59 episodes

Der deutsche Podcast rund um Microsoft Cloud Technologien: Office 365, Azure AD, Enterprise Mobility & Security, Modern Workplace & Collaboration. Präsentiert von Jan Geisbauer und Marco Scheel

Hairless in the Cloud - Microsoft 365 - Security und Collaboration Hairless in the Cloud

    • Technology
    • 4.0 • 1 Rating

Der deutsche Podcast rund um Microsoft Cloud Technologien: Office 365, Azure AD, Enterprise Mobility & Security, Modern Workplace & Collaboration. Präsentiert von Jan Geisbauer und Marco Scheel

    059 - FritzBox2Sentinel und ProductivityScore

    059 - FritzBox2Sentinel und ProductivityScore


    Corona Gegner & der      Schülerbesuch in einer Lungenklink
    Blackfriday Woche!
    Pluton: https://www.techradar.com/news/microsoft-debuts-mysterious-new-processor-that-will-define-the-future-of-windows-pcs
    Hunt across cloud app      activities with M365 Defender :https://techcommunity.microsoft.com/t5/microsoft-365-defender/hunt-across-cloud-app-activities-with-microsoft-365-defender/ba-p/1893857

    Exchange Online
    Microsoft Teams

    KI Fundstück der Woche: Alexa      reagiert auf WC Spülung
    .NET Conf 2020 - https://www.youtube.com/watch?v=mS6ykjdOVRg
    .NET 5 - https://www.youtube.com/watch?v=o-esVzL3YLI
    DLP Policies & Sens Label      - https://office365itpros.com/2020/07/06/data-loss-prevention-with-sensitivity-labels/
    Bill Gates' neuer Podcast: https://www.gatesnotes.com/Podcast
    Security Voraussagen für 2021      (https://securelist.com/apt-predictions-for-2021/99387/)

    APTs will buy initial       network access from cybercriminals
    Von anderer Quellen: Zukunft       liegt in data exfiltration / not locking

    Canary Tokens: https://canarytokens.org/generate


    FritzBox2Sentinel: https://emptydc.com/2020/11/13/fritzbox-2-sentinel/

    Productivity Score


    • 44 min
    058 - Teams Display und Jupyter Notebooks

    058 - Teams Display und Jupyter Notebooks


    STOP THE VOTE !1!!!
    KI Fussballkamera verwechselt      glatzköpfigen Linienrichter mit Ball: https://www.heise.de/news/Autonome-Fussballkamera-verwechselt-glatzkoepfigen-Linienrichter-mit-dem-Ball-4943323.html
    Teams Connector Sentinel: https://techcommunity.microsoft.com/t5/azure-sentinel/expanding-microsoft-teams-log-data-in-azure-sentinel/ba-p/1811827
    Mandalorian Staffel 2: https://www.kino.de/serie/the-mandalorian-2019/news/the-mandalorian-staffel-2-ab-freitag-geht-der-kampf-um-baby-yoda-weiter/
    Sign-ins Report for      Service-Principals: https://docs.microsoft.com/en-us/azure/active-directory/reports-monitoring/concept-all-sign-ins
    Advanced Password Spray      Attack Detection: https://techcommunity.microsoft.com/t5/azure-active-directory-identity/advancing-password-spray-attack-detection/ba-p/1276936

    Low and slow (many thousand       IP addresses as source) e.g. from a botnet
    Diese Attacken gehen unter,       fallen fast nicht auf NUR
    Wenn Microsoft über ALLE       TENANTS weltweit schaut
    Password Spray Detection:       check single hash failing across multiple accounts worldwide
    Das alles ist jetzt in ID       Protection

    Teams Meeting Recording 3x3: https://admin.microsoft.com/Adminportal/Home?ref=MessageCenter&id=MC225568
    Exchange + Adressing (no      groups): https://techcommunity.microsoft.com/t5/exchange-team-blog/plus-addressing-now-available-in-exchange-online/ba-p/1824651
    Xbox und Playstation next      gen: https://www.thurrott.com/games/xbox/xbox-series-x/243536/xbox-series-x-review?utm_source=rss&utm_medium=rss&utm_campaign=xbox-series-x-review
    Teams News: Spotlight (for      all) https://techcommunity.microsoft.com/t5/microsoft-teams-blog/what-s-new-in-microsoft-teams-october-2020/ba-p/1824864

    Teams Display und Audio


    Jupyter Notebooks in Azure


    • 57 min
    057 - EN - Defender for Office 365 with Pawel Partyka

    057 - EN - Defender for Office 365 with Pawel Partyka

    In this episode we deeply talk about Microsoft Defender for Office 365 with our special guest Pawel Partyka. Pawel is Program Manager at Microsoft in the Microsoft Defender for Office 365 team. This is a technically deep dive into the most important features in the area of Email security. Pawel was a great guest and great fun to talk to!

    Follow Pawel on Twitter: https://twitter.com/Pawp81

    • 55 min
    056 - Ignite 2020

    056 - Ignite 2020


    - Stream stirbt und SharePoint lebt

    - Meetings werden besser (Together Mode Backgrounds, Custom layouts, Breakout, …)

    - Teams Federation in Gruppen Chats

    - Meeting Teilnehmer immer auf Mute

    - SharePoint File Sharing Guest expiration

    - Info Protection (Group oder Datei) und SharePoint Sharing

    - Exchange Email +Notation

    - Teams Templates im Admin

    - Teams Panels, Capacitiy

    - Teams search






    - MTP = Microsoft 365 Defender

    - MDATP = Microsoft Defender for Endpoint

    - OATP= Microsoft Defender for Office 365

    - AATP = Microsoft Defender for Identity

    The Azure Security Center solutions are rebranded accordingly:

    - Azure Defender for Servers

    - Azure Defender for IoT (cool CyberX stuff for OT)

    - Azure Defender for SQL

    - Microsoft Defender for Endpoint (fka: MDATP) now supports Android (GA) and iOS (Preview) and macOS is now supported with TVM.

    Microsoft Threat Protection == Microsoft 365 Defender + Azure Sentinel + Azure Defender

    Neue Attack Simulator Szenarien:

    - Credential Harvest

    - Malware Attachment

    - Link in Attachment

    - Link to Malware

    • 52 min
    055 - Vertrauen in die Cloud

    055 - Vertrauen in die Cloud


    - Tesla wurde gehackt - naja fast - https://www.zdnet.com/article/elon-musk-confirms-russian-hacking-plot-targeted-tesla-factory/

    - Corona Update

    - Computer Health: Monitor Placement / Setup - https://ergo-plus.com/office-ergonomics-position-computer-monitor/

     - top eye level

     - Tilt

    - Teams Recording in DE und PowerAutomate! - https://techcommunity.microsoft.com/t5/microsoft-teams-blog/what-s-new-in-microsoft-teams-august-2020/ba-p/1619717

    - Billige Meetings - https://www.microsoft.com/en-us/microsoft-365/blog/2020/09/08/3-deals-meeting-calling-experiences-microsoft-teams/

    - Azure AD B2B Lizenzupdate 50k MAU free - https://azure.microsoft.com/en-us/pricing/details/active-directory/external-identities/

    - Fluid Framework Open Source - https://fluidframework.com/playground

    - MS Lists GA - https://techcommunity.microsoft.com/t5/microsoft-teams-blog/microsoft-lists-in-microsoft-teams-is-now-generally-available/ba-p/1621979


    - GeekSprech - https://geeksprech.de/geeksprech-podcast-folge-43-hairless-in-the-cloud-ist-schuld/

    Vertrauen in die Cloud

    - Apple, Google und/oder Microsoft?

    - https://docs.microsoft.com/en-us/microsoft-365/compliance/encryption?view=o365-worldwide

    - Wer hat den Key? Wer hat den Key erstellt?

    - Service Encryption

     - Exchange Online, Skype for Business, SharePoint Online, and OneDrive for Business

     - Customer Key (aka Advanced Encryption with BYOK)

     - HSM or AKV

     - Availability Key

    - Azure Information Encryption

     - Single file Verschlüsselung

     - RMS

     - BYOD

     - HYOK-DoubleKeyEncryption - Only Unified Labeling Client

     - https://techcommunity.microsoft.com/t5/microsoft-security-and/announcing-public-preview-of-double-key-encryption-for-microsoft/ba-p/1534451

     - Double Key Encryption helps organizations protect their mission-critical data - a small volume of their overall data.

    - Customer Lockbox

     - Organisatorisch, technisch unterstützt und zertifiziert

    • 55 min
    054 - I like to move it - but you are not allowed to

    054 - I like to move it - but you are not allowed to


    Mimikatz: https://dirkjanm.io/digging-further-into-the-primary-refresh-token/
    Ignite 2020: https://www.microsoft.com/en-us/ignite
    Become a KQL Ninja: https://security-tzu.com/2020/08/07/become-a-kql-ninja/
    Teams: https://techcommunity.microsoft.com/t5/microsoft-teams-blog/what-s-new-in-microsoft-teams-july-2020/ba-p/1551561
    SCC Report: https://github.com/jangeisbauer/SCCReport
    Booking "14 people are      currently watching this product" --> random()*12 + 3: https://twitter.com/RoninDey/status/1292002070363541505?s=20
    MCAS spoofing: https://stephanwaelde.com/2020/08/04/mitigate-mcas-issue-with-user-agent-spoofing/
    Überall tauchen DUOs auf: https://twitter.com/matvelloso/status/1291576776238305281?s=20


    Mover.io (2019 gekauft)
    "Alternativen"      SharePoint Migration Tool, ShareGate, AvePoint, …
    Viele Anbindungen (14): S3, AZ Blob, Box, Dropbox, G Suite, Gdrive, O365, OneDrive

    User vs Admin

    Self Service Migration

    OneDrive 2 OneDrive
    DropBox 2 OneDrive
    OneDrive 2 DropBox

    Admin driven migration

    Immer noch die Rede von       User!
    User Mapping = Site Mapping       = Url 2 Url
    Permission Mapping (upn =       upn) - damit auch B2B machbar?


    Anmelden an Service 1
    Anmelden an Service 2
    Auf jeder Seite den Ordner       wählen
    Im Ziel auch anlegbar


    2 AAD Apps (alles       OIDC/Oauth)
    Anmeldung an zwei Tenants in derselben Browser Session
    Mover OneDrive (user consent)
    Office 365 Mover (admin consent)
    Keine "Lizenz"
    Performance: Mein OneDrive 45k 106 GB = 12 stunden

    Use Case

    Blob to SharePoint über ein Schedule

    BUT YOU ARE NOT ALLOWED TO: Microsoft Endpoint Data Loss Prevention

    Public Preview
    Native built into Windows (in MDATP component and edge)


    Sensitive Info Type: ex german passport number
    AND Share Condition: Is shared with somebody inside or outside my org

    Audit or restrict activities      on windows devices

    Upload to cloudservices or       access by unallowed browsers
    Copy to clipboard
    Copy to USB
    Copy to network share
    Access by unallowed apps


    • 52 min

Customer Reviews

4.0 out of 5
1 Rating

1 Rating

Top Podcasts In Technology

Listeners Also Subscribed To