Skip to content
Griffin31 Help Center

Griffin31 v2.0.4 Release – New Recommendations, Compliance Updates & More!

Dear Valued Customer, 🌟

We’re excited to announce the release of Griffin31 v2.0.4, bringing you enhanced security insights, updated recommendations, new compliance frameworks, and important UI improvements. 🚀

What’s New in 2.0.4?

Section titled “What’s New in 2.0.4?”

🔔 Added Recommendations (Preview)

Section titled “🔔 Added Recommendations (Preview)”

SharePoint

  • Publicly accessible SharePoint sites detected.
  • SharePoint sites allow Anonymous access.
  • Default link type isn’t explicitly set to Specific People at the tenant level.
  • Idle session sign-out not configured in SharePoint and OneDrive.

Microsoft Entra ID

  • Conditional Access policies are not enforced for Protected Actions.
  • Per-user MFA is enabled instead of Conditional Access-based MFA.
  • Applications have certificates with expiration longer than 180 days.
  • The password expiration policy is not set to never expire.
  • Internal phishing protection for Microsoft Forms is not enabled.
  • Customer Lockbox feature is not enabled.
  • Third-party storage services are allowed in Microsoft 365 on the web.

Intune

  • Windows Autopatch is not configured for automated update management.
  • Windows Autopatch Hot-patch updates are not properly managed.
  • macOS software updates are not configured in Intune.

Exchange Online

  • Malware filtering & notifications are not enabled for all domains.
  • Spam policies aren’t set to notify admins when internal senders are blocked.
  • Priority account protection is not enabled and configured.
  • Ensure Priority accounts have ‘Strict protection’ presets applied.

Defender for Endpoint

  • Several advanced security features are not enabled.

🔄 Updated Recommendations

Section titled “🔄 Updated Recommendations”

SharePoint & Exchange Online

  • Unmanaged devices have unrestricted access to SharePoint Online data.
  • Custom scripting is enabled in SharePoint Online, posing security risks.
  • Guests can share items they do not own.
  • Excessive external sharing permissions in OneDrive & SharePoint.
  • Unrestricted download of attachments in Outlook for Windows from unmanaged devices.
  • Retention policies aren’t configured for OneDrive, SharePoint, and Teams.
  • Retention policies are not configured for Exchange Mailboxes.

✅ Compliance Updates

Section titled “✅ Compliance Updates”
  • ISO 27001 (Recommendations Updated)
  • CIS Microsoft 365 (Recommendations Updated)
  • SOC2 (Recommendations Updated)
  • NIST (CFS) 2.0 (New)
  • CIS CSC (New)

📖 Added Stories

Section titled “📖 Added Stories”
  • Secure Collaboration in Microsoft (New)
  • Exploits Device Code Authentication (New)
  • Security Hygiene (Updated)

🐞 Minor UI Changes & Bug Fixes

Section titled “🐞 Minor UI Changes & Bug Fixes”
  • Insights section updated for better visibility.
  • First-time sign-in now requires acceptance of terms & conditions.
  • Reports section enhancements for improved clarity.

For more details, visit our knowledge base or reach out to us at support@griffin31.com.

Thank you for being part of Griffin31!

Best regards, Griffin31 Team