Raw Thoughts
Windows 11 Getting Just in Time Administrator Protection
In another cool Ignite share, Microsoft announced Administrator protection on Windows 11. This feature aims to protect users from malicious code or intent by creating "just in time" administrator privileges for local admins. This is an awesome, and overdue feature,...
Passkeys in Authenticator are Generally Available!
Awhile back, Microsoft released a preview of soft Passkeys in Microsoft Authenticator. At its core, this feature delivers a cross-device authentication FIDO credential, encapsulated securely within the Microsoft Authenticator app, bound to the device on which it's...
Mandatory MFA is Finally Upon Us
We're a little over a month out from Microsoft's upcoming MFA mandate. On October 5th, 2024, the Entra Admin Center, Intune Admin Center, and Azure portal will finally mandate multifactor authentication. This means that, regardless of your tenant settings, you will be...
Can Payments take a Page from the FIDO book?
Payment card fraud is as old as payment cards themselves. First, we used embossed cards and phone calls in the clear to process payments. Then, we had to trust service staff to take our cards away from us to process them. The majority of them were just doing their...
Your Ransom Payment Punched the Next Victim
I recently came across an article stating that ransomware attacks targeting healthcare organizations surged following the Change Healthcare incident. For a quick recap, the Change Healthcare attack crippled the filling of prescriptions and other healthcare operations...
Data Loss Prevention for Any SMB
It's time for a new guide for MSPs! The Safeguards within CIS Control 3 speak to the need for proper Data Protection. Implementation Group 1 (i.e.: the minimum we should do) covers some basic data management and protection practices such as: Establishing and...
CISA’s Secure by Design Pledge
In some very exciting news today, CISA announced their Secure by Design Pledge. The Secure by Design Pledge is a voluntary commitment that was signed by 68 software companies, committing to design their products from the ground up in a more secure way. I've linked the...
Are Passkeys the Answer to Passwordless Adoption?
In our digital age, the concept of living in a passwordless world is eagerly anticipated. It's common knowledge that passwords are a hassle – users struggle to create and remember strong passwords, and the tools meant to help, like password managers, haven't gained...
Tips for a Successful MFA Rollout
IMPORTANT NOTE: I'm trying something new here and looking for feedback (on LinkedIn). I've written this post using Microsoft Copilot by creating a general outline of "points to hit" in addition to a key topic. I'm experimenting with this to see if it can expand my...
