Discover and read the best of Twitter Threads about #office365
Most recents (17)
OK, so there is definitely a problem with the Search-UnifiedAuditLog cmdlet in #Microsoft365. Confirmed this in multiple tenants - here's what I'm seeing: 🧵
#threathunting #threathunt #auditlogs #M365 #Office365 #O365 #M365Security
#threathunting #threathunt #auditlogs #M365 #Office365 #O365 #M365Security
First, go to security.microsoft.com -> Audit and perform a new search for all events in a given timeframe (a few hours, total). Have this available for reference.
Next, open PowerShell and connect to Exchange Online:
Connect-ExchangeOnline
You ran a search in the Defender portal with a date range of a few hours. Within that same timeframe, pick an even smaller date/time range that has < 100 events. You'll need those timestamps next.
Connect-ExchangeOnline
You ran a search in the Defender portal with a date range of a few hours. Within that same timeframe, pick an even smaller date/time range that has < 100 events. You'll need those timestamps next.
Excel FILTER Function is now my FAVOURITE function
Here are NINE examples how FILTER function has simplified super complex tasks for us!
#excel #learnexcel #excelfunctions #exceltips #exceltricks #office365 #excel365
Here are NINE examples how FILTER function has simplified super complex tasks for us!
#excel #learnexcel #excelfunctions #exceltips #exceltricks #office365 #excel365
7 *IMPOSSIBLE* looking Excel / GSheets tricks that are POSSIBLE!
#excel #learnexcel #exceltips #exceltricks #office365 #excel365
#excel #learnexcel #exceltips #exceltricks #office365 #excel365
Attendance Sheet with Checkboxes in GSheets
youtube.com/shorts/M6YLt7Y…
youtube.com/shorts/M6YLt7Y…
Advance Attendance Sheet in Excel
[With Overtime, Paid Leaves, Half day calculations]
youtube.com/shorts/PsXIdQI…
[With Overtime, Paid Leaves, Half day calculations]
youtube.com/shorts/PsXIdQI…
Just a reminder when focusing on #security for your #office365 and #azuread tenants one of the key attack vectors comes from your on-premises environment. If you have not read and implemented the guidance in aka.ms/protectm365 you should & read this thread. 1/7 #identity
"Federated trust relationships, such as Security Assertions Markup Language (SAML) authentication,are used to authenticate to Microsoft 365 through your on-premises identity infrastructure.Ifa SAML token-signing certificate is compromised, federation allows anyone who has.."2/7
certificate to impersonate any user in your cloud.
We recommend that you disable federation trust relationships for authentication to Microsoft 365 when possible."
3/7
We recommend that you disable federation trust relationships for authentication to Microsoft 365 when possible."
3/7
In the simplistic account of what many call "surveillance capitalism," the original sin was swapping our attention for free content, summed up in the pithy phrase, "If you're not paying for the product, you're the product." 1/ 
If you'd like an unrolled version of this thread to read or share, here's a link to it on pluralistic.net, my surveillance-free, ad-free, tracker-free blog:
pluralistic.net/2021/11/14/sti… 2/
pluralistic.net/2021/11/14/sti… 2/
That's a comforting frame if you think that the problem with surveillance capitalism is *surveillance*, rather than capitalism. 3/
Breaking-News für #TeamDatenschutz: Der Beschluss der #DSK zum #Datenschutz bei #Office365 mir per #IFG herausgeben: fragdenstaat.de/anfrage/bewert… Die Veröffentlichung auf der Homepage der DSK wird in Kürze erfolgen. #DSGVO
FYI @WebschauDS @DS_Stiftung @Telemedicus @bvd_datenschutz @offenenetze @GDD_eV @kleibold23 @TimWybitul @sayho @RAinDiercks @PiracyByDesign @Ra_Koellner @winfriedveil @FranzOnBrands @datenreiserecht @Dr_Datenschutz @dsnotizen @nhaerting @JoNehlsen @AdOrgaSolutions @stephanschmidt
Meine erste Einschätzung: Schon die Überschrift stellt klar, dass mit Maßnahmen gegen Verantwortliche, die MS Office 365 einsetzen nicht zurechnen ist, zumindest nicht unter dem Gesichtspunkt Auftragsverarbeitung. Bei Drittstaatentransfers könnte es anders aussehen.
THREAD: Yesterday I gave a talk at #ITechDays on #Security approach in a #Cloud with #Azure context.
Here is key points and promised links and references.
Here is key points and promised links and references.
DISCLAIMER: I'm MVP and RD but it isn't based on NDA info. My opinions only.
It might be wrong. You are warned.
Pic (cc) visualhunt.com/re7/e60879a6
It might be wrong. You are warned.
Pic (cc) visualhunt.com/re7/e60879a6
Übersicht zum 25. #Tätigkeitsbericht der #LfD Niedersachsen:
1⃣ 22 #Bußgelder i.H.v. 480k € verhängt (S.13)
2⃣ DSK #Windows10 Prüfschema sei auf #Office365 anzuwenden (S.45)
3⃣ Recht auf Kopie umfasst originalgetreue Wiedergabe aller pb Daten (S.89)
1/5
lfd.niedersachsen.de/startseite/inf…
1⃣ 22 #Bußgelder i.H.v. 480k € verhängt (S.13)
2⃣ DSK #Windows10 Prüfschema sei auf #Office365 anzuwenden (S.45)
3⃣ Recht auf Kopie umfasst originalgetreue Wiedergabe aller pb Daten (S.89)
1/5
lfd.niedersachsen.de/startseite/inf…
4⃣ #Verschlüsselung ≠ #Löschung. Erstere garantiere nur die Vertraulichkeit. (S.90)
5⃣ #Verwertungsverbot des § 43 IV BDSG nicht europarechtswidrig (S.95)
6⃣ Maßnahmeempfehlungen des #BSI z.B. zu Emotet können wegen Art. 32 DSGVO verpflichtend umzusetzen sein (S.96)
2/5
5⃣ #Verwertungsverbot des § 43 IV BDSG nicht europarechtswidrig (S.95)
6⃣ Maßnahmeempfehlungen des #BSI z.B. zu Emotet können wegen Art. 32 DSGVO verpflichtend umzusetzen sein (S.96)
2/5
7⃣ Vermehrte #Bußgelder von 500-1000€ wegen anlassloser #Dashcam Nutzung (S.107)
8⃣ Anlassbezogener Dashcam Betrieb wird trotz Verstoß gegen Art. 12ff. DSGVO nicht sanktioniert, da kein besonderes #Verfolgungsinteresse bestehe (S.106)
3/5
8⃣ Anlassbezogener Dashcam Betrieb wird trotz Verstoß gegen Art. 12ff. DSGVO nicht sanktioniert, da kein besonderes #Verfolgungsinteresse bestehe (S.106)
3/5
#Microsoft launched #Microsoft365 service this week which Microsoft says "Designed to help you achieve more with innovative Office apps, intelligent cloud services, and world-class security".. (1/3)
But it turns out that Microsoft 365 is just re-branded #Office365 with promise of new features coming soon.
I feel Microsoft missed a biggest opportunity to bundle Windows 10 as well with these plans..(2/3)
I feel Microsoft missed a biggest opportunity to bundle Windows 10 as well with these plans..(2/3)
For Home users they could have bundled Xbox live as well eventually its cloud gaming service #xCloud as well though its a bit of a stretch (3/3)
Lesenswert & kurzweilig, der #Tätigkeitsbericht 2019 der #BlnBDI:
1⃣ Ist einem #Algorithmus eine Entscheidungsbegründung unmöglich, darf dieser keine Empfehlung aussprechen (S.27)
2⃣ Adressvermietung begründet gemeinsame Verantwortlichkeit (S.33)
1/8
datenschutz-berlin.de/fileadmin/user…
1⃣ Ist einem #Algorithmus eine Entscheidungsbegründung unmöglich, darf dieser keine Empfehlung aussprechen (S.27)
2⃣ Adressvermietung begründet gemeinsame Verantwortlichkeit (S.33)
1/8
datenschutz-berlin.de/fileadmin/user…
3⃣ Einsprüche im One-Stop-Shop-Verfahren gegen #Beschlussentwürfe anderer ABs (S.43/45)
4⃣ Probleme mit gütlicher Einigung als Verfahrensende in 🇪🇺-Staaten (S.44)
5⃣ #Windows10 ohne Internetzugang + getrennte Umgebung für Internetnutzung genügt nach DSK-Papier (S.55)
2/8
4⃣ Probleme mit gütlicher Einigung als Verfahrensende in 🇪🇺-Staaten (S.44)
5⃣ #Windows10 ohne Internetzugang + getrennte Umgebung für Internetnutzung genügt nach DSK-Papier (S.55)
2/8
6⃣ Nach #Ransomware-Vorfall erhält das KG mobile Dienstgeräte. Man empfiehlt das für alle #Richter und #StAs bei #Homeoffice (S.58f)
7⃣ #Polizei & POLIKS: Aktuell rw. System der Personensuche (S.64)
8⃣ Art. 6 I f #DSGVO für #Kundenzufriedenheitsumfrage im Nachgang (S.86)
3/8
7⃣ #Polizei & POLIKS: Aktuell rw. System der Personensuche (S.64)
8⃣ Art. 6 I f #DSGVO für #Kundenzufriedenheitsumfrage im Nachgang (S.86)
3/8
Have you heard about naked guy at @zoom_us call? You don't want it - just TURN ON the password for meeting.
You are on #MicrosoftTeams? Use #azureAD conditional access and lobby settings.
Avoid naked people! Stay safe! Stay home#
mashable.com/article/videoc…
You are on #MicrosoftTeams? Use #azureAD conditional access and lobby settings.
Avoid naked people! Stay safe! Stay home#
mashable.com/article/videoc…
#Office365 lobby settings - support.microsoft.com/en-us/office/c…
This week has seen us working 100% remotely and assisting our clients with business continuity. Here are some tips for #RemoteWorking during these unprecedented times...
#EasyRemoteWorking #covid19 #covid19uk #coronavirus #workingfromhome #stayathome #quarantine #staypositive
#EasyRemoteWorking #covid19 #covid19uk #coronavirus #workingfromhome #stayathome #quarantine #staypositive
1. Take regular breaks
Screen sharing & conference calls can be much more tiring than being face to face. There's more load on your brain filling in the blanks created by not seeing the people you're interacting with. Tip: try the #PomodoroTechnique
Screen sharing & conference calls can be much more tiring than being face to face. There's more load on your brain filling in the blanks created by not seeing the people you're interacting with. Tip: try the #PomodoroTechnique
2. Use Video in your conference calls
Non-verbal cues are used in face to face communication. We gesture to indicate a desire to speak, we nod, we shake our head or look confused. People adapt communication from these, so we're better placed to leave with a shared understanding.
Non-verbal cues are used in face to face communication. We gesture to indicate a desire to speak, we nod, we shake our head or look confused. People adapt communication from these, so we're better placed to leave with a shared understanding.
I just sepent 40min on-boarding first teach in y kids school to #office365 @MicrosoftTeams - it doesn't have to be Microsoft, Google has similar offer. As IT we can help. Schools has little staff and might not be prepared.
1/n
1/n
@MicrosoftTeams How? It takes 15min to start entire tenant for #office365 education - go here; microsoft.com/en-us/educatio…
No credit card required, no domain required - they can work for a while on on.microsoft.com if you ask me
2/n
No credit card required, no domain required - they can work for a while on on.microsoft.com if you ask me
2/n
Then go create some users - there are teacher licenses and students licenses. There are ready scripts to do it in bulk.
3/n
3/n
I've finished setting up #Microsoft #Teams for one of agencies in major city in Poland. They have to #switch to #remote because of #coronavirus
Not bragging but - as IT crowd we have huge opportunity to help. It took me an hour and it will make their life easier. 1/2
Not bragging but - as IT crowd we have huge opportunity to help. It took me an hour and it will make their life easier. 1/2
There is urgency and they want to act - sometimes what is needed is a bit of knowledge and will.
Ask your local gov agency/service provider/NGO if they need help with switch to #remote.
It might be one hour for you - it will save them tons of time 2/2
Ask your local gov agency/service provider/NGO if they need help with switch to #remote.
It might be one hour for you - it will save them tons of time 2/2
On the sidenote: it is amazing were we landed with pushing compute to commodity. I got it up and running for them in 15 min. #Office365 and #AzureAD #FTW!
You are worried about #facebook and #FaceApp, but use #Microsoft #Office every day? Time to be concerned! Did you know that Microsoft is processing lots of data about you without telling you about it? 1/n #GDPR #ePrivacy
Through its software and operating system, #Microsoft collects and stores personal data about user behavior, so-called #diagnostic data, on a large scale. Microsoft collects this data in various ways: 2/n
via system-generated logs of events on its servers and via the telemetry client in Windows 10, in Office 365 ProPlus, and in the mobile Office apps. These telemetry clients collect diagnostic data on your device and send this information to Microsoft's servers in the US. 3/n
Sharing #SPC19/@SPConf session PowerPoint slides x4:
💾#PRECONA05 @OneDrive start to finish
💾#BRK011 @SharePoint team sites
💾#BRK112 @OneDrive what's new
💾#BRK098 Teamwork #governance
... all connected in succession to this tweet in order presented; this is 1of5 ...
💾#PRECONA05 @OneDrive start to finish
💾#BRK011 @SharePoint team sites
💾#BRK112 @OneDrive what's new
💾#BRK098 Teamwork #governance
... all connected in succession to this tweet in order presented; this is 1of5 ...
#PRECONA05 "@OneDrive start to finish" full-day workshop ☁📂presented by @Ankita_Kirti23, @NKhamis, @DMadelung and I.
PPTX 💾1drv.ms/p/s!AjceVrOCdN…
2of5
PPTX 💾1drv.ms/p/s!AjceVrOCdN…
2of5
#BRK011 "What's new and what's next: @SharePoint team sites and integrations with @MicrosoftTeams" 💻presented by @NiketJain2002 and I.
PPTX 💾1drv.ms/p/s!AjceVrOCdN…
3of5
PPTX 💾1drv.ms/p/s!AjceVrOCdN…
3of5
Office 365 Automated Investigation and Response (AIR) coming soon to ATP P2 or Office 365 E5 tenants. In this video I am showing one of the playbooks triggered by an Alert from Security and Compliance Center.
An Alert was triggered because malware was detected and removed from user mailbox after email message delivery. AIR analyzed: who else received similar emails, if user that received the malware violated DLP rules, had mailbox forwarding configured
or had any anomalies in sign-in activities. Investigation was also continued by Microsoft Defender ATP on user's workstation. Instead of collecting this information manually from different tools I had all that done automatically and report was presented to me.
