Weekly Tech Tidbit – Remote Risks and Compliance Part II – Secure and Reliable Communications

Last week I talked about the importance of Cloud Backup in our new remote teaching and learning and back-office school environments.

This week I am going to talk about secure and reliable communications.

The reality is that the number one threat to your network is your users clicking on attachments or web links that lead to bad places that can potentially launch an attack against the user and ultimately your physical and cloud network resources.

Weekly Tech Tidbit – Secure Your Endpoints with Disk Encryption

Disk encryption is growing in popularity as a means of better-securing laptops and desktops.   Microsoft is offering BitLocker natively in Windows 10.   Microsoft Endpoint Configuration Manager has a built-in BitLocker Administration console.  If you don't have SCCM, then Microsoft offers the MBAM console to manage encryption.

Tech Tidbit – Closing Time. Protocols and Processes that have to go!

For the last few years Microsoft has been talking about "Modern" this or "Modern" that.  In the quest for improved security they are agressively trying to move everyone to more modern protocols.  The impending LDAPS changes are an example of this.   However, there are more processes and protocols that they are urging you to retire.

Tech Tidbit – Your Battle – Deny Lateral Movement vs. Momentum

I constantly harp on denying the bad guys access to your network, and if they are inside already, denying lateral movement.  At the last Tech Talk, I mentioned that I am watching many of the Paladin Sentinel Monitoring sites just RDP into all the servers with the true Domain Admin Administrator ID - just like we did 15 years ago.

Tech Tidbit – Two ways to sanely maintain remote endpoints

The reality of many K-12 school districts is that you either have handed out or are handing out laptops to teachers and critical staff to get through this quarantine.   All those great tools you had been using: WSUS, SCCM, and KACE are now functionally useless for those remote users.

Weekly Tech Tidbit – NIST Significantly Changes Password Recommendations

Earlier this month, on March 2, NIST formalized a significant number of changes to its password recommendations as part of the final release of its updated Digital Identify Guidelines document or NIST publication SP 800-63-3.  The full document which includes three additional sister documents (800-63A, 800-63B & 800-63C) is here:

https://csrc.