for Office 365 or Azure deployments. Maybe the partner has described the Microsoft datacenters to their customers as being ISO 27001 or FedRAMP compliant. But now…

0