Company News
Patient Zero for Microsoft Global Secure Access and Entra Suite
As early adopters, baseVISION took a decisive step by acquiring licenses for Microsoft Entra Private Access and the Governance Suite for all users. This strategic move marked the beginning of a transformative journey toward a fully integrated and secure identity infrastructure. We transitioned from manually managing users to a fully automated lifecycle management solution powered by Microsoft
baseVISION TI – Hijacking Microsoft company accounts via TikTok open redirection abuse is still a thing
In our latest TI report, baseVISION uncovers a phishing campaign that abuses TikTok’s open redirect feature to hijack Microsoft credentials. The attackers use multi-stage redirect chains, IP-based cloaking, and Adversary-in-the-Middle (AiTM) phishing pages to bypass MFA and steal session tokens. We break down the full attack chain, indicators of compromise,
baseVISION TI – Click, Paste and Compromise: When User’s Trust Becomes Your Greatest Vulnerability
In a world where cyber threats evolve faster than ever, one thing remains constant: attackers are still betting on human error. Our latest report, “Click, Paste and Compromise: When User Trust Becomes Your Greatest Vulnerability,” dives deep into the rise of ClickFix—a social engineering technique that tricks users into executing malicious commands through
Microsoft has awarded us the Advanced Specialization for Information Protection and Governance
baseVISION reaches a new milestone in Microsoft Security This specialization not only confirms our deep expertise, but also our proven project experience with Microsoft Purview and related solutions. It marks another important milestone for us – as we now hold all four available Microsoft Security Advanced Specializations. What is this
baseVISION has been named a Microsoft Entra Suite Integration Partner!
For the past three years, baseVISION has successfully delivered engagements and solutions using the capabilities of the Microsoft Entra Suite. Since 2022 we were expanding our consulting and engineering services with Microsoft’s growing product portfolio and gained important hands-on knowledge in the areas of identity governance and administration (IGA), Security
baseVISION TI – Patch, Exploit, Repeat: A Never-Ending Cycle for Windows Common Log File System Driver Vulnerabilities
Since 2024, multiple zero-day vulnerabilities in the Windows Common Log File System (CLFS) driver have been exploited by ransomware groups like RansomEXX and Play (Balloonfly). These Elevation of Privilege (EoP) flaws enabled SYSTEM-level access and were used in real-world attacks before patches were released. Microsoft issued fixes across several Patch
Welcome Keith
We’re excited to welcome Keith Potter to the baseVISION team!As a Senior Security Consultant, he brings deep expertise and fresh perspective to our security services. We’re looking forward to a great collaboration – welcome aboard, Keith! New job? We are always looking for new, motivated people to join our team.
baseVISION among the top 5 at the Microsoft Security Excellence Awards 2025
Recognition for Our Holistic Managed Security Services Strategy baseVISION has been recognized as one of the top five Managed Security Service Providers worldwide at the Microsoft Security Excellence Awards 2025. This top placement in the “Security MSSP of the Year” category highlights both our innovative strength and the ongoing commitment
Microsoft Security Excellence Award 2025
baseVISION is a finalist for the Microsoft Security Excellence Awards 2025! We’re excited to share some big news—baseVISION has been named a finalist for the Microsoft Security Excellence Awards 2025 in the category Security MSSP of the Year! This puts us among the top Managed Security Service Providers (MSSPs) globally,