Cyber Security ⁽¹⁶⁾

Public Key Infrastructure can be daunting for many administrators - knowing how to issue certificates is one thing but understanding what they actually contain is another thing entirely. Previously, data was encrypted with a key and to decrypt it, the same key was used again,…

Protecting organisational data no longer stops on the devices handed out - most users sign in on their phones to check emails and files on the go. In some respects, this is a good thing. It saves the company money because they don’t need to…

Virtual Private Networks have become ubiquitous in the last year or so as governments start implementing restrictions on social media and other online content. If rumours are to be believed, they will soon come for VPNs themselves! I’m not convinced every user understands that using…

Multi factor authentication is absolutely crucial to protecting accounts, but let's not forget the first line of defence, the password. Attackers have been cracking passwords since the dawn of, well, passwords. There are various methods (see here) and therefore various controls. The easiest and most…

Entra ID is the home of Microsoft identities for an organisation, but often these identities come from an on-prem Active Directory. That syncronisation is often a one-way street; accounts go up to the cloud, but changes don’t come back. Entra Password Protection enabled policies set…