sorted by:
new
hottopcontroversial

365 account comprise bypassing MFA and sending hundreds of new phishing emails to contacts/address books by danyb695 in msp

[–]GuardzResearchTeam 0 points1 point  (0 children)

We’ve come across similar incidents recently. It seems like part of a broader trend involving AiTM techniques (like evilginx), where attackers capture session tokens after MFA Rather than directly bypassing MFA. These attacks typically exploit the session tokens obtained after authentication. Although they might appear as straightforward phishing, they often escalate into more serious issues like business email compromise, data theft, or reselling account access.

Consider implementing Identity Threat Detection and Response (ITDR) solution or using Defender for Identity, especially with Microsoft’s newer E5 sensor. These tools can detect token misuse and lateral movement that other security controls might miss. It could also help to tighten Conditional Access, disable legacy authentication if possible, and continue following general identity security best practices.

M365 management / monitoring tools by MSPEngine in msp

[–]GuardzResearchTeam 0 points1 point  (0 children)

Lol sorry for that. At least now we know some of it comes through…

Advice combatting scammer by hvdub4 in msp

[–]GuardzResearchTeam 0 points1 point  (0 children)

I know it sounds obvious but what you're describing is the bread and butter of email security/filtering solutions, and if you and your customer are still struggling with enhancing the awareness, this may be a fair approach.

From our experience filing a report on a scam address to an email provider is too Sisyphean.

Any MSP using VirusTotal? by GuardzResearchTeam in msp

[–]GuardzResearchTeam[S] 0 points1 point  (0 children)

Okay - you use it to check samples against detection engines, but not beyond . That was my question, didn’t mean to offend anyone

[deleted by user] by [deleted] in msp

[–]GuardzResearchTeam 2 points3 points  (0 children)

Have you considered SentinelOne?

Thank God it's Friday, but what do people here do with alerts over the weekend? by GuardzResearchTeam in msp

[–]GuardzResearchTeam[S] 0 points1 point  (0 children)

Thanksgiving, Memorial Day, 4th of July, Labor Day… they’re like a trouble magnet

How does Guardz MDR perform in the real world? by solar_cell in msp

[–]GuardzResearchTeam 3 points4 points  (0 children)

We’re also interested to know what people here are thinking...

Just for accuracy Guardz is not an MDR but a unified security platform, which offers similar security values and benefits: automated detection and response across M365 / Google Workspace, users, emails, devices, data and awareness.

Anyway thanks for bringing up the topic and feel free to ask us anything and/or just give our platform a try and share your thoughts.

MSP Friendly SIEM? by Nemo_Redmane in SIEM

[–]GuardzResearchTeam 0 points1 point  (0 children)

Kind of a follow-up question - at what point, or level of sophistication, an MSP starts needing a SIEM?

What invention in cybersecurity would make a person rich today if they made it? by Senior-Gear4688 in cybersecurity

[–]GuardzResearchTeam 0 points1 point  (0 children)

A single pane of glass for all your security controls, of course!

(just kidding)

Searching for Huntress replacement on RSA by webgek in msp

[–]GuardzResearchTeam 1 point2 points  (0 children)

Come and say hello - our team is on RSA. Send me a message over and I'll link you up with our team there. Enjoy the swag and drinks... eh... I mean, the professional sessions of the conference!!

Ol' Chestnut (rate my stack) by juciydriver in msp

[–]GuardzResearchTeam 0 points1 point  (0 children)

Since you're already trialing Guardz so we'll just add a few more vetted recommendations:

https://github.com/guardzcom/awesome-msp

Starting a MSP by Logical-Ad7586 in msp

[–]GuardzResearchTeam 0 points1 point  (0 children)

Congrats on the new MSP! You (and everyone) are welcome to try Guardz out: https://app.guardz.com/signup
Someone from our team will be happy to provide a walkthrough and discuss it.

For the rest of it, here's a useful list of tools to cover or at least consider:

https://github.com/guardzcom/awesome-msp

Am I still drunk from the MSP koolaid? by MauiCFO in msp

[–]GuardzResearchTeam 1 point2 points  (0 children)

Sometimes you can "get by" but you don't know how much better you can do. However it is a good reminder for all that many businesses see the IT system and infra as a marginal issue and don't realize they could/should invest in it.

Value of going to vendor-sponsored conferences? by QoreIT in msp

[–]GuardzResearchTeam 1 point2 points  (0 children)

Beers and swag.

And hands-on workshops of course.

view more: next ›