Egress Report Cites Cybersecurity Experts, Tender Proposals for CISOs Representing the 1 Million Companies Deployed by Microsoft 365
LONDON, UK – 21 June 2022 – Egress, a leading provider of smart email security, today released a report identifying a number of security risks facing Microsoft 365 users, which are expected to be relied upon by more than a million or more companies, along with its suite of tools. 250 million users.
Click here to read the full report: https://pages.egress.com/Whitepaper-EmailRisksInMS365-06-22_2021-Landing-PAGE-eBook.html
The threat analysis was compiled by key cybersecurity experts. Lisa Forte is the co – founder of Red Goat Cyber Security LLP, Robin Bell is the Chief Information Security Officer (CISO) at Egress, and Jack Chapman is Vice President of Threat Intelligence at Egress. Their insights provide the context for perceived risks as well as recommendations for CISOs to reduce both inward and outward risk, protecting their people, their organization and their customers.
Overall, the panel of experts felt that Microsoft 365 ‘s native security capabilities offered good basic email protection from phishing, and data loss prevention (DLP) tools to deal with data loss. However, the group also believes that there are still issues that require enhanced protection from highly infiltrated phishing threats, data loss, and out-filtration incidents that cannot be reduced by static DLP.
“Microsoft’s protection now competes with Secure Mail Gateways (SEGs), but there are still significant gaps in email security. Both Microsoft and SEGs have difficulty detecting the most sophisticated social engineering attacks, ”said Jack Chapman, Egress’s Vice President of Threat Intelligence. “At the top of the list are threats targeting and exploiting individuals such as phishing attacks, and out risks such as data loss due to human error or deliberate whistleblowing. CISO needs to assess its level of protection and increase its existing email security with additional layers of technology where necessary, to protect their employees and their data. ”
Demonstrating Email Risks in Microsoft 365
- Phishing: theft of credibility, leakage of sensitive / controlled data, navigation of users to malicious URLs, requesting multifactor authentication (MFA) codes, and ransomware.
- Human Error: Autocomplete of incorrect, complex email recipient, manual management of customization and settings.
- Deliberate data de-filtering actions for use cases not yet known not covered by policies.
- Reporting is limited when trying to understand the level of risk from phishing emails.
Microsoft 365 – CISO Security Recommendations
For CISO, which is responsible for the safe deployment and use of Microsoft 365, the Egress report offers some key recommendations, starting with a question – how much do I understand? In formulating this guide, any tool or service is easier to use when it is user-friendly and friction-free.
The understanding begins with CISOs who need to analyze the risks facing their organization in order to prioritize the right layers of security across people, technology and processes. In addition, they need to understand the limitations of Microsoft 365 and try to avoid cyber-cutter approach. A comprehensive holistic view of risk is critical to identifying the products that will complement and integrate seamlessly into your business environment to manage and mitigate risks.
This approach also needs to be extended to employees. To reduce the risk of human action, businesses need to reinforce extensive staff training and support smart email security tools to capture moments when employees are likely to make mistakes.
According to Egress 2022 report, Fighting Phishing: The IT Leader’s View, in the last 12 months, 85% of organizations were victims of phishing, 60% of organizations were hit by ransom items, and 40% of organizations were stolen credentials.
 Statistics: Number of Office 365 company users worldwide as of June 2022, by country of origin
For more information and interview requests, contact Jordan Brackenbury at PR@Egress.com
Threats Affecting Employee Employees Concerns Microsoft 365 Users –
Source link Threats Affecting Employee Employees Concerns Microsoft 365 Users –