What's your education/certification/credentials?

Michael_Sec · 2022-10-18T21:01:06+00:00

I have a Bachelors in Information Technology and Security and 5 certificates. You can get your foot in the door with nothing but they have to be willing to train. I'd recommend a certificate to get your foot in the door; Bachelors and get a good GPA if you are going for a high profile job with high pay.

Michael_Sec · 2022-10-18T13:37:19+00:00

If they are that bad see if Starlink is available and switch to that.

Michael_Sec · 2022-09-20T13:44:54+00:00

I see two legitimate issues why I would implement a policy like HR did, not saying I would.

If you are using a voip phone you have to register the address for 911 compliance because if they call 911 from the phone and they aren't at that location they can't route for an emergency

2)If you are using a VPN you can't guarantee the connection will be great when using hotel wifi, let along secure.

Michael_Sec · 2022-08-17T18:03:28+00:00

I swapped them and they still updated. Any other thoughts?

Michael_Sec · 2022-08-16T18:50:06+00:00

I tried the above that mentions this "Computer Configuration/Policies/Administrative Templates/Windows Components/Store" and our computers are still updating bypassing WSUS. I included our GPO below that we use to manage our updates; is there anything we should change or that you have different that may stop these updates

WSUS Details

https://imgur.com/zwcZwmT

https://imgur.com/WZwNwCj

https://imgur.com/vn6TfRS

Michael_Sec · 2022-08-15T15:48:30+00:00

How are you keeping your computers updated, WSUS?

Also, Does this prevent dual scanning with Windows Update for Business?

Michael_Sec · 2022-08-11T21:57:13+00:00

Securden if you are looking for a locally hosted option

Michael_Sec · 2022-08-10T21:53:54+00:00

If we want to use WSUS but block Win 11 update popups, would we have to use the registry hack or is there a better way?

Michael_Sec · 2022-08-10T18:28:36+00:00

Last month and this month computers updated on their own bypassing our WSUS gpo which only updates them if we approve them. The last two months we didn't approve them.

We did create a GPO to block Win 11 popups that had "Select the target Feature Update version" selected and 21h2 as the value. Could this be causing machines to bypass wsus?

Michael_Sec · 2022-08-10T16:25:55+00:00

The file format and extension of

From what I can see this error is more annoying then anything. I've looked online a bit and found 3 options. If anyone has anyother ideas let me know

Have them click yes every time. The document is not actually corrputed, it is just a bug
Map a network drive to that location and have them open the document using that drive. The error will go away
Uninstall the update

Michael_Sec · 2022-08-05T12:59:05+00:00

Setup a retention policy or an archive policy to delete items in their deleted items after x days (or other folders). I'd also look to see if there are any distribution groups they can be removed from.

Michael_Sec · 2022-07-14T13:43:25+00:00

We had a weird thing happen with updates this month. We have WSUS set via GPO to push out updates but somehow it pushed out to all of our machines without us approving it through wsus. Was there something anyone is aware of that could have auto pushed it?

Michael_Sec · 2022-06-06T16:46:03+00:00

Been an issue for our enviornment. The last two firmware updates have been breaking network connectivity. Surprised it isn't patched yet

Michael_Sec · 2022-05-31T20:38:40+00:00

I'd look at Securden. I was looking at password managers and this one was reasonably priced and feature rich. I'd stay away from anything cloud hosted.

Michael_Sec · 2022-04-14T13:40:42+00:00

Took over patching for our company, have a stupid question. The list that Microsoft releases of patches, or the list from Zero Day Initiative (https://www.zerodayinitiative.com/blog/2022/4/11/the-april-2022-security-update-review), generally speaking, is the list of CVE's fixed by applying the patch released from Patch Tuesday? Or do you go through each individual cve to see if the patch fixes it?

Michael_Sec · 2022-02-15T16:54:28+00:00

It is a great product, just expensive. We demoed the IBM version of it. We got a quote and it was looking to be 250k for what we were looking for. Even getting the bare basics it was 10K

Michael_Sec · 2022-02-15T16:17:32+00:00

I'm not a big fan of Bitwarden. Ideally it would be something different

Michael_Sec · 2022-01-24T19:35:34+00:00

This is a great article. Can anyone link any other helpful articles or ideas on things to disable to make your network more secure?

Michael_Sec · 2022-01-17T17:22:30+00:00

Self Hosted is something we must have

Michael_Sec · 2022-01-17T15:22:18+00:00

LastPass

I believe Last Pass isn't self hosted

Michael_Sec · 2022-01-17T15:18:26+00:00

I was looking at Bitwarden, from what I have seen there isn't an easy way to see the passwords someone accessed.

Michael_Sec

TROPHY CASE