Blog

Webinar – How to protect, detect, and respond to identity-related attacks with Microsoft 365 Defender

As technology advances, old threats become a little less relevant and new threats emerge.
In this session, we’ll take a look at some identity-related threats inherent to the use of authentication to web applications etc. In the context of Azure AD/Office 365, we’ll walk you through a couple of scenarios and demos on how an attacker could leverage cookies and PRTs to gain access to your resources and how you, as a defender, can protect, detect, and respond to these types of events.

21/01/2021

Monitoring Service Principals with Watchlists in Azure Sentinel

In every Microsoft 365/Azure environment there are multiple Service Principals. Service Principals can be used for your own custom-built apps, to deploy Azure resources through

13/01/2021

5 things 2020 taught me in cybersecurity

In many regards, 2020 was a perilous year. In the wake of a global pandemic, the entire world had to change the way they live and work. This paradigm change not only presented a difficulty for people personally, also from an IT perspective – and more specifically cybersecurity – many new challenges arose from the shift to remote working.

12/01/2021

Using a Lighthouse Service Principal within Azure DevOps

Within our SOC, Cloud Control, we heavily rely on Azure Sentinel to monitor the environments of our customers. To easily manage multiple Azure Sentinel environments,

25/08/2020

Assigning MDATP tags through the machine name & logged on user with Logic Apps

Tags in Microsoft Defender ATP is an extremely powerful tool to identify certain high value machines, group devices into machine groups, or for reporting through

08/07/2020

Azure Sentinel is now generally available!

Great news! Earlier today, Microsoft announced the General Availability (GA) of Azure Sentinel which has been in public preview since earlier this year. Azure Sentinel

24/09/2019

Exchange Online & ransomware attacks: is it a real threat?

Recently, I was asked whether a ransomware attack on Exchange Online is a real risk and, what an organization could do to protect itself against

03/08/2019

About Microsoft Inspire and driving value for our customers

One of our managing partners, Michael Van Horenbeeck, was recently interviewed by Nicolas Blank from the Cloud Architects podcast on the value of Microsoft Inspire.

29/07/2019

SecOps in the cloud by Microsoft? A first look at Azure Sentinel.

On February 28, Microsoft announced the public preview of Azure Sentinel. Somewhat simplistically stated, you could see Sentinel as Microsoft’s version of a SIEM (in

01/03/2019

Correlating events becomes easier as Microsoft adds ‘SessionID’ to the audit logs in EXO

Yesterday, Microsoft announced a new capability in Exchange Online which adds the ‘SessionID’-field to the existing audit logs in Exchange Online. Audit logs are a

04/01/2019

Protecting AD FS from password (spray) attacks (in an Office 365 context)

Recently, I attended the Thrive Conference in Ljubljana, Slovenia. During the IT Pro “Ask the Experts”-panel, an interesting question was raised: “How do I protect

21/12/2018

Top experts create The Collective to bring more companies into the Cloud.

Five top experts in Microsoft solutions join forces in a new consulting consortium – The Collective – that will offer expert services and solutions to

17/10/2018

Let's work together

Get in touch with us and we’ll take care of the rest

Our mission is to support our customer’s success and inspire them to achieve more through secure and innovative technologies, solutions and services.

The Collective is a highly-skilled Microsoft Partner with an expertise in security, teamwork, productivity and endpoint management.

Contact

Social

Follow us on social media.