AI-powered
podcast player
Listen to all your favourite podcasts with AI-powered features
Risky Business
Soap Box: A deep dive on how Russia's SVR is hacking Microsoft 365 tenants
Feb 18, 2024
Cybersecurity expert Andy Robbins from SpecterOps discusses Russia's SVR hacking Microsoft 365 tenants. Topics include Entra ID security, detecting attack paths, managing permissions, hacking tactics for email inboxes, and the importance of permissions auditing in Azure environments.
39:48
Episode guests
AI Summary
AI Chapters
Episode notes
Podcast summary created with Snipd AI
Quick takeaways
- Properly securing Entra ID tenants is crucial due to Russia's SVR attacks, highlighting the use of Bloodhound Enterprise for vulnerability assessment.
- Permissions auditing in Azure is critical to prevent foreign application privilege escalation, necessitating streamlined auditing processes for enhanced visibility.
Deep dives
Overview of Bloodhound Enterprise and Its Capabilities in Active Directory
Bloodhound Enterprise, developed by SpectorOps, is a tool designed to connect to Active Directory systems and identify attack paths by identifying misconfigurations and risky permissions. The tool provides insights into potential vulnerabilities by demonstrating how adversaries can exploit pre-existing configurations and privileges within the system.
Get the Snipd
podcast app
Unlock the knowledge in podcasts with the podcast player of the future.
AI-powered
Discover
highlights
Listen to the best highlights from the podcasts you love and dive into the full episode
Save any
moment
Hear something you like? Tap your headphones to save it with AI-generated key takeaways
Share
& Export
Send highlights to Twitter, WhatsApp or export them to Notion, Readwise & more
AI-powered
podcast player
Listen to all your favourite podcasts with AI-powered features
Discover
highlights
Listen to the best highlights from the podcasts you love and dive into the full episode