Office 365 Archives - Help Net Security

Office 365

Microsoft to alert enterprise security teams when nation-state attackers target their employees

February 9, 2021

Microsoft will introduce this month a new security alert that will notify enterprise security teams when an employee is being targeted by suspected nation-state attackers. The …

Business executives targeted with Office 365-themed phishing emails

January 26, 2021

An ongoing campaign powered by a phishing kit sold on underground forums is explicitly targeting high-ranking executives in a variety of sectors and countries with fake Office …

Malwarebytes was breached by the SolarWinds attackers

January 20, 2021

A fourth malware strain wielded by the SolarWinds attackers has been detailed by Symantec researchers, followed by the disclosure of the attackers’ ingenous lateral …

Prosperoware adds data protection features for Office 365, supports Azure for storage

January 18, 2021

Prosperoware announces data protection features for Office 365 including OneDrive, SharePoint Online, Teams, and support Azure for storage location as part of its CAM …

Spin Technology adds new security features to its SpinOne for Google Workspace and Office 365

November 19, 2020

Spin Technology announced the next generation of SpinOne, an AI-powered ransomware and backup solution for Google Workspace and Office 365. In the last year alone, 51 percent …

Finding 365 bugs in Microsoft Office 365

November 11, 2020

Microsoft 365 is used by over a billion users worldwide, so attackers are naturally deeply invested in compromising its security. One of the ways of making sure this suite of …

Attackers finding new ways to exploit and bypass Office 365 defenses

October 26, 2020

Over the six-month period from March to August 2020, over 925,000 malicious emails managed to bypass Office 365 defenses and well-known secure email gateways (SEGs), an Area 1 …

Cybercriminals are using legitimate Office 365 services to launch attacks

October 14, 2020

Vectra released its report on Microsoft Office 365, which highlights the use of Office 365 in enterprise cyberattacks. The report explains how cybercriminals use built-in …

Using virtualization to isolate risky applications and other endpoint threats

September 25, 2020

More and more security professionals are realizing that it’s impossible to fully secure a Windows machine – with all its legacy components and millions of potentially …

Office 365 users: Beware of fake company emails delivering a new VPN configuration

June 4, 2020

Phishers are impersonating companies’ IT support team and sending fake VPN configuration change notifications in the hopes that remote employees may be tricked into …

Phishers are trying to bypass Office 365 MFA via rogue apps

May 19, 2020

Phishers are trying to bypass the multi-factor authentication (MFA) protection on users’ Office 365 accounts by tricking them into granting permissions to a rogue …

Have you patched these top 10 routinely exploited vulnerabilities?

May 13, 2020

The US Cybersecurity and Infrastructure Security Agency (CISA) is urging organizations to patch a slew of old and new software vulnerabilities that are routinely exploited by …

Office 365

Microsoft to alert enterprise security teams when nation-state attackers target their employees

Business executives targeted with Office 365-themed phishing emails

Malwarebytes was breached by the SolarWinds attackers

Prosperoware adds data protection features for Office 365, supports Azure for storage

Spin Technology adds new security features to its SpinOne for Google Workspace and Office 365

Finding 365 bugs in Microsoft Office 365

Attackers finding new ways to exploit and bypass Office 365 defenses

Cybercriminals are using legitimate Office 365 services to launch attacks

Using virtualization to isolate risky applications and other endpoint threats

Office 365 users: Beware of fake company emails delivering a new VPN configuration

Phishers are trying to bypass Office 365 MFA via rogue apps

Have you patched these top 10 routinely exploited vulnerabilities?

Don't miss

Attackers are looking to exploit critical VMware vCenter Server RCE flaw, patch ASAP!

Why enterprises need rugged devices with integrated endpoint management systems

Five factors driving investment in IDV

CNAME-based tracking increasingly used to bypass browsers’ anti-tracking defenses

2021 will be the year of hybrid working: How can CTOs keep staff secure and productive?