Office 365 is being rapidly adopted globally by both the private and public sectors. But the rush to the cloud and SaaS services, such as those offered by Microsoft and Amazon, may have a cybersecurity downside.
In more than 70 per cent of the breaches investigated over recent years, compromised credentials played a significant role.
It looks certain this trend is continuing with the recent Office 365 breaches. Organisations need to ensure their threat lifecycle management (TLM) platform has user and entity behaviour analytics (UEBA) to make the most from the latest artificial intelligence (AI) and machine learning (ML) capabilities.
Using AI and ML is critical for looking at changes to user behaviour, indicative of compromised credentials, in large datasets. AI and ML can do the heavy lifting to create a list of high-risk users that human analysts in the security operations centre (SOC) can investigate further.
Fujitsu Cyber Threat Intelligence have identified chain phishing attacks affecting Office 365 customers A range of services are available within Microsoft’s O365 platform, including Skype, Office, OneDrive and SharePoint all of which allow users to access these and other productivity services referred to as SaaS (Software As A service). These services offer a significant benefit to most organisations in that access to them is available wherever their users require it. However, along with the benefits comes risk, and a number of threats.