Homeland Security Today

CISA’s ScubaGear Tool Improves Security for Organizations Using M365 and Hits Major Milestone

ScubaGear, a tool developed by the Cybersecurity and Infrastructure Security Agency (CISA) to automatically assess Microsoft 365 (M365) configurations for security gaps, hit a major milestone: more ...
CSOonline

US order is a reminder that cloud platforms aren’t secure out of the box

This week’s binding directive to US government departments to implement secure configurations in cloud applications, starting with Microsoft 365 (M365), is a reminder to all CISOs that cloud platforms ...
Computer Weekly

WA auditor general flags weak Microsoft 365 security controls across state entities

Western Australia’s Office of the Auditor General has uncovered weaknesses in M365 configurations across seven government agencies, leading to compromised accounts and data breaches ...
Ars Technica

M365 Admin Defender Vulnerability Management Recommendations - Openssl !!!!!!!!!!!!

Is there any sane way to deal with the security recommendation from M365 Defender to patch Openssl on client devices? It is by far the largest negative score impacting "issue" I have and the OCD side ...
Virtualization Review

Microsoft Defender for Business: 'The Arsonist Is Also the Fire Department'

Microsoft is no longer primarily relying on ISV partners to innovate and provide security solutions. Here's an overview of enhanced Defender offerings. Something interesting is happening on the ...
Virtualization Review

Microsoft Defender for Business: 'The Arsonist Is Also the Fire Department'

Something interesting is happening on the security front in IT when it comes to Microsoft. For many years they were content to provide a basic anti-malware solution in Windows Defender and leave the ...