Verizon’s 2019 Data Breach Report found 1 in 3 attacks use phishing. Microsoft Threat Protection’s recent advances can help address these new levels of risk
Despite companies fostering their cyber threat protection and educating their employees on best practices, many phishing attacks are still successful. This is alarming since phishing is usually just phase one of a cyber-attack and the full economic impact of a successful breach can be very costly. Commonly, a phishing attack is the start to several other attacks and even more harmful malware. In 2019, Verizon Data Breach Report found that almost one in three cyber-attacks involved phishing. While, Accenture’s Ninth Annual Cost of Cybercrime Study reports that the average cost of a phishing attack for an organisation in 2018 was $1.4 million.
Phishing campaigns are usually well-targeted and sophisticated; attackers are developing new phishing methods and a common strategy has been utilising methods other than email such as voicemail, and instant messaging, since those channels are often not as well protected.
As a result of COVID-19, emerging phishing methods exploit the increase in remote work. A new phishing method that has emerged is consent phishing. Working from home, people have increased their usage of cloud apps and mobile devices to facilitate work from home. Cyber-predators have taken advantage of this shift by creating application-based attacks to gain unwarranted access to valuable data in cloud services. As a good mitigation tactic, companies should place emphasis on high value phishing defences and user education. Microsoft has many cyber defence options like Office 365 Advanced Threat Protection and Microsoft Threat Protection to protect your company from these advanced attacks.
Office 365 Advanced Threat Protection (Office 365 ATP), has recently further evolved it’s capabilities to prevent emerging threats, like phishing and impersonation attacks. As part of Microsoft Threat Protection, Office 365 ATP now provides your security team with the tools to investigate and remediate any threats, it also integrates with other Microsoft Threat Protection products like Microsoft Defender Advanced Threat Protection and Azure Advanced Threat Protection to help stop cross-domain attacks especially against your email, collaboration tools, endpoints, identities, and cloud apps.
Microsoft Threat Protection’s recent advances help to provide top of the line threat protection that can help prevent future attacks across the Microsoft 365 services and auto-heals affected assets. It also automatically analyses threat data across identities, endpoints, cloud applications, and email and docs.
Follow Softwerx on LinkedIn and Twitter for the latest updates:
Back to News