TPM identity is a permanent hardware fingerprint that cannot be erased. Unlike GDID, a software identifier, TPM keys remain constant across system reinstalls. Users have no good options to completely ...
Before installation, it’s crucial to understand that Microsoft Graph is a RESTful web API that integrates various Microsoft services. You only need to authenticate once to access data across these ...
Multi-Factor Authentication (MFA) is a critical security feature for Microsoft 365, but situations like lost phones or forgotten passwords can lock users out of their accounts. Resetting MFA is a ...
Microsoft has announced that it will introduce updated authentication requirements for the Microsoft Teams PowerShell Module, with enforcement starting on September 15, 2025. The change affects ...
About five years ago, Lee Chagolla-Christensen shared a blog detailing the research and development process behind his RequestAADRefreshToken proof-of-concept (POC). In short, on Entra ID joined ...
We’ve seen an increase in multi-stage Adversary in the Middle (AiTM) phishing BEC in M365. These usually originate from a compromised trusted party, and lead to a series of AiTM attacks and follow-on ...
August 27, 2025 update: Storm-0501 has continuously evolved to achieve sharpened focus on cloud-based TTPs as their primary objective shifted from deploying on-premises endpoint ransomware to using ...
Today Microsoft Incident Response are proud to introduce two one-page guides to help security teams investigate suspicious activity in Microsoft 365 and Microsoft Entra. These guides contain the ...