Company logoHelp Center
Visit griffin31.com

Griffin31 v2.0.4 Release – New Recommendations, Compliance Updates & More!

2 min. readlast update: 03.17.2025

Dear Valued Customer, 🌟

We’re excited to announce the release of Griffin31 v2.0.4, bringing you enhanced security insights, updated recommendations, new compliance frameworks, and important UI improvements. 🚀

What’s New in 2.0.4? 

🔔 Added Recommendations (Preview)

SharePoint

  • Publicly accessible SharePoint sites detected.

  • SharePoint sites allow Anonymous access.

  • Default link type isn’t explicitly set to Specific People at the tenant level.

  • Idle session sign-out not configured in SharePoint and OneDrive.

Microsoft Entra ID

  • Conditional Access policies are not enforced for Protected Actions.

  • Per-user MFA is enabled instead of Conditional Access-based MFA.

  • Applications have certificates with expiration longer than 180 days.

  • The password expiration policy is not set to never expire.

  • Internal phishing protection for Microsoft Forms is not enabled.

  • Customer Lockbox feature is not enabled.

  • Third-party storage services are allowed in Microsoft 365 on the web.

Intune

  • Windows Autopatch is not configured for automated update management.

  • Windows Autopatch Hot-patch updates are not properly managed.

  • macOS software updates are not configured in Intune.

Exchange Online

  • Malware filtering & notifications are not enabled for all domains.

  • Spam policies aren’t set to notify admins when internal senders are blocked.

  • Priority account protection is not enabled and configured.

  • Ensure Priority accounts have ‘Strict protection’ presets applied.

Defender for Endpoint

  • Several advanced security features are not enabled.

🔄 Updated Recommendations

SharePoint & Exchange Online

  • Unmanaged devices have unrestricted access to SharePoint Online data.

  • Custom scripting is enabled in SharePoint Online, posing security risks.

  • Guests can share items they do not own.

  • Excessive external sharing permissions in OneDrive & SharePoint.

  • Unrestricted download of attachments in Outlook for Windows from unmanaged devices.

  • Retention policies aren’t configured for OneDrive, SharePoint, and Teams.

  • Retention policies are not configured for Exchange Mailboxes.

✅ Compliance Updates

  • ISO 27001 (Recommendations Updated)

  • CIS Microsoft 365 (Recommendations Updated)

  • SOC2 (Recommendations Updated)

  • NIST (CFS) 2.0 (New)

  • CIS CSC (New)

📖 Added Stories

  • Secure Collaboration in Microsoft (New)

  • Exploits Device Code Authentication (New)

  • Security Hygiene (Updated)

🐞 Minor UI Changes & Bug Fixes

  • Insights section updated for better visibility.

  • First-time sign-in now requires acceptance of terms & conditions.

  • Reports section enhancements for improved clarity.

 

For more details, visit our knowledge base or reach out to us at support@griffin31.com.

Thank you for being part of Griffin31!

Best regards,

Griffin31 Team

Was this article helpful?