Episode 109 - February 17th, 2025 - [Securing Gen AI Apps with Entra 2/4]
In this episode Michael, Gladys and Mark talk with guest Bailey Bercik
(
)
about how to use Microsoft Entra Permissions Management to identify and manage over-permissioned identities in multi-cloud environments to reduce security risks.
We also discuss Azure Security news about Lessons from AI red-teaming, Azure Confidential Ledger, Star Blizzard treat actor, and the CISA Zero Trust Maturity Model.
We also discuss Azure Security news about Lessons from AI red-teaming, Azure Confidential Ledger, Star Blizzard treat actor, and the CISA Zero Trust Maturity Model.
Links
- Transcript
- 3 takeaways from red teaming 100 generative AI products
- Enhanced Server Audit for Azure SQL Database: Greater Performance, Availability and Reliability
- Azure - Compliance Offerings (January 2025)
- New Star Blizzard spear-phishing campaign targets WhatsApp accounts
- New Microsoft guidance for the CISA Zero Trust Maturity Model
- Secure Generative AI with Microsoft Entra
- Least Privilege in 2025 with Bailey Bercik
Episode 108 - January 20th, 2025 - [Securing Gen AI Apps with Entra 1/4]
In this episode Michael, Gladys, Mark and Sarah talk to guest Diana Vicezar
(
)
from the Microsoft Entra team about security Generative AI applications.
Note, this is a short, simple intro episode to introduce three follow-on episodes.
We also cover security news about TLS 1.3 and Azure Event Grid, big updates to Microsoft Defender for Cloud, Azure Database for MySQL, SQL Managed Instance and Confidential Ledger. about
We also cover security news about TLS 1.3 and Azure Event Grid, big updates to Microsoft Defender for Cloud, Azure Database for MySQL, SQL Managed Instance and Confidential Ledger.
Note, this is a short, simple intro episode to introduce three follow-on episodes.
We also cover security news about TLS 1.3 and Azure Event Grid, big updates to Microsoft Defender for Cloud, Azure Database for MySQL, SQL Managed Instance and Confidential Ledger. about
We also cover security news about TLS 1.3 and Azure Event Grid, big updates to Microsoft Defender for Cloud, Azure Database for MySQL, SQL Managed Instance and Confidential Ledger.
Links
- Transcript
- Configure the minimum TLS version for an Event Grid topic or domain
- Accelerated logs feature in Azure Database for MySQL - Flexible Server
- Service endpoint policies for Azure Storage now generally available in SQL Managed Instance subnets
- Still doing 'scan and shame' vulnerability management?
- Azure Confidential Ledger is now SOC 2 Type II compliant
- What's new in Defender for Cloud features
- Secure Generative AI with Microsoft Entra
Episode 107 - January 7th, 2025 - [Secure by default and Copilot Overshare Blueprints]
Happy New Year!
In this episode Michael, Sarah, and Mark talk with guests Maxime Bombardier
(
) and Emily Blundo (
) about the Secure by default and Copilot overshare blueprints
We also cover news about Always Encrypted Assessment in SQL Server Management Studio, MVP Summit, mapping Entra to the Open Group standard for Adaptive Access, and various CISO Workshop topics!
We also cover news about Always Encrypted Assessment in SQL Server Management Studio, MVP Summit, mapping Entra to the Open Group standard for Adaptive Access, and various CISO Workshop topics!
Links
Episode 106 - December 10th, 2024 - [Microsoft Ignite Wrapup (Security)]
In this episode Michael, Sarah, and Mark talk about the latest security news from Microsoft Ignite. We each go through items that we found of interest in the Book of News.
about
We also discuss Azure Security news about:
We also discuss Azure Security news about:
Links
- Transcript
- MICROSOFT IGNITE 2024 BOOK OF NEWS
- Securing AI and Cloud with the Zero Day Quest
- Microsoft Ignite 2024: Embracing the future of Windows at work
- Security Innovation to Strengthen Cyber Defense in the Age of AI
- Prepare your data for Microsoft Copilot with new tools
- What's New in Windows Security Productivity and Cloud
- Inside Azure innovations with Mark Russinovich
- /hotpatch (Create Hotpatchable Image)
- Announcing Zero Trust DNS Private Preview
- Zero Trust Overview and Playbook Introduction: Guidance for business, security, and technology leaders and practitioners
- Making Zero Trust Real: Top 10 Security Controls you can implement now
Episode 105 - November 15th, 2024 - [Entra ID Tools]
In this episode Michael, Sarah, and Mark talk with guest Merill Fernando
(
)
who is a Principal Product Manager at Microsoft about Entra ID and some of the tools he has worked on over the years.
We also discuss Azure Security news about:
We also discuss Azure Security news about:
Links
- APIs for Managed Private Endpoint are now available
- Retirement: Support for TLS 1.0/1.1 in Application Insights Availability Tests will be retired
- Retirement: Update on retirement of TLS 1.0 and TLS 1.1 versions for Azure Services
- Transcript
- Microsoft Zero Trust Workshop
- Maester
- akaSearch
- Microsoft 365 Message Center Archive
- Refined Microsoft Learn
- Entra.News - Your weekly dose of Microsoft Entra
- Graph X-Ray :Beta
- MSIdentityTools
- idPowerApp
- Azure AD Assessment Guide
- EntraExporter
- Microsoft Graph Permissions Explorer
- Microsoft Ignite
- Support for FIDO2 authentication with Microsoft Entra ID
- Public Preview: Confidential Containers now in preview on Azure Red Hat OpenShift
- Making Zero Trust Real: Top 10 Security Controls you can implement now
- SECURITY PRINCIPLES FOR ARCHITECTURE
- ZERO TRUST COMMANDMENTS
- Zero Trust Overview and Playbook Introduction: Guidance for business, security, and technology leaders and practitioners
Episode 104 - November 11th, 2024 - [Post Bluehat Wrap-up]
In this special episode Michael talks with guest Nic Filinghamm
( )
about what went down at the recent Microsoft Bluehat conference in Redmond, WA.
We also discuss how to tell the NZ and Australian accents apart. This alone is worth listening to :)
This is a follow-on from episode 103 when we talked about what was coming up for Bluehat.
No news, as this is a special, smaller episode. It's also the least edited; other than some ums and ers getting removed and a small retake, the result is as was recorded. Let us know what you think, this feels a little more 'chatty' and personable.
We also discuss how to tell the NZ and Australian accents apart. This alone is worth listening to :)
This is a follow-on from episode 103 when we talked about what was coming up for Bluehat.
No news, as this is a special, smaller episode. It's also the least edited; other than some ums and ers getting removed and a small retake, the result is as was recorded. Let us know what you think, this feels a little more 'chatty' and personable.
Links
Episode 103 - October 17th, 2024 - [Microsoft Bluehat]
In this episode Michael and Sarah talk with guest Nic Filinghamm
( )
about some of the most important security conferences around the globe with a special focus on Microsoft's annual Bluehat conference.
We also discuss Azure Security news about Azure PostgreSQL, Cosmos DB, IP address management, containers and AI Studio.
We also discuss Azure Security news about Azure PostgreSQL, Cosmos DB, IP address management, containers and AI Studio.
Links
- Transcript
- Public Preview: Azure Database for PostgreSQL – Flexible Server—support for postgresql_anonymizer extension version 1.3.2
- Generally Available: Dedicated gateway RBAC support and a new request option
- Public Preview: Azure Virtual Network IP address management
- Announcing Text PII Redaction Container Release
- Public Preview: Evaluations for indirect prompt injection attacks in Azure AI Studio
- Public Preview: Evaluations for protected material (text) in Azure AI Studio
- Youtube: Microsoft Security Response Center (MSRC)
- BlueHat Oct 23. S22: Security Content: Stop Flexing and Start Helping
Episode 102 - October 7th, 2024 - [Entra ID Purple-teaming with Dr Azure AD]
In this episode Michael and Sarah talk with guest Dr. Nestori Syynimaa [Dr Azure AD]
(
)
about Entra ID security and his purple-team tool, AADInternals.
We also discuss Azure Security news about Secure Future Initiative (SFI), MFA for Azure Portal, Playright, WordPress, NSG, Bastion, Azure Functions, MS Ignite, App Service, Defender for Cloud, Containers, Azure Monitor, AKS, Trustworthy AI and Azure AI Content Safety.
We also discuss Azure Security news about Secure Future Initiative (SFI), MFA for Azure Portal, Playright, WordPress, NSG, Bastion, Azure Functions, MS Ignite, App Service, Defender for Cloud, Containers, Azure Monitor, AKS, Trustworthy AI and Azure AI Content Safety.
Links
- Transcript
- Securing our future: September 2024 progress update on Microsoft’s Secure Future Initiative (SFI)
- Announcing mandatory multi-factor authentication for Azure sign-in
- Microsoft Entra Internet Access now generally available
- Managed Identity support for WordPress on App Service
- Manage NSG association on Subnets via Azure Policy
- Retirement: SQL Insights (preview)
- Public Preview: Entra ID support for SSH connections in portal
- Secure & scalable quick starts for Azure Functions using Azure Developer CLI
- Microsoft Ignite Sold Out? Not for Security Professionals! Secure Your Spot
- Build and secure your apps with Azure App Service and Defender for Cloud
- Public Preview: Advanced Container Networking Services: Enhancing security and observability in AKS
- Public Preview: Announcing Azure Monitor Metrics Export in public preview
- Generally Available: FIPS mutability support in AKS
- Microsoft Trustworthy AI
- Announcing the public preview of Hybrid Azure AI Content Safety (AACS)
- AADInternals
Episode 101 - September 20th, 2024 - [GHOST Threat Hunting]
In this episode Michael, Sarah, Gladys and Mark talk with guests Waymon Ho
(
)
and
Matt Zorich
(
)
about the GHOST team at Microsoft and how they help protect Microsoft and Microsoft customers from attacks.
We also discuss Azure Security news about Azure Event Grid, AKS, Azure NetApps, and Chaos Studio. Mark mentions more about Zero Trust.
We also discuss Azure Security news about Azure Event Grid, AKS, Azure NetApps, and Chaos Studio. Mark mentions more about Zero Trust.
Links
- Transcript
- Retirement: Upcoming TLS changes for Azure Event Grid
- Generally Available: Double encryption at-rest for Azure NetApp Files
- Generally Available: Azure Chaos Studio supports a new Network Isolation fault for virtual machines
- Public Preview: FIPS mutability support in AKS
- Security Principles for Architecture
- Zero Trust Commandments
- Zero Trust Overview and Playbook Introduction: Guidance for business, security, and technology leaders and practitioners
- GHOST jobs
Episode 100 - August 29th, 2024 - [Our Stories!]
In this episode Michael, Sarah, Gladys and Mark talk about our careers so far, explain some funny stories and our wishes for a more secure future.
Mark at the start
Sarah 4m 5s
Gladys 6m 50s
Michael 12m 22s
Mark 19m 31s
Sarah 20m 33s
Gladys 22m 46s
Michael 24m 39s
Mark 26m 58s
Sarah 29m 18s
Gladys 31m 48s
Michael 34m 40s
Mark 36m 27s
Sarah 38m 33s
Gladys 40m 34s
Michael 42m 24s
43m 36s
BLOOPER: Not Michael's proudest moment!
Our Stories
Funny Stories
Career Advice
Future
Behind the Scenes
Links
Episode 99 - August 16th, 2024 - [Securing Copilot Data and Purview]
In this (late) episode Michael, Sarah, Gladys and Mark talk with guest Andrew McMurray
(
)
a Principal Product Manager at Microsoft about securing Copilot AI data and the role Purview can play for end-to-end protection.
We also cover news about MFA access to the Azure Portal (Important), PostgreSQL, Entra ID and Windows authn metadata, Backup Vaults, Conditional Access Policy, ADFS, and Azure Container Apps.
We also cover news about MFA access to the Azure Portal (Important), PostgreSQL, Entra ID and Windows authn metadata, Backup Vaults, Conditional Access Policy, ADFS, and Azure Container Apps.
Links
- Transcript
- Update on MFA requirements for Azure sign-in
- Azure Policy Support is Generally Available for PostgreSQL Flexible Server
- Authenticating Microsoft Entra ID using windows principal metadata - Public Preview
- Generally Available: Encryption using Customer Managed Keys for Backup Vaults
- Common Conditional Access policy: Block access for users with insider risk
- Use AD FS application migration to move AD FS apps to Microsoft Entra ID
- Generally Available: Support for Azure Key Vault certificates in Azure Container Apps
- Public Preview: Managed identity support for scaling rules in Azure Container Apps
Episode 98 - June 20th, 2024 - [Secure Future Initiative and Rust at Microsoft]
In this episode Michael and Gladys talk with guest Dave Weston
(
)
about Secure Future Initiative and the growing use of the Rust programming language at Microsoft.
On the topic of Rust, Michael and Dave nerd out, and we make no apologies! Rust conversation starts at 13m:30s.
We also discuss Azure Security news about Defender for Cloud, Azure Bastion and Log Search.
We also discuss Azure Security news about Defender for Cloud, Azure Bastion and Log Search.
Links
- Transcript
- Analyze recommendations with Copilot for Security
- Public preview: Azure Bastion Premium
- Log search alert rules using linked storage will require using a managed identity starting July 2024
- Security above all else—expanding Microsoft’s Secure Future Initiative
- Open-source Rust driver development platform
- Rust support for UEFI development through Project Mu
- Rust: Surface UEFI - Evolution in boot, security & device management to build an industry leading secure PC
- Microsoft Pluton Firmware ported to Rust @ TockWorld 7
- Comprehensive Rust
- The Rust Programming Language
- Circle Compiler
- C++ Safety with Herb Sutter
- Keynote: Safety, Security, Safety[sic] and C/C++[sic] - C++ Evolution - Herb Sutter - ACCU 2024
- C++ safety, in context
- David Weston Posts
- Arm memory tagging extension
Episode 97 - June 6th, 2024 - [Securing AI]
In this episode Michael and Sarah talk with guest Richard Diver
(
)
about securing solutions that use AI and LLMs. Richard also talks about his new book on AI Security, and Michael and Richard talk about what it takes to write a book.
We also discuss Azure Security news about Chaos Studio, API Management, Azure Bastion, Front Door, AKS and Copilot for Security and lots more!
We also discuss Azure Security news about Chaos Studio, API Management, Azure Bastion, Front Door, AKS and Copilot for Security and lots more!
Links
- Transcript
- Generally Available: Azure Chaos Studio supports a new Pause Process fault for Windows virtual machines
- API Management: Circuit breaker
- General availability: Azure Bastion Developer SKU
- Azure Front Door log scrubbing of sensitive data is generally available
- Draft now supports best practices via deployment safeguards
- GA: Support for disabling Windows outboundNAT in AKS
- Public preview: Azure Firewall integration in Microsoft Copilot for Security
- Public preview: Azure Web Application Firewall (WAF) integration in Microsoft Copilot for Security
- Guardians of AI: Building innovation with safety and security (Richard's Book)
- Drawing Cybersecurity (Richard's Newsletter)
- Microsoft Security Development Lifecycle (SDL)
- Microsoft Build 2024 Session catalog
- Inside AI Security with Mark Russinovich
- Secure your AI application transformation with Microsoft Security
- Data Security Considerations for AI Adoption
- Fundamentals of AI safety and security
- How Microsoft Approaches AI Red Teaming
Episode 96 - May 3rd, 2024 - [CNAPP - Cloud Native Applications Protection Platform]
In this episode Michael, Sarah, and Mark talk with guest (and good friend of the podcast) Yuri Diogenes
(
)
about CNAPP - Cloud Native Applications Protection Platform and announce the release of a CNAPP e-book.
We also discuss Azure Security news about Azure SQL DB, Defender for Cloud, Data Box and Trusted Signing.
We also discuss Azure Security news about Azure SQL DB, Defender for Cloud, Data Box and Trusted Signing.
Links
- Transcript
- Public preview: Label-based access control for Azure SQL Database using Microsoft Purview policies
- Microsoft Defender for Cloud Adds Full Coverage for Azure Open-Source Relational Databases
- Azure Data Box Disk is now available with hardware encryption
- Trusted Signing is in Public Preview
- Introducing our CNAPP mastery e-book!
- Planning and Operationalizing Microsoft CNAPP
Episode 95 - April 25th, 2024 - [Threat Intelligence]
In this episode Michael, Sarah and Mark talk with guest Sherrod DeGrippo
(
) Director of Threat Intelligence Strategy at Microsoft about the current state of Threat Intelligence.
We also discuss Azure Security news about Tampa BSides, Virtual Networks, Azure Database for MySQL and PostgreSQL, and SQL Server on Linux.
We also discuss Azure Security news about Tampa BSides, Virtual Networks, Azure Database for MySQL and PostgreSQL, and SQL Server on Linux.
Links
- Transcript
- Tampa BSides - The No BS SOC (slides from April 6, 2024 talk)
- Azure Virtual Network Manager Security Admin Rule generally available in 45 regions
- Public Preview: Long-term retention for Azure Database for MySQL - Flexible Server
- General Availability: Azure Database for PostgreSQL - Flexible Server networking with Azure Private Link
- Enabling Azure Key Vault for SQL Server on Linux
- General availability: Azure Virtual Network encryption availability in all regions
- The Microsoft Threat Intelligence Podcast
- How Microsoft names threat actors
- Threat Intelligence Blog
Episode 94 - April 1st, 2024 - [Copilot for Security]
In this episode Michael, Sarah and Mark talk with guest Ryan Munsch
(
)
about the newly released Copilot for Security.
We also discuss Azure Security news about Azure SQL DB, SSMS 20, Change Actor, Copilot for Azure SQL DB, Azure Container Apps, AI Prompt Shields, AI Groundedness Detection and BlueHat India and Israel.
We also discuss Azure Security news about Azure SQL DB, SSMS 20, Change Actor, Copilot for Azure SQL DB, Azure Container Apps, AI Prompt Shields, AI Groundedness Detection and BlueHat India and Israel.
Links
- Transcript
- Advance notifications for planned maintenance events in Azure SQL Database
- Introducing database watcher for Azure SQL
- Upcoming changes for SQL Server Management Studio (SSMS)
- Announcing the Public Preview of Change Actor
- Introducing Copilot in Azure SQL Database (Private Preview) | Data Exposed
- Public preview: Support for Key Vault Certificates in Azure Container Apps
- Generally Available: Free managed certificates on Azure Container Apps
- BlueHat Israel
- Application to Attend BlueHat India, May 16-17, 2024
- Quickstart: Prompt Shields (preview)
- Quickstart: Groundedness detection (preview)
- Microsoft Copilot for Security
- Get started with Microsoft Copilot for Security
- Copilot for Security Technical Resources
- Intro to Microsoft Copilot for Security webinar series
- Microsoft Copilot for Security - Videos
- The Shift from Models to Compound AI Systems
Episode 93 - March 25th, 2024 - [Continuous SDL]
In this episode Michael, Sarah and Mark talk with guests Tony Rice
(
) and David Ornstein about advances in Continuous SDL (Security Development Lifecycle).
We also discuss Azure Security news about Azure Key Vault, Cloud PKI, OAuth2, updated SQL Server password verifiers, Memory Safety and Azure SQL DB.
We also discuss Azure Security news about Azure Key Vault, Cloud PKI, OAuth2, updated SQL Server password verifiers, Memory Safety and Azure SQL DB.
Links
- Transcript
- RSA Conference: You're Doing It Wrong! Common Security Anti Patterns
- BSides Tampa Agenda
- BSides Tampa Training & Workshops (Friday April 5th)
- Trusted launch (preview) for Azure Kubernetes Service (AKS)
- General availability: Improvements in Azure Key Vault
- Microsoft Cloud PKI launches as a new addition to the Microsoft Intune Suite
- Microsoft Cloud PKI
- Run a quick OAuth app audit of your tenant using this command and protect yourself
- MSIdentityTools
- Support for Iterated and Salted Hash Password Verifiers in SQL Server 2022 CU12
- Memory safety discussion
- C++ creator rebuts White House warning
- Microsoft Entra logins and users with nonunique display names (preview)
- Evolving Microsoft Security Development Lifecycle (SDL)
Episode 92 - March 15th, 2024 - [Global Azure (Security)]
In this episode Michael and Sarah talk with guest Martin Abbott
(
)
about the Global Azure event that starts soon, https://globalazure.net/.
We talk about how to successfully fill out a Call for Papers (CFP) so YOU can present to a global audience about security topics that interest you.
We also cover security news AI security, SQL Always Encrypted, SymCrypt and Rust, SQL Security Fundamentals, and free Security 101 material.
We also cover security news AI security, SQL Always Encrypted, SymCrypt and Rust, SQL Security Fundamentals, and free Security 101 material.
Links
- Transcript
- Global Azure 2024
- Global Azure Blog
- Global Azure Communities
- Always Encrypted with secure enclaves - Intel SGX vs VBS
- Rust crates for SymCrypt
- (Preview) Defender for Cloud Compliance standards added to compliance dashboard
- Join us in 2024 — events to get your teams AI-ready
- Security-101
- Copilot L33t Sp34k
- Smashing The Stack For Fun And Profit
Episode 91 - February 13th, 2024 - [Chaos Studio]
In this episode Michael talks with guest Rigel Carlson
(
)
about Azure Chaos Studio.
We also discuss Azure Security news about Midnight Blizzard and Michael has some advice about using Azure's DefaultAzureCredential()
We also discuss Azure Security news about Midnight Blizzard and Michael has some advice about using Azure's DefaultAzureCredential()
Links
- Transcript
- Using DefaultAzureCredential() 1 of 2
- Using DefaultAzureCredential() 2 of 2
- Optimize app reliability with automated Load and Chaos testing
- Azure Chaos Studio
- Azure Chaos Studio fault and action library
- John Savill's Technical Training: Azure Chaos Studio
- Conf42 Chaos Engineering 2023 - Online
- Virtual network injection in Azure Chaos Studio
- Contoso Traders - Cloud testing tools demo app
- Continuously validate your mission-critical workload
- Recommendations for designing a reliability testing strategy
- PRINCIPLES OF CHAOS ENGINEERING
- Security Chaos Engineering
Episode 90 - January 24th, 2024 - [AI red teaming]
In this episode Michael, Sarah and Mark talk with guests Dr. Amanda Minnich
(
) and Pete Bryan
(
)
about AI Red Teaming.
We also discuss Azure Security news about Azure SQL DB, Trusted VMs, NetApp Files, Azure Load Testing and Front Door. Mark covers further details about Zero Trust and the CISO Workshop.
We also discuss Azure Security news about Azure SQL DB, Trusted VMs, NetApp Files, Azure Load Testing and Front Door. Mark covers further details about Zero Trust and the CISO Workshop.
Links
- Transcript
- What's new in security for Azure SQL and SQL Server
- Private Preview: Upgrade existing Azure Gen1 VMs to Gen2-Trusted launch
- General Availability: Premium SSD v2 and Ultra disks support with Trusted launch
- General Availability: Azure Virtual Network encryption
- General Availability: Customer-managed keys for Azure NetApp Files volume encryption
- Azure Load Testing supports fetching secrets from Azure Key Vault with access restrictions (private AKV)
- General availability: Security Update for Azure Front Door WAF CVE-2023-50164
- Security Adoption Resources
- New Microsoft Incident Response guides help security teams analyze suspicious activity
- Frequently asked questions about Microsoft Copilot for Azure in Cosmos DB (preview)
- Exam AI-900: Microsoft Azure AI Fundamentals
- Microsoft Responsible AI Standard, V2
- Microsoft AI Red Team building future of safer AI
- Planning red teaming for large language models (LLMs) and their applications
- MITRE ATLAS™ (Adversarial Threat Landscape for Artificial-Intelligence Systems)
- How Johnny Can Persuade LLMs to Jailbreak Them
- Microsoft’s AI Red Team Has Already Made the Case for Itself
- Researchers Discover New Vulnerability in Large Language Models
- Embrace The Red
- Prompt Engineering Guide
- NIST Identifies Types of Cyberattacks That Manipulate Behavior of AI Systems
- Tree of Attacks: Jailbreaking Black-Box LLMs Automatically
- LLM Data Security Best Practices
- Comprehensive Guide to Large Language Model (LLM) Security
- Make Gandalf reveal the secret password
- Jailbreak Chat