Practical Sentinel: Auditing Multifactor Authentication with Sentinel
In this episode of Practical Sentinel, Thijs Lecomte discusses how to create some basic KQL queries to track MFA usage.
June 5, 2024
Latest Articles
Practical Protection: Copying Microsoft’s Secure Future Initiative
Microsoft recently released a memo from Security VP, Charlie Bell. In this blog, we recap the memo and discuss some of the new security initiatives Microsoft is working towards.
May 16, 2024
Understanding the Exchange Mailbox Folder Assistant
The Exchange Mailbox Folder Assistant (MFA) is responsible for processing retention policies against Exchange Server and Exchange Online mailboxes. In this article, we review details of how the MFA works and how administrators can gain an insight into what it does.
December 18, 2023
Requiring MFA for the Microsoft Admin Portal Apps
In this blog, Paul Robichaux reviews how to add additional protection to Microsoft Admin Portal Apps through MFA.
November 2, 2023
Top Five Security Topics For Microsoft 365 Projects
Security is not a one-time thing. We must improve configurations as products evolve and new situations arise. In this blog, James Yip dives into his top five security topics for Microsoft 365 Projects.
October 25, 2023
Practical Protection: Practical Guidance from the Microsoft Digital Defense Report
It's that time of the year again! Microsoft is releasing their annual Microsoft Digital Defense Report (MDDR), and you may want to give it a read. In this blog, we talk about the highlights from the MDDR and offer some advice to better protect your organization.
October 12, 2023
Practical Protection: Asking the Right Questions to Break the Kill Chain
You can’t disrupt a chain if you can’t identify the links. In this blog, Paul Robichaux goes over some of the ways you can break a Kill Chain in your environment. And it all starts with asking yourself the right questions.
June 15, 2023
Practical Protection: MFA is Coming for You, Ready or Not
Whether you like it or not, MFA is coming for you! You can either deploy and support MFA for your users, or Microsoft is going to do it for you. The choice is yours. Learn more about how Microsoft will be enforcing MFA in the future, and what you should do.
May 17, 2023
TEC European Roadshow 2023 – London, Paris, and Frankfurt: Identity and Microsoft 365 Security Tips
At the end of March, Practical 365 traveled with the TEC European roadshow, traveling between three cities in Europe over a week, listening to experts talking primarily about security-focused topics aimed at improving your Microsoft 365, Azure AD and Active Directory. Read our whistle-stop tour of the most important points made by expert speakers.
May 10, 2023
Stop Using Phone-Based Responses for Multifactor Authentication
While some methods for MFA responses have security issues, people often overlook their practical advantages. Not everyone is ready to dump a valid authentication method. In this article, we take the journey to removing phone-based responses from your tenant while considering some practical implications.
May 9, 2023
Azure AD System-Preferred Authentication Policy
Azure AD system-preferred authentication means that users must use their strongest authentication method when they sign-into Azure AD. The change emphasizes the desirability of strong authentication methods over weak. Now in preview, Microsoft plans to make the policy effective for everyone in July 2023.
March 7, 2023
Practical Protection: Dr. Jekyll and Mrs. Hybrid
Hybrid work is really a mixed blessing—while it offers a lot of fantastic benefits for people who are able to take advantage of it, it can introduce some new and unpleasant security issues that you need to be prepared to deal with. This article dives into these new risks and how you can avoid them.
February 23, 2023