@IntuneSuppTeam pretty sure the script is automatically entering 'yes' when 'mst-cli install' is actually prompting for the password to import the TLS cert. Just not sure the best workaround to get through this.
@IntuneSuppTeam pretty sure the script is automatically entering 'yes' when 'mst-cli install' is actually prompting for the password to import the TLS cert. Just not sure the best workaround to get through this.
Hey @VerizonSupport, the form in the MyVerizon app to transfer service to another account won't accept an email address with digits in the domain (i.e. [email protected]). It says "Please enter a valid email address". Been problem for a while. Anyone going to fix this?
... And the only thing different about this email's headers, compared to the hundreds (maybe nearly thousand) I've run through a Content Search over the years, is that there are commas in the header.
#InfoSec#CyberSec#IncidentResponse#phishing
If threat actors use a comma in the "From" header, it breaks MS Compliance/Exchange content search?
I have a phishing email with this header "From: HR Updates, September 30, 2024<rammyahmad[@]lehmancpa[.]com>". (remove the []'s)....
#InfoSec#CyberSec#IncidentResponse#phishing
...I would normally run a Content Search across all of our mailboxes with the ContentMatchQuery set to "(From:rammyahmad[@]lehmancpa[.]com)" (remove the []'s). But that's not returning any results...
#InfoSec#CyberSec#IncidentResponse#phishing
@HackingDave TPLO surgery? My 7 y/o mutt just got it done 4 days ago. We've been wondering about the whole recovery process b/c the vet has us prepped for a 10-12 week process. Only 2 tough weeks sounds much better.
When the client attempts to connect again after a disconnect, the VPN client first does the mTLS auth to the web service so that its IP has an allow ACL added again. Then it does regular client UN/PW/MFA auth.
Does this reduce attack surface? I think so. Done. 10/10
I'm getting tired of VPN interfaces getting sprayed. It's a nuisance and can be a distraction from other more high value security alerts. I jotted down some notes a year ago with a concept for how password sprays on VPN interfaces could be completely eliminated... 1/n
(There's probably additional tracking that needs to happen for each public IP that's entered. If you have a bunch of employees at the same hotel getting NAT'd out the same ip, you can't deny the connection as soon as 1 disconnects. You need to track unique connections)... 9/n