Skip navigation

Tag Archives: office

Guest post by Conor Magee, Solutions Consultant, Ergo

The rising popularity of cloud service platforms presents a unique challenge for IT security. These platforms can hold user identity and organisational data, but because of their separation from the corporate network, tend to be outside the reach of traditional on-premises security analytics software. This gives rise to a blind-spot in terms of security for IT administrators that can be difficult to resolve.

On the user side, it is often not possible to see centrally if third party applications are granted access to cloud data by users, for example unauthorised email or calendar tools. These applications can provide legitimate services to users but if there are flaws in their design, critical or sensitive data may be left exposed and become a target for hackers.

This issue is made more difficult with the widespread use of unmanaged personal smartphones, computers and tablet devices for business use, potentially leading to privileged information being accessed through third-party applications on devices with an unknown security or patching status.

Microsoft’s is a large cloud service provider and their Office 365 suite of applications run on encrypted servers within their world-leading datacentres. These datacentres are protected with layers of advanced security and certified by leading certification providers including: ISO 27001, HIPAA, UK G-Cloud and EU-US Privacy Shield. While this highly secure infrastructure ensures that information is stored in an environment that is as safe as it can be, user identity is left as the path of least resistance for malicious access to gain access to organisation data. This can be achieved in a number of ways including: weak user passwords, users continuing to use previously compromised passwords or “brute-force” password attacks where huge numbers of passwords are tried against each account and made easier if users are using weak passwords or the same password across a number of services.

Office 365 Advanced Security Management

To help secure against these type of threats, Office 365 Advanced Security Management monitors 70+ different metrics for each user account within Office 365. This allows alerts to be automatically generated when policies are triggered and manual or automatic actions to be taken to prevent security breaches.

Advanced Security Management policies are created and customised to monitor for specific user account activity with the aim of identifying suspicious behaviour. Each one can be set to look for specific actions and thresholds; for example, downloading large amounts of data in a short space of time or repeated login failures from an unexpected location. Once an alert is generated, administrators have the option to take an action on the users account right from the alert page or, if it’s a particularly serious scenario, have the account suspended automatically on detection pending further investigation.

General behavioural analytics are also performed on this stream of data, learning what normal activity looks like for each user and a “Risk Score” is generated based on the full range of parameters. The score is based on how unusual or risky the behaviour is; this can be logging in at an unusual time, making administrative changes from an unexpected location or many other metrics. The risk score is attached to each alert to assist IT administrators in deciding what further action to take.

Advanced Security Management also includes an “App Discovery” dashboard within the Office 365 control panel. This service can analyse logs uploaded from firewalls and proxies and produce reports on cloud application activity within the organisation across a large range of non-Microsoft cloud platforms. This can give a view of how many potentially unapproved cloud services are in use by users across the organisation and how much data they are uploading to them.

For organisations that have Office 365 Enterprise E5 licensing in place, these Advanced Security Management services are already included as part of the licensing package and just need to be configured and enabled. For organisations that have any other Office 365 licensing, Advanced Security Management can be added as an add-on license to enable these features.

Contact Micromail today to discuss your IT security requirements

Guest post by Conor Magee, Solutions Consultant, Ergo

Email remains top of the list for hackers and cybercriminals looking to gain access to restricted systems or data. Traditionally this has comprised of emails infected with malware and viruses, sent either out to databases of random addresses or targeted to a specific organisation or individual. The standard defence against this type of attack is using email filtering solutions that scan against a continuously updated list of known threats.

With the constantly increasing number of viruses and malware, this type of protection is as important as ever. On top of this, there are a new set of challenges that need to be addressed – unique threats hidden within email attachments, including rapidly changing malware and zero day attacks, and malicious URLs in the body of emails. These are designed to avoid standard protection by behaving in a way that does not flag them as a threat and once delivered to the user, have a high chance of successfully infecting the target network.

Microsoft Office 365 offers inbuilt, robust protection against traditional email threats through “Exchange Online Protection”, which is enabled on all existing Exchange Online mailboxes by default. This email filtering service uses multiple scanning engines and the latest virus definitions on each email to effectively defend against these infections.

Office 365 Advanced Threat Protection

Defending against threats that have not been seen before requires a proactive approach to email scanning. Office 365 “Advanced Threat Protection” provides in depth scanning services for attachments and URLs using technologies called Safe Attachments and Safe Links.

Safe Attachments takes incoming email attachments and opens them within a special environment to monitor their activity. This service simulates a number of different operating systems to maximise the chance that novel viruses and malware are identified and blocked before they get anywhere near your network. Suspicious attachments are then blocked and stripped out of the email before it is sent on to the destination mailbox for delivery.

Safe Links follows all web links within an email to their final destination to determine if they lead to any malicious sites or content. This provides security against links that first go to a legitimate site but are automatically redirected to a malicious site thereafter. Any dangerous links are disabled within the email before it is delivered to the end user, allowing the content to be safely viewed. Included with Safe Links is the ability to generate a report containing the users that have attempted to follow the disabled links. This allows organisations to identify users that are potentially vulnerable to malicious emails and to provide information on how to recognise these emails in future.

For organisations that have Office 365 Enterprise E5 licensing in place, these Advanced Threat Protection services are already included as part of the licensing package and just need to be configured and enabled. For organisations that have Exchange Online, Enterprise E1 or E3 licensing, Advanced Threat Protection can be added as a standalone license, adding an additional layer of security to existing email services.

Contact Micromail today to discuss your email security requirements

Image

Both Adobe and Microsoft products for students have been hugely reduced!

So what products are included?

Microsoft Office 2013 is €29.99 (incl. VAT)* (which includes Word, Excel, Powerpoint, Outlook, OneNote, Publisher, and more)

And purchase is simple. Just click here and choose your product. There are some limitations, so be sure to check. This is a limited time offer, so tell everyone!

A number of Adobe products are also reduced:

  • Adobe Acrobat XI
  • Adobe CS6 Design Std
  • Adobe CS6 Master Collection
  • Adobe CS6 Production Suite
  • Adobe CS6 Dreamweaver
  • Adobe CS6 Flash
  • Adobe Lightroom 4
  • Adobe Photoshop CS6
  • Adobe Photoshop Elements 10 & Adobe Premiere Elements 10

 

*price for final year students, €89.97 (incl. VAT) is for all other students (still the lowest it has ever been!)