Weekly Tech Tidbit – Secure Your Endpoints with Disk Encryption

Disk encryption is growing in popularity as a means of better-securing laptops and desktops.   Microsoft is offering BitLocker natively in Windows 10.   Microsoft Endpoint Configuration Manager has a built-in BitLocker Administration console.  If you don’t have SCCM, then Microsoft offers the MBAM console to manage encryption.

Read more

Tech Tidbit – Closing Time. Protocols and Processes that have to go!

For the last few years Microsoft has been talking about “Modern” this or “Modern” that.  In the quest for improved security they are agressively trying to move everyone to more modern protocols.  The impending LDAPS changes are an example of this.   However, there are more processes and protocols that they are urging you to retire.

Read more

Tech Tidbit – Your Battle – Deny Lateral Movement vs. Momentum

I constantly harp on denying the bad guys access to your network, and if they are inside already, denying lateral movement.  At the last Tech Talk, I mentioned that I am watching many of the Paladin Sentinel Monitoring sites just RDP into all the servers with the true Domain Admin Administrator ID – just like […]

Read more

Tech Tidbit – Two ways to sanely maintain remote endpoints

The reality of many K-12 school districts is that you either have handed out or are handing out laptops to teachers and critical staff to get through this quarantine.   All those great tools you had been using: WSUS, SCCM, and KACE are now functionally useless for those remote users.

Read more