Vectra security research identifies how cyberattackers use Microsoft Office 365 tools against organizations to steal data

Advertisement

BEGIN ARTICLE PREVIEW:

SAN JOSE, Calif., Oct. 13, 2020 /PRNewswire/ — Vectra®, a leader in network threat detection and response (NDR), today released its 2020 Spotlight Report on Microsoft Office 365, which highlights the use of Office 365 in enterprise cyberattacks. The report explains how cybercriminals use built-in Office 365 services in their attacks.
Attacks that target software-as-a-service (SaaS) user accounts are one of the fastest-growing and most prevalent problems for organizations, even before COVID-19 forced the vast and rapid shift to remote work. With many organizations increasing their cloud software usage, Microsoft  has dominated the productivity space, with more than 250 million active users each month. Office 365 is the foundation of enterprise data sharing, storage, and communication for many of those users, making it an incredibly rich treasure trove for attackers.
“Within the new work-from-home paradigm, user account takeover in Office 365 is the most effective way for an attacker to move laterally inside an organization’s network,” said Chris Morales, head of security analytics at Vectra. “We expect this trend to magnify in the months ahead. Attackers will continue to exploit human behaviors, social engineering, and identity theft to establish a foothold and to steal data in every type of organization.”
Even with the increasing adoption of security postures to …

END ARTICLE PREVIEW

READ MORE FROM SOURCE ARTICLE