Hello Podcast Family. We won’t lie, we are having withdrawal symptoms from not producing the show, but I can tell you for sure, that having the time off is allowing us to come with some good ideas when we return. We also get time to listen to some of our favorite podcasts. Being on the other side of the MIC is a good thing.

In the meantime, we will occasionally (randomly) post tips, tricks, news and some of our favorite words of wisdom aka “Ed’s Edibles”, Rod Rant’s, Frank’s Fumble’s and Brodie’s Babble’s until our return.

Ed’s Edibles:

If you loan someone $20 and you never see them again because they are avoiding paying you back, that makes it worth $20.

Rod Rants:

Your group can achieve great things way beyond your means simply by showing people that they are appreciated.

Brodie Babbles:

If you repeated what you did today 365 more times, will you be where you want to be next year?

Frank’s Fumbles:

Don’t bother fighting the old; just build the new.

Microsoft Security Nibbles:

Azure Network Security: Exploring Azure Firewall for comprehensive threat protection

In this episode, host Andrew Mathu welcomes Shabaz Shaik to explore how Azure Firewall secures modern cloud networks through real-world use cases. From protecting traffic in VNET hub-and-spoke deployments and Virtual WAN (Secure Hub) architectures to enabling Forced Tunnel mode for secure internet breakout, learn how Azure Firewall’s intelligent filtering, scalable design, and advanced threat protection help organizations safeguard their workloads across hybrid and cloud environments.

Advanced Threat Detection with Defender XDR Community Queries

Join our conversation with Product Managers Daniel Mozes and Ajaj Shaikh as they walk through Defender XDR GitHub community queries, specifically tailored to detecting and investigating email and collaboration threats. We explore examples of Advanced Hunting queries you can use to enrich your own repository, demonstrate how to apply them effectively, and highlight how you can contribute your own queries to help grow the community.

The Unified SecOps Experience using Microsoft Sentinel’s latest features

In this episode, Principal Product Manager Tiander Turpijn shares the latest updates within the Microsoft Defender XDR portal, highlighting key efficiency improvements for triage and incident investigation. We also learn more about the role of workspaces, examine activity logs and tasks, and highlight the value of using flyouts to streamline your workflow. Whether you’re new to the portal or looking to optimize your efficiency, this session will help you operationalize the XDR portal for maximum impact.

Shadow IT 2.0: Managing the risk of OAuth apps Explosion in the Enterprise

Join us as we unpack the growing risk of OAuth apps as the new Shadow IT – with users authorizing these apps to act on their behalf, often without oversight. Learn why enterprises must expand their security focus beyond devices to protect interactions with applications, see who is using which apps with what permissions, and how Microsoft Defender for Cloud Apps helps to manage and maintain the safety of these powerful integrations.

Other Security Notes and News:

⁠Plex warns users to patch security vulnerability immediately⁠ (Bleeping Computer)

⁠Cisco Discloses Critical RCE Flaw in Firewall Management Software ⁠(Infosecurity Magazine)

⁠Critical Flaws Patched in Rockwell FactoryTalk, Micro800, ControlLogix Products ⁠(SecurityWeek)

⁠CISA Releases Thirty-Two Industrial Control Systems Advisories⁠ (CISA.gov)

⁠Hackers Breach Canadian Government Via Microsoft Exploit⁠ (Bank Infosecurity)

⁠Compromised Government and Police Email Accounts on the Dark Web⁠ (Abnormal.AI)

⁠Telco giant Colt suffers attack, takes systems offline ⁠(The Register)

⁠Taiwan announces measures to protect hospitals from hackers⁠ (Focus Taiwan)

⁠New NIST Concept Paper Outlines AI-Specific Cybersecurity Framework⁠ (Hack Read)

⁠A flirty Meta AI bot invited a retiree to meet. He never made it home.⁠ (Reuters)

⁠Dutch prosecution service attack keeps speed cameras offline ⁠(The Register)

MSFT Security Happenings:

• https://www.microsoft.com/en-us/security/security-insider/threat-landscape/microsoft-digital-defense-report-2024?rtc=1?rtc=1

• https://techcommunity.microsoft.com/category/microsoftintune/blog/intunecustomersuccess

• https://techcommunity.microsoft.com/category/microsoft-defender-for-endpoint/blog/microsoftdefenderatpblog

• https://techcommunity.microsoft.com/category/microsoft-defender-for-cloud/blog/microsoftdefendercloudblog

• https://techcommunity.microsoft.com/category/microsoft-sentinel/blog/microsoftsentinelb

• https://techcommunity.microsoft.com/category/microsoft-defender-for-office-365/blog/microsoftdefenderforoffice365blog

• https://techcommunity.microsoft.com/category/cis/blog/coreinfrastructureandsecurityblog