One Article Review
| Source |  ProofPoint |
|---|---|
| Identifiant | 8614107 |
| Date de publication | 2024-11-19 13:19:57 (vue: 2024-11-19 14:10:47) |
| Titre | Protecting Your Inbox: 5 Best Practices for Microsoft 365 Email Security |
| Texte | The email threat landscape is rapidly evolving. Today, infrastructure is being targeted less while people are being targeted more. And the rise of social engineering means that attackers can quickly identify and target specific people within organizations. Making matters worse is that with generative AI threat actors can attack people relentlessly with personalized email-borne threats. Given these trends, it makes sense that all of today\'s top cybersecurity risks are people centric. Just look at these statistics: Top people-centric cybersecurity risks. Threat actors prefer people-centric attacks because they don\'t want to break into your network, they want to login. The quickest way to compromise your people is through email-more specifically, through your porous Microsoft 365 email security defenses. In this blog post, we\'ll do a deep dive into why Microsoft 365 email security is not enough. And we\'ll cover some best practices for strengthening your email defenses. Business is built on Microsoft There\'s no denying that Microsoft productivity and collaboration tools are the industry gold standard. Microsoft 365 has an 88.1% productivity software market share and more than 400 million licensed users. And it continues to grow globally. Because Microsoft 365 is spreading across the globe, its underlying email security platform is too. This means that more and more organizations rely on Microsoft\'s built-in, native security capabilities. And whenever a single platform prevails, risk gets more concentrated. Essentially, attackers know that if they can break through Microsoft security, then they can get the keys to the kingdom to thousands of organizations at the same time. Microsoft makes an especially good target for attackers. That\'s not only because it has so many products, but because those products extend across the entire attack chain. For example, Microsoft Exchange Online Protection (EOP) can act as an entry point. Then, Microsoft Entra ID (formerly Azure AD) can be used to compromise identities and escalate privileges. Meanwhile Microsoft cloud services-like Microsoft Dynamics 365, Microsoft Office 365 and Microsoft Teams-can be compromised or used to host and launch attacks. All this makes Microsoft not just an attack surface, but an ideal launching pad for new types of attacks. Microsoft is both an attack surface and launch pad for cyberattacks. Bad actors exploit Microsoft\'s success As Microsoft 365 adoption increases, it\'s a more attractive target for cybercriminals. And they use Microsoft\'s gargantuan customer footprint to for their attacks. In 2023, Microsoft was the most abused brand in the world. According to Proofpoint threat research, attackers sent more than 68 million malicious emails last year. Those emails abused products like Office 365, SharePoint and OneNote, as well as the Microsoft brand. Their goal: to trick unsuspecting users into handing over their credentials. By the numbers: Microsoft as the most abused brand in the world. Where to strengthen your Microsoft 365 security Threat actors are strategic and are always looking to get the most bang for their buck. This is why they have homed in on attacks against Microsoft that they know are going to be easy to implement and highly successful. As a result, the types of attacks we see most often are focused on Microsoft detection gaps. Here are the biggest gaps: Business email compromise (BEC). Also known as email account compromise (EAC) or targeted phishing, BEC is a type of cybercrime that uses email to trick people into sharing sensitive information or sending money. In these attacks, a threat actor impersonates a trusted person, such as a vendor or executive, and sends an email that appears to be legitimate. The email may ask the recipient to pay a fake invoice, hand over sensitive data or send an urgent wire transfer.†|
| Notes | ★★ |
| Envoyé | Oui |
| Condensat | 000 2023 365 400 510 abuse abused access accidental accidentally according account accounts accuracy achieved across act action actions actor actors adaptive add adding additional addresses adopt adoption advanced affect after against aggregating all also always analysis analyzing any appears approach are arrives ask associations ato attachments attack attacked attackers attacks attractive augmented authentication automate automated automatically awareness away azure bad bang bank based bec because becomes behavioral being best better between biggest billion block blocking blog borne both brand break brief browser buck build built business but bypass california can capabilities card case centric chain click clicked clicks cloud codes collaboration commit communications complement completely comprehensive compromise compromised concentrated constantly continue continues continuous controls correlating cost cover creates credential credentials credit customer customers cyberattacks cybercrime cybercriminals cybersecurity cyberthreats data day deemed deep defend defender defense defenses delete delivered delivers delivery denying departments depth destroyed detect detection determine different digital dive don door download driven dynamics eac easily easy ecosystem efficacy email emails enables end engineering enough ensure enter entire entra entry eop escalate especially essentially even evolving example exchange executive exploit extend fail fake false faster fewer fidelity file focused footprint formerly fortifying forwarded fraud from front gains gaps gaps: gargantuan generative get gets getting give given gives giving globally globe goal goal: going gold good groups grow hand handing happen harness has have help helps here high highly homed host how ideal identify identities identity impede impersonates impersonation implement inadvertently inbound inbox inbox: incident includes including incorrectly increase increases industry information infrastructure insights install instances intelligence investment invoice isolation is a is when its just keep keys kingdom know known landscape last later launch launching layers leading learn learning legitimate less licensed lifecycle like link login look looking loss machine makes making malicious many market matters may means meanwhile media messages mfa microsoft microsoft might million misplace mistake modern moment money more most multifactor multilayered must native need needs negatives network new nexus nexus® not numbers numbers: occurs office often onenote ones online only open organization organizations other outbound over pad partners passwords past pay people perform person personalized phishing platform point porous positives post powered practices practices: pre prefer presence presences prevails priority privileged privileges proactive process productivity products profiles proofpoint proofpoint proofpoint: protect protected protecting protection protection provide providers provides purchased quarantine quickest quickly rapidly rate real really recently recipient recipients relationship relentlessly rely remediation remove removed research response result rewriting rise risk risks safe same sandbox sandboxing save secure secures security security see semantic send sending sends sense sensitive sent services share sharepoint sharing should single social software solution some sophisticated specific specifically spreading stack standard statistics: steal stop strategic streamlines strengthen strengthening success successful such surface suspicious take takeover target targeted targeting teams than that theft them then there these they those thousands threat threats threats through time today together together: too tools top training transfer trends trick trusted try type types unauthorized underlying understand unique university unsuspecting urgent url urls use used user users uses vaps variety vendor very victim victims visibility visiting |
| Tags | Tool Threat Cloud |
| Stories | |
| Move | 
|
L'article ne semble pas avoir été repris aprés sa publication.
L'article ne semble pas avoir été repris sur un précédent.