msandbu

Securing Virtual Machine Infrastructure in Microsoft Azure

Leave a Comment / 9. May 2022

This is a summary blog post on a presentation that I hosted on the Microsoft Security User Group Norway a few weeks back (You can view the presentation here –> community/MSUGC-securing-virtual-machines-english.pptx at main · msandbu/community (github.com)) There are many security features within Microsoft Azure when it comes to securing virtual infrastructure. 1: Encrypting data and VM …

Securing Virtual Machine Infrastructure in Microsoft Azure Read More »

Azure Virtual Desktop and ShortPath for Public Networks

Leave a Comment / 9. May 2022

A couple of weeks ago, Microsoft introduced a new preview feature for AVD called ShortPath for Public Networks. This allows us to get UDP-based connections to our AVD machines instead of the traditional Reverse TCP-based connections. NOTE: This feature is still in preview This of course improves our end-user experience since we can push more content without needing to …

Azure Virtual Desktop and ShortPath for Public Networks Read More »

IPv6 Support in Microsoft Azure

Leave a Comment / 9. May 2022

With more governmental requirements enforcing requirements that public-facing services need to support IPv6 a lot of customers that have started their cloud journey might be having some issues with adopting IPv6 on all their services. Especially with Microsoft Azure, not all services support IPv6 natively, therefore, I wanted to write this post to give an …

IPv6 Support in Microsoft Azure Read More »

Samsung hacked by Lapsus

Leave a Comment / 5. March 2022

Last week, a hacker group called LAPSUS had able to gain access to NVIDIA and was able to collect a large amount of data from the internal fileservers, including code signing certificates. Now this week they also claim that they have hacked Samsung, and are providing a lot of claims/proof on what kind of data …

Samsung hacked by Lapsus Read More »

New Book Project: Windows Ransomware Protection and Detection

Leave a Comment / 19. January 2022

10 years ago, I wrote my first book together with Packt Publishing, today I’m happy to announce that I’m started working on a new book project together with them. The title will be “Windows Ransomware Protection and Detection“, the content of the book will be focused on: * What is ransomware? giving real-life examples of …

New Book Project: Windows Ransomware Protection and Detection Read More »

Threat Hunting in Microsoft Azure

Leave a Comment / 17. January 2022

A while back, a customer asked me to help inspect what happened to an environment in Azure that got compromised and was used to launch a ransomware attack.  Unfortunately, this environment also had a VPN connection between Azure and their existing on-premises data center which also meant that their entire infrastructure got compromised eventually…. Now …

Threat Hunting in Microsoft Azure Read More »

Upgrade Azure Kubernetes Service using Terraform

Leave a Comment / 12. January 2022

With Azure Kubernetes Service, Microsoft is constantly developing the service to follow the release cycle of Kubernetes, with an updated version coming every 3. months it means that it requires a lot of upgrading of the Kubernetes instances to be on a supported version. Microsoft has a list here of the release calendar Supported Kubernetes versions …

Upgrade Azure Kubernetes Service using Terraform Read More »

Getting started with Azure Operator for Kubernetes

Leave a Comment / 4. January 2022

So, what is a Kubernetes Operator? it is software extensions to Kubernetes to provide it with the ability to provision resources or changes outside of the cluster. Think about the ability to provision resources in a cloud provider but as Kubernetes resources instead of using other means to build resources. Consider that Kubernetes can be …

Getting started with Azure Operator for Kubernetes Read More »

Scroll to Top