New TryHackMe Room Focuses on Microsoft Intune Monitoring and Wiper Attacks

The TryHackMe room focuses on Microsoft Intune Monitoring and is based on a real-world incident involving a wiper attack. The lab demonstrates how attackers abused Intune to remotely wipe devices across an enterprise environment. It covers weaponizing Intune, including remote wipe, malicious scripts, and apps, as well as hardening Intune against abuse and detection using Splunk and host-based monitoring.