Office 365

Presenting the Exchange Recipient Admin Center

Microsoft delivered Exchange Server 2019 Cumulative Update 12, which permits you to eliminate your last Exchange Server so you can run Active Directory with Azure AD Connect and oversee Exchange-related ascribes in an upheld way.

In any case, in light of the fact that the UI, the Exchange Admin Center, is important for Exchange Server, it implies that the administration apparatuses are PowerShell as it were. Realizing that not every person likes to deal with their Exchange-related ascribes with PowerShell scripts, I fostered an open-source GUI to assist you with dealing with your post boxes.

Called the Exchange Recipient Admin Center (ERAC), it’s a free, open-source GUI that utilizes the new cmdlets in the engine, and is intended to run locally for you on request when you really want it. The main delivery is essentially intended for organizations with under 200 letter drops. On the whole, let me set the stage.

Getting ready for your post-Exchange Active Directory

However long you run Azure AD Connect to synchronize your AD clients to Azure AD, and in this way Microsoft 365 and Exchange Online, you are running in a crossover personality state. This implies that the expert of your Exchange Online post box ascribes is the nearby Active Directory.

Microsoft requires Exchange-related characteristics to be set and overseen appropriately with the goal that they can uphold you assuming there are issues. As of not long ago, this implied that you expected to run an Exchange Server on-premises to deal with the Exchange Online letter drops, appropriation gatherings, contacts, and other related things (like email address approaches). The progressions you make utilizing the Exchange Server on-premises would be put away in the neighborhood AD, then, at that point, Azure AD Connect synchronizes them to the cloud. Dealing with the qualities straightforwardly utilizing AD instruments like ADSIEDIT takes a chance with possible issues, and thusly, stays unsupported.

Trade Server 2019, Cumulative Update 12 (or more) consider the establishment of simply the Management Tools, and furthermore permit you to forever eliminate (not uninstall) your last Exchange Server 2019. Also, assuming you are working out a new greenfield climate that incorporates Active Directory and Azure AD Connect, you can now expand the mapping and set up the AD backwoods for Exchange credits, however at that point just introduce the administration tooling.

The administration tooling itself is just a subset of beneficiary administration instruments intended for use subsequent to moving from Exchange your last post boxes to Exchange Online. The tooling is intended for overseeing far-off letterboxes, appropriation gatherings, mail contacts, acknowledged areas, and email address strategies.

However, eliminating the keep going on-premises Exchange Server isn’t ideal for everybody. Regardless of whether you moved every one of your post boxes to Exchange Online, you are probably going to save at least one Exchange Server for continuous SMTP mail hand-off for inheritance on-premises application servers, basically for the present. In the event that you’re uncertain about whether you can eliminate your last Exchange Server yet, read more about eliminating the last Exchange Server.the stage.

Trade-related traits the board: The Exchange Recipient Admin Center (ERAC)

In the event that you are glad to eliminate the last Exchange Server, however overseeing beneficiaries exclusively utilizing PowerShell isn’t so much for you, and you’d like to have a GUI, then I trust you’ll find the Exchange Recipient Admin Center valuable.

The ERAC is written in PowerShell, so you can check how it will respond, however you don’t need to utilize PowerShell to utilize it.

Initial, an expression of caution: Because the ERAC is a neighborhood just, it runs as the client you would run the Exchange beneficiary administration devices as. When you send off it, it dispatches a neighborhood internet browser for access and doesn’t need a login. Hence, don’t run this on a common VDI climate or leave it running on any multi-client machine. It isn’t planned as a solid web server, so if you need to run an organization open server with an online point of interaction for Exchange Management: continue to run Exchange Server 2019.

If this sounds great and you have any desire to test the principal adaptation either clone or download the ZIP and concentrate from the GitHub webpage:

Trade Recipient Admin Center on GitHub

You should be endorsed as a client who’s an individual from the Recipient Management EMT security bunch in AD. Then right-snap and run the PowerShell script. In the same way as other PowerShell scripts, you could have to unblock the document first.

Figure 1: Launching the Exchange Recipient Admin Center
At the point when you send off the ERAC, it makes a localhost-just web server on an arbitrary high port. It is written in PowerShell, inexactly founded on the PowerShell Web Server undertaking and uses the open-source Bootstrap front-end toolbox.

The ERAC is planned with a natural connection point so it will be recognizable in the event that you utilize the new Exchange Admin Center in Microsoft 365:

Figure 2: The ERAC landing page
The ERAC UI is intended to give you admittance to the new administration cmdlets, with areas for overseeing far-off letterboxes, circulation gatherings, contacts, email address strategies, and acknowledged spaces.

For far-off post box executives, the underlying rendition permits you to see beneficiaries, acknowledged areas, and email address properties, empower new far-off letter drops for existing AD clients, and presently, oversee existing distant post boxes. For new AD clients, keep on utilizing Active Directory Users and Computers, then empower the new client as a Remote Mailbox in the ERAC.

Figure 3: Remote Mailbox the executives and empower new clients for Exchange Online
The idea is rehashed across each segment. You can see objects across each, and in practically no time, empower existing AD contacts as mail contacts and oversee gatherings, acknowledged spaces, and email address arrangements.

Figure 4: Additional beneficiary and arrangement segments, adjusted to beneficiary administration cmdlets
Since this is the main delivery, anticipate more highlights sooner rather than later.

You can report issues and make highlight demands by means of my GitHub repo or in the remarks beneath.

On my underlying rundown for forthcoming highlights:

• Moving the online UI to a nearby application, utilizing Electron (like Teams does today) or WebView2 to eliminate the need to run a web server utilizing PowerShell.
  Adding controls for result size, search/sifting, and pagination to Remote Mailbox, Distribution Group, and Contact the board segments
  Adding the capacity to make and erase AD clients, assuming that you have consents to do as such.
  Adding a design document to store customizations, like pagination and greatest outcomes or default OUs for object creation.
  Adding the capacity to see the “Consider the possibility that” consequence of an activity
  Adding an EAC-style PowerShell cmdlet log to assist you with realizing what cmdlets to utilize
  Including the capacity to interface with Exchange Online as a feature of introduction, so you can see the consolidated outcomes, oversee cloud-side design, for example, authorizations and client access settings, and see when a change is duplicated to Exchange Online
  Feel free to me know which of those you’d see as generally helpful, and add a remark

beneath assuming you find the Exchange Recipient Admin Center instrument valuable.

Microsoft has this week announced Office 365 Government Secret, a new version of its cloud productivity suite. In a blog post, the company describes the product as a software-as-a-service that will offer bespoke functionality for U.S. federal agencies. It will be available by mid-2022, although will likely begin as a preview.

“Office 365 Government Secret which is currently in government review pending accreditation and targeting availability starting mid-2022. This environment is built to support the US Federal Civilian, Department of Defense (DoD), Intelligence Community (IC), and US government partners working within the Secret enclave with our best-in-class software as a service (SaaS) capabilities.”

Of course, the big difference here compared to regular Office 365 is compliance and security specifically for use in government agencies. For example, Office 365 Government Secret supports Impact Level 6 (IL6) work.

This means classified/secret data can be stored without being compromised. Furthermore, IL6 support allows the data to “only be processed in a DoD private/community or Federal government community cloud.”

Features

Microsoft is also leveraging dedicated datacenter infrastructure to process and store government data. The company describes this as “self-contained,” so it is closed and specifically for Government Secret customers. IL6 workloads on Office 365 are separate from non-DoD data.

Furthermore, government agencies have access to Microsoft ExpressRoute, a solution for private internet.

“Governments face many challenges in today’s globally connected workspaces, including increasing employee engagement and productivity with the latest tools, securing and controlling sensitive data, and managing multiple applications, devices, and workloads,” Microsoft adds.

Office 365 Government Secret will sit alongside the company’s existing Government Secret products, including Azure Top Secret and Government Secret on the cloud.

Tip of the day: When you boot Windows it delays the launch of startup programs for ten seconds so your desktop and Windows services will have finished loading. If you want to speed up boot time, have a look at our tutorial about how to disable startup delay.

Source Winbuzzer

Security researchers are warning of an ongoing phishing campaign that is utilizing fake Office 365 notifications to fool unwitting users. The notifications warns users of blocked spam messages and asks them to review the messages. Of course, the links are nefarious and are loaded with spyware that will steel the users’ Microsoft account details.

These emails are especially dangerous because they look legitimate with the address quarantine[at]messaging.microsoft.com. Display names also match the domain of the recipient, making it even more believable.

Furthermore, each email has the Office 365 logo and links to Microsoft’s real privacy statement. However, users who pay close enough attention will see some standard problems that giveaway the nature of the mails. Specifically, shoddy formatting and strange spaces in the body.

The email subject is ‘Spam Notification: 1 New Messages,’ alluding to the body of the email that informs the recipient that a spam message has been blocked and is being held in quarantine for them to review,” cloud email security firm MailGuard says. The company found the campaign and reported it.

“Details of the ‘Prevented spam message’ are provided, with scammers personalizing the subject heading as ‘[company domain] Adjustment: Transaction Expenses Q3 UPDATE’ to create a sense of urgency and using a finance-related message.”

Attack

When a user clicks a link, they are sent to the landing page of the phishing campaign which is designed to mimic Microsoft’s Security and Compliance Center. If they enter their Microsoft Account credentials when asked, the details are sent to servers run by the attack group.

“Providing your Microsoft account details to cybercriminals means that they have unauthorised access to your sensitive data, such as contact information, calendars, email communications, and more,” MailGuard adds.

Tip of the day: To prevent attackers from capturing your password, Secure Sign-in asks the user to perform a physical action that activates the sign-in screen. In some cases, this is a dedicated “Windows Security” button, but the most common case in Windows is the Ctrl+Alt Del hotkey. In our tutorial, we show you how to activate this feature.

Source Winbuzzer

Microsoft Edge 96 is now rolling out to users on Windows, Linux, and macOS. This is a Stable channel release of the latest version, bringing Microsoft’s web browser up-to-date with a number of interesting new features.

For example, there is now an integrated Office file viewer to make it easier to open documents directly within Microsoft Edge. Elsewhere, Edge has now become the default PDF viewer for Windows 11 and Windows 10.

Microsoft Edge 96 improves the integration, including the introduction of freeform highlighters to the viewer. Furthermore, the web browser is getting a new Dictionary that is embedded in the toolbar within the Immersive Reader.

There is also a Math Solver tool, which first landed in preview earlier this year. Math Solver works by the student taking a photo of a math problem (hand-written or printed) and Edge will read the image and provide a solution. It will also show how the answer is built with instructions. Yes, Microsoft Edge will now do your math homework for you.

More Additions

Users are also able to type problems, while other features include video tutorials, quizzes, and worksheets.

Another interesting addition in Microsoft Edge 96 is the ability to launch Progressive Web Apps (PWAs) through protocol links. This means they behave more like native apps, something Microsoft has been pushing towards.

Microsoft is also bringing Super Duper Secure Mode to the Stable channel. One of the core abilities of the tool is it can disable JavaScript just-in-time (JIT) compiler. This provides the benefit of adding several new security services to the Edge browser.

Tip of the day: Did you know you can use Windowss built in antivirus Microsoft Defender also with scheduled scans? In our tutorial we give you step-by-step instructions on how to program your personal scan-schedule to keep your free of malware.

Source Winbuzzer

Threat actors are increasing phishing attacks against Microsoft Office 365 users, according to cybersecurity firm Kaspersky. In a report, the company says there are two phishing kits being used, “MIRCBOOT” and “Iamtheboss” in the ongoing threat from multiple attackers.

Emails are in fax notification form and are masking themselves by looking like the come from major brands. Kaspersky points out Office 365 users could be fooled into thinking the emails are from legitimate sources, including Kaspersky itself.

“The phishing e-mails are usually arriving in the form of ‘fax notifications’ and lure users to fake websites collecting credentials for Microsoft online services,” the company says.

At least one of the campaigns takes advantage of Amazon Simple Email Services (SES), which allows developers to send emails from their applications. Kaspersky points out attackers are using stolen SES tokens from a third-party, that were used during the 2050.earth website development.

Attack

2050.earth is a Kaspersky website that uses an interactive map showing what futurologist believe technology will look like in the future, focusing on its impact. Threat actors were able to steal SES tokens related to the project from a third party.

“These emails have various sender addresses, including but not limited to noreply@sm.kaspersky.com. They are sent from multiple websites including Amazon Web Services infrastructure,” Kaspersky cautions.

However, the researcher says there was no damage caused by the attack:

“No server compromise, unauthorized database access or any other malicious activity was found at 2050.earth and associated services.”

Microsoft Office 365 is one of the most targeted software platforms in the world, with phishing for credentials a big part of threats against the suite. In 2019, Kaspersky reported attacks on Microsoft’s Office brand accounted for 70% of all cyberattacks.

Tip of the day: Do you know that Windows 10 allows creating PDFs from basically any app with printing support? In our tutorial, we show you how this works via Microsoft Print to PDF and Bullzip PDF Printer to save a PDF from any app, even with advanced options like adjusted quality, multi-page printing, and password protection.

Source Winbuzzer

Microsoft has this week released Privacy Management for the Microsoft 365 service. Specifically, the company is moving the tool from preview to general availability. Starting Tuesday, organizations who use Microsoft 365 can automate privacy processes to more efficiently comply with regulations.

In the past businesses have had to handle their own privacy processes manually when using Microsoft 365 apps and platforms. For example, tracking data that could impact privacy of users is something organizations can struggle with.

Microsoft points to a 2020 study by IAPP-FTI Consulting that shows 53 percent of organizations manage subject requests manually. 42 percent have already moved to a semi-automatic system, while just 2 percent are handling responses entirely by automation.

Privacy Management is a solution that aims to change this and bring more businesses into automated privacy processing. Microsoft says the service works in SharePoint, OneDrive for Business, Microsoft Teams, and Exchange Online.

However, the feature is only available to companies on the E5 licensing plan for M365, which is the top tier license.

Functionality

To achieve accurate automation, Microsoft taps into artificial intelligence models that can quickly assess risks posed to user privacy:

“Privacy Management automatically and continuously discovers personal data in customers’ Microsoft 365 environments by leveraging data classification and user mapping intelligence. Organizations can see an aggregated view of their privacy posture, including the volume, category, location, and movement of personal data in their Microsoft 365 environments. Additionally, they get visibility into the current status and trends of the associated privacy risks arising from personal data being overshared, transferred, or unused.”

Essentially, Privacy Management in Microsoft 365 works across three privacy processes. Firstly, it can sport potential risks when personal data is stored by an organization. Secondly, it allows organizations to automate responses to subject requests. Thirdly, the platform provides employee education towards improved handling of private data.

Tip of the day: Due to the various problems that arise with microphones, it can often be necessary to perform a mic test, but those wondering how to hear yourself on mic in Windows 10 are often left stumped. Microsoft’s OS doesn’t make it especially intuitive to listen to microphone playback or play the microphone through speakers. In our tutorial we show you how to hear yourself on mic with just a few clicks.

Source Winbuzzer

This week is that time of the month when Microsoft turns its attentions to cumulative updates. For the October 2021 Patch Tuesday, Microsoft has sent 71 security fixes covering four zero-day flaws. The company says three of those vulnerabilities are already public.

Among those fixes is a patch for one Win32K zero-day that has already been exploited in the wild.

October 2021 Patch Tuesday covers fixes for a wide range of Microsoft products, such as Exchange Server, Visual Studio, Edge browser, Microsoft Office, and MSHTML.

Microsoft is tracking the zero-day vulnerabilities as CVE-2021-41335, CVE-2021-41338, CVE-2021-40469, and CVE-2021-40449.

The latter of those is the vulnerability that already has an active exploit. Microsoft says CVE-2021-40449 has a CVSS severity rating of 7.8 and is found in the Win32K kernel driver. It was discovered by a Kaspersky researcher. The company published a blog today after already informing Microsoft of the issue and allowing a fix to be created.