Newsletter #7 2023
Published on: December 03, 2023
Hi,
First of all, thank you for subscribing and reading the EndpointCave security newsletter.
I feel honored that you will join me on the journey of this bi-weekly Security Newsletter! My goal is to deliver valuable security content directly to you and your inbox.
But I need your help, do you have any valuable content that needs to be shared with the community? Did you create a security blog post or did you find a security-related news item that needs to be mentioned in my upcoming newsletters?
Please send me a message. You can contact me on Twitter (X) or LinkedIn.
The community has created a lot of content in the past two weeks. I want to share some of those blogs and videos with you. First of all, I want to highlight some content and after the highlights and video, I have shared some blogs from the community for the community. I assume that one of those topics will be interesting for you.
For your information, this will be the last newsletter for 2023. I will enjoy my two-week Christmas holiday. I will be back next year. So it is maybe a little bit early but I wish you all a Merry Christmas and a Happy New Year.
Highlights
Microsoft’s Windows Hello fingerprint authentication has been bypassed
Microsoft’s Windows Hello fingerprint authentication has been bypassed on laptops from Dell, Lenovo, and even Microsoft. Security researchers at Blackwing Intelligence have discovered multiple vulnerabilities in the top three fingerprint sensors that are embedded into laptops and used widely by businesses to secure laptops with Windows Hello fingerprint authentication.
Security Tech Accelerator – Next week!
As a follow-up from Ignite, Microsoft will be hosting a deeper dive into the announcements shared and give you the chance to ask their product teams questions (register for a Tech Community Profile now so you can ask questions live, during the event). Microsoft’s goal is to connect you to your security peers and equip you with the technical knowledge that will help you and your team safely and confidently adopt AI.
Security topics to watch
Unifying SIEM & XDR: a new era in SecOps
In this episode—live from Microsoft Ignite—Principal Product Managers Javier Soriano and Tiander Turpijn lead the conversation on the newest unified security operations platform. Learn how this innovation offers you enhanced analyst efficiency by combining security information and event management (SIEM) and extended detection and response (XDR), reducing interruptions through consolidation of duplicate features, and enabling proactive attack detection and disruption across Microsoft and non-Microsoft products. Discover how you can benefit from comprehensive coverage from the market’s most extensive XDR capabilities and a SIEM that extends across multi-cloud business applications, the Internet of Things, operational technology, and multiple platforms.
Incident Response: Azure Log Analysis
Investigating an incident with log analysis! Navigating a simulated attack of a managed service provider– from initial intrusion all the way to full network exploitation, we uncover what techniques the attacker used to compromise this Azure environment!
The New Microsoft Purview Portal – A work in progress?
In this video, Peter takes the new Microsoft Purview portal out for a spin, with some surprising results!
Blogs from the community
Thank you for being a part of my newsletter, I hope you found valuable content in my newsletter. I look forward to delivering more valuable content in the future.
Your feedback is welcome, so please feel free to share your thoughts and suggestions for future editions.
Kind Regards,
René
EndpointCave
Rami Al-zayat 
Albert Stoynov
Andrea De Santis
Possessed Photography
Hi! My name is René Laas. I have passion and enthusiasm for the Microsoft 365 Cloud. I am based in the Netherlands.
Jon Tyson