Technical blog about Cloud Security
Intro At February 2024 we had a team discussion where I dropped a phrase “So, we are not yet at the situation where anyone with access to LLM can be a “master-hacker, but I guess this moment is around the corner”. And at the moment I got a comments that my statement shows lack of … Continue reading AI impact on Cybersecurity – 30 seconds to midnight
Recently I started to notice a lot of “noise” in security area related to so called “Non-Human Identities” with a main idea that we need to have one more type of tools to solve this problem. So, I decided to dig deeper to understand myself if we need one more tool or is it something … Continue reading Non-Human Identities – Can we “tool” our way out?
Probably you heard a phrase “Don’t expose your server to Internet!” and some even used that to tell others what they should not do. And we all understand that it is something bad and all industry standards are against that. However, during my conversations with some project teams I heard questions “What is going to … Continue reading Is it really bad to expose your infrastructure to the Internet?
Do you know that if your Conditional Access (CA) policies were poorly designed, your users can evade them with just a couple of clicks? And the title of this post is not a “clickbait”, let me show you how it can be done, why this is happening and how to avoid this. First, I’m going … Continue reading How users can evade Conditional Access policies and how you can stop it.
In my years of working with Azure I always find that Azure AD Application Proxy is a some kind of a hidden gem. Not everyone heard about that and even less people worked with it. What is the Azure AD Application Proxy? It is a service which expose your internal/on-premises application through Azure services with … Continue reading Azure AD Application Proxy – expose your internal applications without piercing network.
In old times Azure AD Conditional Access policies could be only enabled or disabled. That means that policy deployment have to be tested and planned very carefelly and still, you might face some issues with use cases you didn’t accounted for and as a consequence to have an impact on end users. But fortunately we … Continue reading What is Report-Only mode in Azure AD Conditional Access policies, and how to use it.
Azure Policies have new effect. How and when to use it.
If you are working with Azure, you probably heard about recent “security breach” happened with Microsoft. And Microsoft even responded: In a nutshell, SOCRadar discovered misconfigured Azure Blob Storage which was publicly exposed. Unfortunately, it had A LOT of sensitive data inside. Right now this situation is going into discussions around impact and if SOCRadar … Continue reading What is BlueBleed and why you need to think about it? And how to protect your Storage Accounts.
Alex Vanyurikhin 