Month: August 2018

What is Get-AntiPhishPolicy TreatSoftPassAsAuthenticated?

While reviewing Get-AntiPhishPolicy I wondered about the TreatSoftPassAsAuthenticated option. The TreatSoftPassAsAuthenticated parameter specifies whether or not to respect the composite authentication softpass result. Valid values are: $true: This is the default value. $false: Only use this value when you want to

Office 365 Vulnerable to Brute Force Attack via Powershell

Putting this together real quick. Hoping to get some publicity on it because I think it is a major vulnerability. Today we were auditing a client’s security and discovered that Office 365 will let you brute force them, all day