Microsoft Access Driver Query is corrupt

INTRODUCTION Today I was involved in a particular incident where Windows Updates did its thing and broke something. This time it involved an update for Access, a database program provided by Microsoft, causing specific queries to output that they are corrupt. Due to its unclear nature at first, I thought I would write a quick…



Basic Troubleshooting in Windows 10

In my role I receive a lot of incidents that needs to be solved. My mission is firstly to restore the service back to normal. Once the service is back to normal we can look at making any further changes so that the incident won’t happen again. In this post I will focus my troubleshooting…



Walkthrough of setting up on-premises data gateway for Power Bi

Hi and welcome to my walkthrough of setting up an on-premise data gateway. What is an on-premise data gateway? Microsoft has provided a very good answer to this question in the link within the question. If you are looking for an easy explanation: Connect your on-premise data securely to your cloud services (Power BI, PowerApps,…



Discover users running Legacy Authentication and why you need to disable it

Are you running Exchange Online and still allow Basic Authentication (a.k.a. Legacy Authentication) for all users and not running MFA? Then you’re extremely exposed to attacks. Microsoft has announced the blocking of this on 13 Oct 2020 but the biggest problem is that you probably will get (and possibly already have been) breached because of…



Chrome tabs hang or crash with white screen

EDIT/UPDATE: The case seems to be resolved: https://bugs.chromium.org/p/chromium/issues/detail?id=1024837 Today we experienced major problems with the application Google Chrome in multi-user environments such as Citrix XenDesktop 7 (according to support.google.com community forum IT-administrators are seeing this in many different types of environments, RDS, XenApp, XenDesktop, with different hypervisors, different version of Windows Server and Desktop and…



Azure Active Directory Authentication with Open VPN

Until recent you could connect to your VNet in Azure with certificate-based or RADIUS authentication but now Microsoft Azure support native Azure Active Directory authentication with Open VPN protocol. Azure AD integration with Open VPN enables user-based policies, multi-factor authentication (MFA) together with conditional access for P2S VPN. In order for Azure AD authentication to…



Great new feature for O365 – reduce the amount of successful phishing attempts

As I wrote in my blogpost back in March, phishing is an attack concept where an attacker usually contacts a victim pretending to be from a trustworthy source to get information that they shouldn’t have gotten if they used their real identity. When an attacker targets specific individuals or groups within an organization the phishing method…



Google QUIC Protocol & How to block in Palo Alto

Google QUIC is a new protocol which is designed to make the web faster, QUIC stands for Quick UDP Internet Connection, commonly used in streaming media, VoIP services and gaming. This protocol is activated by default in Google Chrome and it’s also growing by a list of websites who have implemented this protocol. But why…



ADFS Claims depending on multiple conditions such as group membership and password expiry

In this post I will quickly demonstrate how to achieve a ADFS Claims depending on two different conditions. This specific case is about the password expiry claims that we only want to show for users that are member in a specific Active Directory group. First we need to add an Issuance Transform Rule where we…



Varonis DatAdvantage – Verify continuous communication with all domain controllers

When you are using Varonis to monitor your environment it’s important to make sure that you don’t miss any critical events. One weakness in the current version of Varonis that I found out about is that you won’t get any notification if the event collection from one domain controller stops to work and you will…