This article is contributed. See the original author and article here.
The Apache Software Foundation has released a security advisory to address a vulnerability affecting multiple versions of Apache Tomcat. An attacker could exploit this vulnerability to obtain sensitive information.
CISA encourages users and administrators to review the Apache security advisory for CVE-2021-24122 and upgrade to the appropriate version.
This article is contributed. See the original author and article here.
Blog Series: Advent of 2020 Azure Databricks
Tomaž Kaštrun is a SQL Server developer and data scientist with more than 15 years of experience in the fields of business warehousing, development, ETL, database administration, and also data analysis and machine learning. He is a Microsoft Data Platform MVP, a blogger, and a frequent speaker at community and Microsoft events. For more, check out Tomaž’s Twitter @tomaz_tsql
How to use “Definite Guide” for the new Microsoft Teams Breakout Rooms
Vesku Nopanen is a Principal Consultant in Office 365 and Modern Work and passionate about Microsoft Teams. He helps and coaches customers to find benefits and value when adopting new tools, methods, ways or working and practices into daily work-life equation. He focuses especially on Microsoft Teams and how it can change organizations’ work. He lives in Turku, Finland. Follow him on Twitter: @Vesanopanen
SharePoint 2016 Get All User Alerts By List Name
Mohamed El-Qassas is a Microsoft MVP, SharePoint StackExchange (StackOverflow) Moderator, C# Corner MVP, Microsoft TechNet Wiki Judge, Blogger, and Senior Technical Consultant with +10 years of experience in SharePoint, Project Server, and BI. In SharePoint StackExchange, he has been elected as the 1st Moderator in the GCC, Middle East, and Africa, and ranked as the 2nd top contributor of all the time. Check out his blog here.
Manage Scrum Projects with Microsoft 365
John Naguib is an Office Servers and Services MVP. He’s also a Solution Architect and Senior Consultant, with a deep knowledge of SharePoint. In addition, he has a strong .net application development background and is knowledgable in Office 365, Azure and several Microsoft products. John is a recognized expert within the IT industry, as he’s published several gold award articles on Microsoft TechNet blogs and spoken at several events. He is based in Egypt. Follow him on Twitter @johnnaguib.
Azure Migration Services – Easy Cloud Migration Services
Robert Smit is a EMEA Cloud Solution Architect at Insight.de and is a current Microsoft MVP Cloud and Datacenter as of 2009. Robert has over 20 years experience in IT with experience in the educational, health-care and finance industries. Robert’s past IT experience in the trenches of IT gives him the knowledge and insight that allows him to communicate effectively with IT professionals. Follow him on Twitter at @clusterMVP
This article was originally posted by the FTC. See the original article here.
Scammers are at it again, pretending to be from a government agency to rip people off. Here’s what you need to know about the latest coronavirus relief fund scam.
You get an email that looks to be from Joe Simons of the Federal Trade Commission. It says you’re getting coronavirus relief money. The email includes a fake certificate to make you think the money is real.
If you reply, they say you have to pay taxes before you get your money. They may include a fake letter from the IRS, like this one, to convince you.
If you pay, they say you must pay the State Department for a certificate that proves the funds are not related to any terrorist activity and the money is cleared for you to receive. (Yes, really!)
Finally, if you pay that, they send you a fake remittance order showing that the money is on the way to your bank account.
As you might have suspected by now, the money never shows up. That’s because every step of the way was carried out by scammers looking to steal your money. So, what can you do to protect yourself against imposters when their stories keep changing?
If you look up Joe Simons, you’ll see that he is the Chairman of the FTC. But Joe didn’t email you. Scammers pretending to be Joe did.
Here’s another sign this is a scam: The FTC is not involved in distributing coronavirus economic stimulus money in any way. Economic stimulus payments come from the IRS. The IRS won’t contact you by phone, email, text message, or social media with information about any payments related to the coronavirus pandemic, or to ask you for personal or financial information. Check out irs.gov/coronavirus for the latest info about coronavirus relief payments.
If you get an email that says you’re getting some money, don’t reply, period. And definitely don’t give them your bank account or other financial information. Report it to the FTC at ReportFraud.ftc.gov.
Brought to you by Dr. Ware, Microsoft Office 365 Silver Partner, Charleston SC.
This article is contributed. See the original author and article here.
The team is back for our second season of AzUpdate. News to be covered this week includes: Public IP SKU Upgrade Support, Microsoft announces GA of email-based one-time passcode (email OTP) feature for collaboration, Azure Security Centre Lab availability, Attack simulation training in Microsoft Defender for Office 365 now Generally Available and as always, our Microsoft Learn Module of the Week.
Azure public IP addresses now support the ability to be upgraded from Basic to Standard SKU. Additionally, any Basic Public Load Balancer can now be upgraded to a Standard Public Load Balancer, while retaining the same public IP address. This is supported via PowerShell, CLI, templates, and API and available across all Azure regions.
Learn more about the process to upgrade Azure public IPs here. Learn about how to upgrade Azure Public Load Balancers here.
It can be painful for IT managers to keep track of guest user accounts, and for end users to remember multiple usernames and passwords. To address this, Microsoft is continually improving the Azure AD External Identities solution with more support for bring-your-own-identity (BYOI) options with the general availability of email-based one-time passcode (email OTP) feature for collaboration.
Email OTP allows org members to collaborate with anyone in the world via a shared link or an email invitation. Once users prove their identity by using a verification code sent to their email, each authenticated session is provided access to the shared resource for 24 hours. On subsequent sign ins, users receive a new one-time code via email, which they must enter to prove continued ownership of the email account and continue receiving access.
Check out the following documentation to get started with email OTP.
Microsoft’s security center labs project can help organizations get ramped up with Azure Security Center by providing hands-on practical experience for product features, capabilities, and scenarios. The labs contain cover several different pillars such as Cloud Security Posture Management (CSPM) and Cloud Workload Protection (CWP). An Azure Trial Subscription is required to start using the labs providing you all capabilities for thirty days.
Visit the Azure Security Center Lab repo to get started.
Delivered in partnership with Terranova Security, Attack simulation training is an intelligent social engineering risk management tool that automates the creation and management of phishing simulations to help customers detect, prioritize, and remediate phishing risks by using real phish and hyper-targeted training to change employee behaviors.
Go to the Attack simulation training in your M365 Security and Compliance Center to get started today.
Learn how Microsoft Defender Advanced Threat Protection can help your organization stay secure.
Microsoft Threat Protection (MTP) is an integrated, cross-domain threat detection and response solution. It provides organizations with the ability to prevent, detect, investigate. and remediate sophisticated cross-domain attacks within their Microsoft 365 environments. The Microsoft Threat Protection learning path covers an introduction to Microsoft Threat Protection and the underlying pillars such as Microsoft Defender Advanced Threat Protection, Office 365 Advanced Threat Protection, and Azure Advanced Threat Protection concepts.
This learning path can be completed here: Defend against threats with Microsoft Threat Protection
Let us know in the comments below if there are any news items you would like to see covered in the next show. Be sure to catch the next AzUpdate episode and join us in the live chat.
This article is contributed. See the original author and article here.
Recent Comments