What's New in Azure Active Directory for December 2021

Azure Active Directory is Microsoft's Identity Management-as-a-Service solution, offering seamless access, easy collaboration, efficiency in IT processes and improved security and compliance. In its Release Notes for Azure Active Directory, Microsoft communicated the following planned, new and changed functionality for Azure Active Directory for December 2021: What’s Planned Tenant enablement of combined security information registration … Continue reading "What's New in Azure Active Directory for December 2021"

Azure AD Connect v2.0.91.0 offers a FIPS-compliant Health Component

A mere month after the release of Azure AD Connect v2.0.89.0, Microsoft released an update to Azure AD Connect v2.x. that offers new functionality. Note:None of the Azure AD Connect v2.x releases are released for automatic upgrade. Manual upgrades are required to gain the new functionality and security levels once you're on the Azure AD … Continue reading "Azure AD Connect v2.0.91.0 offers a FIPS-compliant Health Component"

Microsoft has released out-of-band updates to address Domain Controller boot loops

Last week, we mentioned that the January 11th, 2022 updates caused some Domain Controllers to restart unexpectedly. Our advice, then, was to uninstall the updates when encountering this problem. However, uninstalling these updates also rolled back other fixes that address critical vulnerabilities in Windows Server. It results in a situation where you don’t want to … Continue reading "Microsoft has released out-of-band updates to address Domain Controller boot loops"

Some Domain Controllers may restart unexpectedly after applying the January 11, 2022 Updates

When installing updates, there is always the risk of rogue updates; updates that break functionality, unannounced, unexpected and unsettling. Microsoft is currently researching such a possible side-effect with the January 11, 2022 updates on Active Directory Domain Controllers. About the issue Domain Controllers may reboot unexpectedly and keep rebooting. Event ID 1000 is triggered right … Continue reading "Some Domain Controllers may restart unexpectedly after applying the January 11, 2022 Updates"

Going All-in with HornetSecurity 365 Total Protection

Previously, I’ve shared my experiences with Altaro’s Office 365 Backup and Hornetsecurity’s 365 Threat Monitor. Both services add information security value on their own, but are also part of something bigger: HornetSecurity’s 365 Total Protection.  Should you go all-in with HornetSecurity’s 365 Total Protection to face your Microsoft 365 challenges head-on? The three flavours of … Continue reading "Going All-in with HornetSecurity 365 Total Protection"

The End of Mainstream Support is a Time to make an important Decision about Windows Server 2016

Today, January 12th 2022, the Mainstream Support on Windows Server 2016 ended. This Windows Server Operating System (OS) has been with us for the past five years and will remain with us for the next five years, just not as it used to. Therefore, today is a time to make an important decision. The most … Continue reading "The End of Mainstream Support is a Time to make an important Decision about Windows Server 2016"

Wormable Critical HTTP Protocol Stack Remote Code Execution Vulnerability affects Windows Server 2019- and 2022-based AD FS Servers (CVE-2022-21907)

During its Patch Tuesday on January 11th, 2022, Microsoft addressed a Remote Code Execution (RCE) security vulnerabilities that affects Windows Server 2019- and Windows Server 2022-based Active Directory Federation Services (AD FS) servers. About the vulnerability CVE-2022-21907 details a remote code execution vulnerability that can be used to attack AD FS servers over the internet. … Continue reading "Wormable Critical HTTP Protocol Stack Remote Code Execution Vulnerability affects Windows Server 2019- and 2022-based AD FS Servers (CVE-2022-21907)"

Three Active Directory vulnerabilities were addressed during Microsoft’s January 2022 Patch Tuesday

During its Patch Tuesday on January 11th, 2022, Microsoft addressed three Elevation of Privilege (EoP) security vulnerabilities in Active Directory components and protocols that can be attacked over the network. About the vulnerabilities Three vulnerabilities were addressed: CVE-2022-21857 AD DS Elevation of Privilege Vulnerability CVE-2022-21857 is a vulnerability that could allow an attacker to elevate … Continue reading "Three Active Directory vulnerabilities were addressed during Microsoft’s January 2022 Patch Tuesday"

A Critical Remote Code Execution vulnerability in Veeam Backup for Azure was automatically addressed

Last week, Veeam identified a critical vulnerability in a component of its Backup for Microsoft Azure solution, that allows attackers to bypass authentication mechanisms and execute arbitrary code.   About Veeam Backup for Microsoft Azure Veeam Backup for Microsoft Azure is a solution offered by Veeam to backup and restore Azure IaaS-based virtual machines and … Continue reading "A Critical Remote Code Execution vulnerability in Veeam Backup for Azure was automatically addressed"

What's New in Microsoft Defender for Identity in December 2021

Microsoft Defender for Identity helps Active Directory admins defend against advanced persistent threats (APTs) targeting their Active Directory Domain Services infrastructures. It is a cloud-based service, where agents on Domain Controllers provide signals to Microsoft's Machine Learning (ML) algorithms to detect and report on attacks. Its dashboard allows Active Directory admins to investigate (potential) breaches … Continue reading "What's New in Microsoft Defender for Identity in December 2021"