LMG SecurityDec 18

Microsoft’s upcoming 2026 security features highlight a shift many organizations are already experiencing: collaboration platforms and identity workflows are now prime attack paths.

From Teams-based impersonation to AI-driven data exposure, these updates address behaviors attackers are actively abusing — often without malware or zero-days. Security leaders should treat this roadmap as a planning signal, not a future wish list.

Read our blog for a full breakdown: https://www.lmgsecurity.com/5-new-ish-microsoft-security-features-what-they-reveal-about-todays-threats/

#Microsoft365 #CollaborationTools #IdentityAndAccess #AIinSecurity #CISO #SecurityOperations #ThreatDetection #CyberDefense

5 New-ish Microsoft Security Features & What They Reveal About Today’s Threats | LMG Security

Microsoft’s new security features for 2026 reveal today’s real attack paths—collaboration tools, identity gaps, and AI-driven exposure. Here's what to do next.

LMG Security
Nikoloz K.Jul 30, 2024

Forget the hype over massive password leaks. The real cybersecurity failure? Relying on passwords alone in 2024. Billions of leaked credentials should get attackers nowhere if you have strong identity and access controls in place. Move beyond passwords with MFA, conditional access policies, security keys or passkeys. Focus on identity-centric security, not sensational headlines.

#CyberSecurity #IdentityAndAccess #BeyondPasswords

ITSEC NewsJun 30, 2021
Preventing Criminals from Using Cloud Applications to Inject Chaos Into Work Environments - In 2020, cyber criminals used cloud applications, the cover of a pandemic, and a ... http://feedproxy.google.com/~r/securityweekly/XBIC/~3/GpcS5VyJS20/ #networkaccesscontrol #applicationsecurity #threatintelligence #identityandaccess #cloudsecurity #emailsecurity #datasecurity #remoteaccess #articles #ddos
Preventing Criminals from Using Cloud Applications to Inject Chaos Into Work Environments - Security Weekly

In 2020, cyber criminals used cloud applications, the cover of a pandemic, and a newly embraced work-from-home culture to serve up ransomware, steal data, and disrupt how companies do business. The year is over, but the challenges and risks remain.  How do we prevent these criminals from injecting chaos into our hybrid work environments? As […]

ITSEC NewsMay 10, 2021
Delivering on the Promise of Application Security in the Cloud - Application security has become a complex, distributed problem.  During the days ... http://feedproxy.google.com/~r/securityweekly/XBIC/~3/sPsfWesN_KA/ #vulnerabilitymanagement #applicationsecurity #containersecurity #identityandaccess #endpointsecurity #cloudsecurity #datasecurity #compliance #articles #firewall #devops
Delivering on the Promise of Application Security in the Cloud - Security Weekly

Application security has become a complex, distributed problem.  During the days of waterfall development and monolithic applications, application security was pretty straight forward – statically scan your source code, dynamically test your business logic, and deploy a web application firewall to protect layer 7 traffic.  But with agile development, DevOps processes, and containerized applications, application […]

ITSEC NewsNov 9, 2020
Phishing: The Gift that Keeps on Giving - The post Phishing: The Gift that Keeps on Giving appeared first on Security Weekly. http://feedproxy.google.com/~r/securityweekly/XBIC/~3/e6YaC0NXK0k/ #attacksurfacemgmt #exploitprevention #identityandaccess #securityawareness #socialengineering #attacksimulation #cloudsecurity #emailsecurity #compliance #zerotrust #articles #blueteam #privacy #osint
Phishing: The Gift that Keeps on Giving - Security Weekly

When we talk about legacy security challenges and solutions, we can’t forget about our old friends email and phishing.  Phishing has been around for over 20 years and is still one of the most effect attack paths to steal credential, exploit endpoints, and deploy malware.  After 20 years, you’d think we could find effective solutions […]

ITSEC NewsNov 3, 2020
Sysmon Endpoint Monitoring: Do You Really Need an EDR? - The post Sysmon Endpoint Monitoring: Do You Really Need an EDR? appeared first on Security Weekly. http://feedproxy.google.com/~r/securityweekly/XBIC/~3/nAiakuENUOw/ #configurationmanagement #intrusiondetection #securityoperations #exploitprevention #identityandaccess #endpointsecurity #incidentresponse #assetmanagement #insiderthreat #threathunting #compliance #articles #blueteam #siem
Sysmon Endpoint Monitoring: Do You Really Need an EDR? - Security Weekly

The endpoint market has been hot for years.  At one point, there were over 80 new endpoint vendors trying to displace the traditional anti-virus vendors.  The endpoint security market was transitioning from endpoint protection to endpoint detection and response (EDR).  EDR is all the rage, but do you really need one? While the endpoint market […]