msandbu.org

One of the new services that was released last week during Microsoft Ignite was Copilot Studio. Studio is a “rebranding” of Power App Virtual Agent. It is a low-code platform designed for tailoring Copilot for Microsoft 365 and creating independent copilots. This platform integrates various advanced conversational features, including specialized GPT models, generative AI add-ons, …

How to set up Copilot Studio with OpenAI and integration with Sharepoint online Read More »

Earlier this year, Microsoft introduced support for Entra ID authentication to an Azure file share using the REST API. So why should we care about using Entra ID support for an Azure File share? well, the combination is that now we have a multi-protocol file service. This means that regular users can access the file …

Authenticating to an Azure Files Share with Entra ID and Rest API Read More »

Earlier today I was troubleshooting something for a customer where some end-users were getting issues when trying to connect to an Azure blob storage using the Azure web portal. This also recently stopped working and impacted some of the users. This was the error message that they were getting when trying to connect. “Unable to …

The curious case of Defender for Cloud Apps, Azure blob storage, and Web Browsers Read More »

A critical zero-day vulnerability, identified as CVE-2023-20198, has been discovered in Cisco IOS XE devices, and widespread exploitation of this flaw is already underway. This security lapse is alarmingly severe, as it allows attackers unauthenticated remote access with full administrative privileges on the compromised devices. The Vulnerability This security flaw resides in the Web UI …

Critical zero-day vulnerability CVE-2023-20198 in Cisco devices where thousands of devices have already been compromised Read More »

A couple of weeks ago, I had a conference talk about how large language models can help people working with IT security. While we are still in the early phases of LLMs they can be quite helpful within multiple areas, which I want to highlight in this blogpost. First of with all new threats emerging …

How can LLMs help with Operational IT-Security? Read More »

Have you ever used Curl? It’s likely you have! Curl is installed on countless machines and devices, with Libcurl being the standout component. Libcurl is a versatile client-side URL transfer library that supports a wide range of protocols and features, including cookies, DICT, FTP, FTPS, Gopher, HTTP/1 (with HTTP/2 and HTTP/3 support), HTTP POST, HTTP …

cURL vulnerability CVE-2023-38545 and information Read More »