Skip to content
Menu
IT-DRAFTS
  • About
  • My Statistics at Microsoft Q&A
  • Privacy policy
IT-DRAFTS

Tag: CloudSecurity

October 8, 2025October 7, 2025

🛡️ Secure Medallion Architecture on Azure Databricks Or How to Stop Treating Your Lakehouse Like a Flat Share

Everyone talks about data security. Few actually practice it.Enter the Secure Medallion Architecture — Microsoft’s idea of not letting your Bronze data drunkenly stumble into your Gold tables at 2 AM. Built on Azure Databricks + Unity Catalog + Managed Identities, this design isn’t about shiny diagrams.It’s about not waking up one morning to find…

Read More
October 2, 2025September 29, 2025

Why Most Cloud Pros Still Connect to Azure VMs the Wrong Way

After reviewing more Azure setups this quarter than I care to admit, I keep spotting the same tired anti-pattern: organizations still exposing VMs with public IP addresses just to RDP in. Let’s be blunt: it’s lazy, it’s risky, and in 2025, it’s downright embarrassing. The Old RDP Model — A Security Horror Show Traditional RDP…

Read More
September 29, 2025

Are Your Cloud Configurations Putting You at Risk? (Spoiler: Probably)

Misconfigurations are the silent killers of cloud security. You can spend millions on shiny security tools, but one sloppy checkbox or default setting can hand attackers the keys to your kingdom. That’s why this webinar agenda hits hard: we’re diving into the most dangerous Azure cloud misconfigurations that keep CISOs awake at night — and…

Read More
September 23, 2025September 18, 2025

🔥 Zero Trust Architecture: No More Free Passes 🔥

Hey guys, let’s talk about Zero Trust, isn’t a product you buy, it’s a mindset you adopt. The idea: never trust, always verify. Every identity, device, app, and network packet is guilty until proven innocent. Microsoft has gone all-in, embedding Zero Trust principles into Entra, Intune, Defender, Sentinel, Purview, and the rest of the ever-growing…

Read More
September 18, 2025

WireGuard in AKS: Microsoft Finally Gets Serious About In-Transit Encryption

Alright folks, let’s cut through the PR fluff. Microsoft just dropped WireGuard in-transit encryption for AKS (yep, still Public Preview), and it’s actually worth paying attention to. What’s the Deal? AKS now supports WireGuard-based encryption between pods that live on different nodes. This is baked into Azure CNI with Cilium, so you don’t need to…

Read More
August 19, 2025

Microsoft Security Exposure Management: Ninja Training — No Magic, Just Painful Truths

Hi for All of you IT geeks and Security Gents! If you thought this was another shiny Microsoft hype circus — spoiler: it’s not.MSEM Ninja Training won’t turn you into some Hollywood hacker-Ninja in a hoodie. What it will do is drag you through the joyless swamp of Continuous Threat Exposure Management (CTEM) until you…

Read More
August 4, 2025August 2, 2025

Azure Firewall Selective Logging: Finally Logging Smart, Not Everything

Hi. Actually i dont know if my blog interested at all to any one, but any way 🙂  if your SIEM is drowning in firewall logs—allowed traffic, denied traffic, heartbeats, DNS pings, internal chatter—you’re paying big just to listen to crickets. that’s old school. Microsoft just flipped the switch with selective logging, and now your…

Read More
July 15, 2025

Azure Landing Zone on Steroids: Why You Need a Dedicated Security Subscription and Management Group

What just happened? Microsoft introduced a new management group called Platform, along with a dedicated subscription solely for core platform and security services in Azure Landing Zone. Why? To cleanly separate foundational security services from the app mess. Why this matters Security and infrastructure are like the skeleton of your cloud. If it’s weak, everything…

Read More
July 9, 2025

Microsoft Just Threw Windows Licensing into the Cloud — And Locked It Inside Confidential VMs

Hi ))))))))))))) So here’s the deal: Microsoft just migrated its entire Windows Key Management Service (MKMS) — the backbone of license activations for Windows, Xbox, Office and who knows what else — into Azure.Not just any Azure. We’re talking Confidential Virtual Machines, managed HSMs, and enough hardware-backed encryption to make even the NSA feel excluded….

Read More
June 22, 2025June 19, 2025

Microsoft Entra: The Identity Control Freak We Actually Needed

hi. look, let’s get this straight: the internet’s a mess. cloud, hybrid, remote work, BYOD, shadow IT, LLMs with plugins, interns with full access at 3 a.m.everything’s connected. everything’s exposed. everyone’s logging in from somewhere. so who the hell controls who gets in — and what they can do? yep. that’s what Microsoft Entra was…

Read More
  • 1
  • 2
  • Next

Categories

ActiveDirectory AI AIInfrastructure Azure AzureAI azurepolicy azuresecurity cloudarchitecture cloudnetworking CloudSecurity Copilot ctrlaltdelblog Cybersecurity DataProtection DataSecurity DevOps devsecops Entra entraID GDPRcompliance Howto hybridcloud infosec Innovation Intune ITProblems licensing Microsoft Microsoft365 Microsoft AI MicrosoftAzure microsoftcloud Microsoft Product microsoftsecurity SecureAccess Security securitycopilot SoftwareUpdate sysadminlife TechNews updates Windows Windows10 Windows11 zeroTrust

Archives

  • October 2025
  • September 2025
  • August 2025
  • July 2025
  • June 2025
  • May 2025
  • February 2025
  • October 2024
  • September 2024
  • July 2024
  • June 2024
  • May 2024
  • April 2024
  • March 2024
No comments to show.

Recent Comments

Recent Posts

  • 🛡️ Secure Medallion Architecture on Azure Databricks Or How to Stop Treating Your Lakehouse Like a Flat Share
  • Monitoring Azure OpenAI Your Way — Without Tossing Out Your Observability Stack
  • How to Push Windows 11 25H2 Using Intune (Without Losing Your Sanity) + PowerShell Script
  • Goodbye SCOM Managed Instance: The End of an Era
  • Cybersecurity Tools: Expectation vs Reality
©2025 IT-DRAFTS | Powered by WordPress and Superb Themes!