Endpoint & Cloud Security

Advisor

Category: EndpointSecurity

  • Common Mistakes in Microsoft Security Management

    Common Mistakes in Microsoft Security Management

    Microsoft provides powerful tools for security, compliance, and governance, but many organizations fail to use them effectively. One common mistake is treating compliance as a checkbox exercise rather than an ongoing process. This leads to misconfigured policies and gaps in audit readiness. Another pitfall is overlooking Microsoft Purview and Defender for Cloud compliance assessments. These…

  • Simulating Defender Tampering & Monitoring It in Microsoft XDR (Sentinel + Defender)

    Simulating Defender Tampering & Monitoring It in Microsoft XDR (Sentinel + Defender)

    Dear Reader, Recently, I’ve observed a noticeable increase in attempts to disable or bypass Windows Defender components — particularly via scripts or misused administrative tools like reg.exe, sc.exe, or even Set-MpPreference. These attempts often target features like: The good news? Microsoft Defender for Endpoint (part of the Microsoft XDR suite) does a great job detecting…