microsoft • William OGOU Cybersecurity Blog

Microsoft's new AI Red Team tool automates the discovery of risks in LLMs. Learn how this agentic system finds vulnerabilities like jailbreaking and prompt injection before attackers do.

img of Critical Entra ID Impersonation Flaw - CVE-2025-55241

Sep 24, 2025 8 min read

vulnerability

Critical Entra ID Impersonation Flaw - CVE-2025-55241 By William OGOU

A critical flaw in Entra ID (CVE-2025-55241) allowed attackers to impersonate anyone. This is a CISO's guide to the 'Actor Token' vulnerability, the attack chain, and how to hunt for compromise.

img of Forging Cyber Defenders in Student-Run SOCs

Sep 13, 2025 8 min read

cybersecurity

Forging Cyber Defenders in Student-Run SOCs By William OGOU

Student-run SOCs are a powerful solution to the cybersecurity skills gap. This CISO's guide explains the model, the benefits, and how to build a program that forges the next generation of defenders.

img of Critical SharePoint RCE (CVE-2025-53770)

Jul 21, 2025 7 min read

vulnerability

Critical SharePoint RCE (CVE-2025-53770) By William OGOU

Critical, actively exploited zero-day RCE vulnerability in SharePoint Server (CVE-2025-53770). This is your guide to understanding, identifying, and mitigating the threat immediately.