Hello and welcome to the Tuesday, November 8, 2020 edition of the Sands and its Storm Center's Stormcast.

My name is Johannes Ulrich, and today I'm recording from Jacksonville, Florida.

Quick diary actually from yesterday from DDE about converting different representations of IP addresses, something scammers like to do,

in particular in spam and such, in order to obfuscate the actual address a user is connecting

to, well, IPV4 addresses can be represented many different ways, and browsers are quite

forgiving in what users may enter.

There's Octal.

There's just the long integer form,

and then, of course, host names in various variations.

So DDA is showing how to de-obfuscate some of these representations in Cybershift.

And Microsoft announced that it made the preview for Asia Active Directory authentication

with a certificate, so certificate-based authentication, available to pretty much everybody at this

point.

So if you're using Azure Active Directory,

give it a try, see how it works for you.

Essentially, it uses a certificate stored on Ubiki as your credential,

and then you can authenticate using your mobile device.

This is supposed to support iOS as well as Android on the mobile end,

and is supposed to be fishing resistant, which means that the machine, the mobile phone here

likely, decides how to authenticate based on certificates presented by the site. So this way the user doesn't really have

an option to enter their credentials into the wrong site. Not all two-factor authentication is

necessarily a phishing resistant, like for example, these one-time password codes like Google

...