Tips and Tricks of Setting up Azure Security Center

Since Ignite 2017 Security & Compliance offering is now part of Azure Service Center service. Because of that some of the controls of that offering are moved to ASC but still the integration is not complete at least to me. With this blog post I will focus on two of the ASC settings that you should set up when you start with ASC – Changing to another Log Analytics workspace and Security Events level (filtering). Continue reading “Tips and Tricks of Setting up Azure Security Center”

Mitigate speculative execution side-channel vulnerabilities

Seems the new year bring us some bad surprises in terms of security. There has been some rumors and now turned out to be truth that certain processors are vulnerable to certain attacks. Yes processors. That means that affects a wide variety of Operating Systems. As Microsoft puts it:

Microsoft is aware of a new publicly disclosed class of vulnerabilities referred to as “speculative execution side-channel attacks” that affect many modern processors and operating systems including Intel, AMD, and ARM. Note: this issue will affect other systems such as Android, Chrome, iOS, MacOS, so we advise customers to seek out guidance from those vendors.

Source: ADV180002 | Guidance to mitigate speculative execution side-channel vulnerabilities

Continue reading “Mitigate speculative execution side-channel vulnerabilities”

Free E-book: Inside #MSOMS v2 now available

It took us some time but we’ve managed to update the one and only free OMS book. We had plans to release it earlier but unforeseen things has happened which prevented us to do it earlier. I hope you will understand but you will still enjoy it. The other authors and me put a lot of effort to get it out along with the reviewers.

The new query language of Log Analytics is not included in the book but that should not discourage you as the content is still relevant.

Go grab Inside the Microsoft Operations Management Suite for free. Let us know if you have any feedback.

I mostly would like to thank my fiancée for being patient with me and supporting me while I was writing my chapters.

[Cross-Post] How To Detect And Protect Yourself From WannaCry

Make sure to check out this blog post that I’ve wrote on my company’s web site.

How To Detect And Protect Yourself From WannaCry

Quick Look – #MSOMS Office 365 (Preview) Solution

Yesterday MSOMS team released in preview Office 365 solution:

image

Continue reading “Quick Look – #MSOMS Office 365 (Preview) Solution”