Karl Voit :emacs: :orgmode:<p><a href="https://graz.social/tags/Microsoft" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Microsoft</span></a> outsourced administration of classified <a href="https://graz.social/tags/DoD" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>DoD</span></a> data to cheap workers in <a href="https://graz.social/tags/China" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>China</span></a>. 🇨🇳 🕵️</p><p>My latest update on <a href="https://karl-voit.at/2024/07/17/Microsoft-compromised" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">karl-voit.at/2024/07/17/Micros</span><span class="invisible">oft-compromised</span></a> (see bottom of article for further links)</p><p>Do you really want to <a href="https://graz.social/tags/trust" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>trust</span></a> companies where such a thing is not only possible but also done? 🤷</p><p><a href="https://graz.social/tags/security" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>security</span></a> <a href="https://graz.social/tags/souvereignity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>souvereignity</span></a> <a href="https://graz.social/tags/cloud" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>cloud</span></a> <a href="https://graz.social/tags/Azure" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Azure</span></a> <a href="https://graz.social/tags/O365" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>O365</span></a> <a href="https://graz.social/tags/M365" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>M365</span></a> <a href="https://graz.social/tags/Sharepoint" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Sharepoint</span></a> <a href="https://graz.social/tags/Exchange" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Exchange</span></a></p>
eupolicy.social is one of the many independent Mastodon servers you can use to participate in the fediverse.
This Mastodon server is a friendly and respectful discussion space for people working in areas related to EU policy. When you request to create an account, please tell us something about you.
Administered by:
Server stats:
208active users
eupolicy.social: About · Profiles directory · Privacy policy
Mastodon: About · Get the app · Keyboard shortcuts · View source code · v4.4.1
#o365
0 posts · 0 participants · 0 posts today
okanogen VerminEnemyFromWithin<p><span class="h-card" translate="no"><a href="https://toot.cafe/@baldur" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>baldur</span></a></span> <br>The <a href="https://mastodon.social/tags/AI" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>AI</span></a> bubble is basically the same as the <a href="https://mastodon.social/tags/Cloud" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Cloud</span></a> bubble. Our IT <a href="https://mastodon.social/tags/sysadmin" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>sysadmin</span></a> group tried as hard as we could, but ultimately, <a href="https://mastodon.social/tags/Microsoft" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Microsoft</span></a> active measures to destroy onsite servers and applications made it untenable to avoid <a href="https://mastodon.social/tags/O365" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>O365</span></a>.<br>And now that includes being forced to use <a href="https://mastodon.social/tags/CoPilot" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CoPilot</span></a><br>We know this is a time bomb, but it is politically untenable (at this time) to migrate to <a href="https://mastodon.social/tags/Linux" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Linux</span></a> desktol and <a href="https://mastodon.social/tags/LibreOffice" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>LibreOffice</span></a>.</p>
Elosha<p>Copilot ist das ultimative Einbruchswerkzeug für Sharepoint/Teams in MS-lastigen Unternehmen. Accountübernahme während eines Phishing-Incidents genügt, um selbst auf Dokumente zuzugreifen, für die dem Account die Permissions fehlen würden. Und zwar ohne Spuren zu hinterlassen!</p><p><a href="https://chaos.social/tags/dfir" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>dfir</span></a> <a href="https://chaos.social/tags/copilot" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>copilot</span></a> <a href="https://chaos.social/tags/o365" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>o365</span></a></p><p><a href="https://www.pentestpartners.com/security-blog/exploiting-copilot-ai-for-sharepoint/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">pentestpartners.com/security-b</span><span class="invisible">log/exploiting-copilot-ai-for-sharepoint/</span></a></p>
Bodo Menke<p>Kennt es jemand? Nutzt es jemand?</p><p>Ich kenne es bislang gar nicht. Mich würde aber interessieren wieviel Prozent des Feature Set von O/M365 oder Google Workspace bislang dort circa abgedeckt sind....<br><a href="https://hessen.social/tags/OpenCloud" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OpenCloud</span></a><br><a href="https://hessen.social/tags/M365" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>M365</span></a> <a href="https://hessen.social/tags/O365" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>O365</span></a> <a href="https://hessen.social/tags/GoogleWorkspace" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>GoogleWorkspace</span></a><br><a href="https://hessen.social/tags/Reboost" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Reboost</span></a> tut gut</p><p><a href="https://www.heise.de/news/Dateien-offline-bearbeiten-OpenCloud-bekommt-Desktop-Client-und-iOS-App-10374574.html?wt_mc=rss.red.ho.ho.atom.beitrag.beitrag" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">heise.de/news/Dateien-offline-</span><span class="invisible">bearbeiten-OpenCloud-bekommt-Desktop-Client-und-iOS-App-10374574.html?wt_mc=rss.red.ho.ho.atom.beitrag.beitrag</span></a></p>
Matt Franz<p>More left of boom tools from <a href="https://infosec.exchange/tags/CISA" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CISA</span></a> <a href="https://infosec.exchange/tags/O365" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>O365</span></a> <a href="https://github.com/cisagov/ScubaGear" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="">github.com/cisagov/ScubaGear</span><span class="invisible"></span></a></p>
Jef Kazimer😶🌫️<p>Hey hybrid <a href="https://infosec.exchange/tags/entra" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>entra</span></a> and <a href="https://infosec.exchange/tags/o365" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>o365</span></a> admins, what prevents you from creating all NEW groups in Entra? Why are you creating new groups in 2 places? Feature gaps? Awareness? Process change?</p><p>Comment why you can’t create all new groups in Entra. Let me know!</p><p><a href="https://infosec.exchange/tags/entraid" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>entraid</span></a> <a href="https://infosec.exchange/tags/groups" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>groups</span></a> <a href="https://infosec.exchange/tags/office365" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>office365</span></a> <a href="https://infosec.exchange/tags/microsoft" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>microsoft</span></a> <a href="https://infosec.exchange/tags/identity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>identity</span></a></p>
Karl Voit :emacs: :orgmode:<p><a href="https://graz.social/tags/Microsoft" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Microsoft</span></a>: <a href="https://graz.social/tags/Word" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Word</span></a>-Fehler löscht Dokumente, statt sie zu speichern <a href="https://www.heise.de/news/Microsoft-warnt-vor-Word-Fehler-Dateien-geloescht-statt-gespeichert-9964336.html" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">heise.de/news/Microsoft-warnt-</span><span class="invisible">vor-Word-Fehler-Dateien-geloescht-statt-gespeichert-9964336.html</span></a></p><p>Sorry, ich habe immer weniger Mitleid mit denen, die das verwenden. 🤷 </p><p><a href="https://graz.social/tags/o365" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>o365</span></a> <a href="https://graz.social/tags/fail" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>fail</span></a> <a href="https://graz.social/tags/cloud" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>cloud</span></a> <a href="https://graz.social/tags/PIM" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>PIM</span></a></p>
Karl Voit :emacs: :orgmode:<p>Read That Before You Trust Anything by <a href="https://graz.social/tags/Microsoft" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Microsoft</span></a> Once Again<br><a href="https://karl-voit.at/2024/07/17/Microsoft-compromised/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">karl-voit.at/2024/07/17/Micros</span><span class="invisible">oft-compromised/</span></a></p><p>This is no secret in the <a href="https://graz.social/tags/ITsecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ITsecurity</span></a> bubble. However, it was not covered properly in general media: <a href="https://graz.social/tags/MS" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>MS</span></a> <a href="https://graz.social/tags/security" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>security</span></a> is crushed & is unlikely to be re-established.</p><p>Unless they provide more information, this covers also <a href="https://graz.social/tags/Windows" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Windows</span></a> authentication (via MS account), <a href="https://graz.social/tags/Azure" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Azure</span></a>, <a href="https://graz.social/tags/O365" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>O365</span></a> & more or less all other services & software products.</p><p><a href="https://graz.social/tags/publicvoit" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>publicvoit</span></a> <a href="https://graz.social/tags/malware" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>malware</span></a> <a href="https://graz.social/tags/attack" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>attack</span></a> <a href="https://graz.social/tags/hacker" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>hacker</span></a> <a href="https://graz.social/tags/China" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>China</span></a> <a href="https://graz.social/tags/fail" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>fail</span></a> <a href="https://graz.social/tags/Outlook" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Outlook</span></a> <a href="https://graz.social/tags/Exchange" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Exchange</span></a> <a href="https://graz.social/tags/Office" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Office</span></a> <a href="https://graz.social/tags/GitHub" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>GitHub</span></a></p>
Bill Taroli :neurodiversity:<p><span class="h-card" translate="no"><a href="https://mastodon.online/@thunderbird" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>thunderbird@mastodon.online</span></a></span> <span class="h-card" translate="no"><a href="https://tilvids.com/accounts/thunderbird" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>thunderbird@tilvids.com</span></a></span> So… is anyone keeping tabs on <a href="https://federate.social/tags/Betterbird" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Betterbird</span></a>? I can’t say I’m fond of everything they’ve done, but in the world of “we care about using Graph with <a href="https://federate.social/tags/O365" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>O365</span></a> <a href="https://federate.social/tags/Exchabge" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Exchabge</span></a>” this is starting to gain steam. I’m resisting g the fork, but I’m curious what the team has to say on the subject. </p><p>Indeed the latest round of chat revolved around a version of <a href="https://federate.social/tags/TbSync" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>TbSync</span></a> hacked to talk to <a href="https://federate.social/tags/GraphAPI" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>GraphAPI</span></a>.</p><p><a href="https://federate.social/tags/Office365" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Office365</span></a> <a href="https://federate.social/tags/Thunderbird" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Thunderbird</span></a></p>
Asta McCarthy<p><span class="h-card" translate="no"><a href="https://social.overheid.nl/@Logius" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>Logius</span></a></span> <span class="h-card" translate="no"><a href="https://social.overheid.nl/@DigitaleOverheid" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>DigitaleOverheid</span></a></span> <span class="h-card" translate="no"><a href="https://social.overheid.nl/@minbzk" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>minbzk</span></a></span> Stap 1) Neem afscheid van Microsoft Office365 en alle OpenAI features die ze daar aan het inbouwen zijn.<br><a href="https://mastodon.pirateparty.be/tags/Microsoft" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Microsoft</span></a> <a href="https://mastodon.pirateparty.be/tags/Office365" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Office365</span></a> <a href="https://mastodon.pirateparty.be/tags/O365" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>O365</span></a> <a href="https://mastodon.pirateparty.be/tags/AI" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>AI</span></a> <a href="https://mastodon.pirateparty.be/tags/ChatGPT" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ChatGPT</span></a> <a href="https://mastodon.pirateparty.be/tags/OpenAI" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OpenAI</span></a></p>
Lars Marowsky-Brée 😷<p>I've had my corporate email handled via both <a href="https://mastodon.online/tags/GMail" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>GMail</span></a> and <a href="https://mastodon.online/tags/O365" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>O365</span></a> for many years now and I can say with utmost confidence that both are HORRIBLE AS FUCK email services.<br>Including randomly deleting incoming email because "deduplication" etc.</p><p>I'd never accept that level of "service" for my personal email.</p><p>I truly do not understand why businesses do.</p>
Robert Riemann 🇪🇺<p><span class="h-card" translate="no"><a href="https://toot.io/@AV" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>AV</span></a></span> <span class="h-card" translate="no"><a href="https://social.network.europa.eu/@EDPS" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>EDPS</span></a></span> <span class="h-card" translate="no"><a href="https://social.network.europa.eu/@EDPS_supervisor" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>EDPS_supervisor</span></a></span> <span class="h-card" translate="no"><a href="https://social.network.europa.eu/@EU_Commission" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>EU_Commission</span></a></span> <span class="h-card" translate="no"><a href="https://mastodon.xyz/@nextcloud" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>nextcloud</span></a></span> <a href="https://www.edps.europa.eu/press-publications/press-news/press-releases/2023/edps-pilot-use-open-source-software_en" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">edps.europa.eu/press-publicati</span><span class="invisible">ons/press-news/press-releases/2023/edps-pilot-use-open-source-software_en</span></a> <a href="https://chaos.social/tags/nextcloud" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>nextcloud</span></a> <a href="https://chaos.social/tags/o365" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>o365</span></a> <a href="https://chaos.social/tags/GDPR" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>GDPR</span></a></p>
Bodo Menke<p>Five Eyes warning, that APT29 is going after MS customers</p><p>Why do I need a Wapo article to stumble over it? Were there any alerts in EU I missed (BSI?)? Any news on this already in European media outlets?</p><p>„Microsoft attributed the ongoing attacks to an SVR group that it calls Midnight Blizzard and that other security companies refer to as APT29 or Cozy Bear.“</p><p><a href="https://hessen.social/tags/Microsoft" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Microsoft</span></a> <a href="https://hessen.social/tags/M365" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>M365</span></a> <a href="https://hessen.social/tags/O365" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>O365</span></a> <a href="https://hessen.social/tags/EntraID" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>EntraID</span></a> <a href="https://hessen.social/tags/AzureAD" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>AzureAD</span></a> <a href="https://hessen.social/tags/Russia" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Russia</span></a> <a href="https://hessen.social/tags/SVR" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SVR</span></a> <a href="https://hessen.social/tags/APT29" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>APT29</span></a> <a href="https://hessen.social/tags/MidnightBlizzard" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>MidnightBlizzard</span></a> <a href="https://infosec.exchange/@JosephMenn/112062526327167579" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">infosec.exchange/@JosephMenn/1</span><span class="invisible">12062526327167579</span></a></p>
Jef Kazimer😶🌫️<p>With the ever increasing attacks on users, moving to <a href="https://infosec.exchange/tags/multifactorauthentication" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>multifactorauthentication</span></a> is a must in order to reduce the attack surface of just relying on a password to secure access to resources. Implementing <a href="https://infosec.exchange/tags/MFA" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>MFA</span></a> that is enforced all the time relies on also having a good user experience, which gave rise to mobile authenticator apps since many users always have their phones with them. However it also gave rise to <a href="https://infosec.exchange/tags/mfabombing" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>mfabombing</span></a> and griefing to get those users to approve. With the recent GA of <a href="https://infosec.exchange/tags/microsoftauthenticator" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>microsoftauthenticator</span></a> <a href="https://infosec.exchange/tags/azuread" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>azuread</span></a> orgs can enable number match and context for the push notification to further improve the <a href="https://infosec.exchange/tags/security" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>security</span></a> of the users by avoiding the blind approval of a push notification. </p><p>🔥 See the post on the AzureAD blog here and go enable these settings for your organization <a href="https://techcommunity.microsoft.com/t5/microsoft-entra-azure-ad-blog/advanced-microsoft-authenticator-security-features-are-now/ba-p/2365673" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">techcommunity.microsoft.com/t5</span><span class="invisible">/microsoft-entra-azure-ad-blog/advanced-microsoft-authenticator-security-features-are-now/ba-p/2365673</span></a> <a href="https://infosec.exchange/tags/microsoft" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>microsoft</span></a> <a href="https://infosec.exchange/tags/office365" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>office365</span></a> <a href="https://infosec.exchange/tags/o365" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>o365</span></a> <a href="https://infosec.exchange/tags/cloudsecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>cloudsecurity</span></a></p>
TrendingLive feeds
Mastodon is the best way to keep up with what's happening.
Follow anyone across the fediverse and see it all in chronological order. No algorithms, ads, or clickbait in sight.
Create accountLoginDrag & drop to upload