Get ready, folks. π
Youβre about to witness ONE. BIG. BEAUTIFUL. ABSURDLY. EPIC. THREAD. π§΅π₯
Some say this might be the MOST EPIC and MOST RIDICULOUSLY LONG identity thread ever written
π Bookmark this
Honestly⦠the cover image alone deserves a like + retweet
DO IT π
I've been researching the Microsoft cloud for almost 7 years now. A few months ago that research resulted in the most impactful vulnerability I will probably ever find: a token validation flaw allowing me to get Global Admin in any Entra ID tenant. Blog: dirkjanm.io/obtaining-gl...
I love passkeys in Microsoft Authenticator, but rolling them out with Compliance and/or App Protection Policies has not been as easy as it should be...
But I have good news - we can create a better experience without introducing significant gaps :)
Folks, bookmark this π
Did you know I curate a list of all the awesome Entra related links all in one place?
Here's a quick peak into this list
The NIHβs 2024 budget of just under $37B generated $95B in economic activity in 2024 alone. 99.4% of new pharmaceuticals approved from 2010-2019 came from NIH-funded research. Iβm hard pressed to think of anything that generates as much direct economic benefit as our NIH did before they destroyed it
This looks like an awesome free tool from Microsoft to help guide an organization through a zero trust assessment, and to help keep track of your progress. #cybersecurity
From: @merill
https://infosec.exchange/@merill/114828836541804825
π₯ OBAMA: βIMAGINE IF I HAD DONE ANY OF THISβ¦ I say this not on a partisan basis. This has to do with something more precious β who are we as a country, and what values do we stand for?β πΊπΈ
Threat hunters rejoice! This is HUUUGE news π
Microsoft just introduced linkable identifiers in Microsoft Entra ID logs.
The bad guys π₯· are going to hate this so much π
Learn more at learn.microsoft.com/...
Share the good news π
"18F was explicitly designed to serve as an in-house consultancy that would allow federal agencies to leverage private-sector expertise. As part of DOGEβs sweep, however, it has gutted the group, putting a pause on several ongoing projects to make government services more efficient for users."
βAnd isnβt being happy the ultimate land annexation?β Jessica Moschini, Garlic Mincer
Israel Ranked 8th Happiest Country
theonion.com/israel-...
Folks, if you're in IT and don't fit the classic stereotype of white, middle-class guy, you might be eligible for a year's access to the O'Reilly learning platform for free (highly recommended - I use it all the time to dive into tech books). Apply here:
www.oreilly.com/diversity/sc...
As the Gaza body count increases, I wonder how all these supposed 'leftists' & self-styled 'contrarians' who berated me for not applauding Trump for bringing about a 'ceasefire' and 'peace' feel today.
Like fools, I hope.
Because they are indeed fools: they believed Trump.
I know the What-If API has been here for a while, but I haven't seen it documented yet.
Anyway, in case it's helpful to anyone, you can do What-If analysis via API ;)
Invoke-MgGraphRequest -Method POST -Uri '/beta/identity/conditionalAccess/analyze' -Body $body
Level Up Your App Governance With MDA Workshop Series techcommunity.micros...
#MicrosoftDefender #DefenderforCloud #Security #MicrosoftSecurity #Cybersecurity #DefenderXDR #MicrosoftThreatIntelligence
Screenshot of beta.weather.gov with an announcement info box saying "beta.weather.gov has been deactivated until further notice." The message continues by mentioning "This page has been deactivated...due to the loss of critical federal staff, which leaves the project without the resources required to continue its development or for routine monitoring and maintenance."
This is what happens when 18F goes away: beta.weather.gov has been deactivated, βdue to the loss of critical federal staff, which leaves this project without the resources to continue its development or for routine monitoring and maintenance.β
18f.org/projects/#:~...
SANS Daily StormCast
SANS Blueprint
Risky Biz
Blue Security
Defense in Depth
Microsoft Threat Intelligence
Security Now
Podcasts, LinkedIn and Reddit
There it is: Speaker of the House says Elon has already started running your Social Security through his AI.
Seems like the is with the Akamai CDN
18F was doing exactly the type of work that DOGE claims to want β yet we were eliminated shortly after midnight. Read our letter to the American people:
18f.org
Just checked and it loaded fine
The derogatory term βrubioβ now has three meanings in American slang:
1) A spineless lump of nothing
2) The piece of shit you scrape off the bottom of your shoe
3) A person with no scruples or sense of morality
Example: βDonβt be such a fucking rubio β just think of what your mother would say.β
PLEASE RP: Windows Server 2025 Delegated Managed Service Accounts
Delegated Managed Service Accounts (dMSA) are a new type of managed service account introduced in Windows Server 2025. They offer several advantages over traditional service accounts and Group Managed Service Accounts (gMSA).
The worldβs richest man appears to be dismantling the government with an eye toward consolidating power and punishing his political enemies, Charlie Warzel writes. Will it work? theatln.tc/zoCxaorI
