Thursday, November 21, 2024
Homecyber securityMicrosoft Office 365 New Campaign Views to help Customers Tracking Attacks Targeting...

Microsoft Office 365 New Campaign Views to help Customers Tracking Attacks Targeting Organization and its Users

Published on

Microsoft announced the public preview of the campaign views security feature that let users view the full campaign of how the attackers targeted the organization and its users. The campaign’s view is the new feature in Office 365 Advanced Threat Protection.

This new feature allows security teams to spot the vulnerable surface, vulnerable users, harvest attacker intelligence and to take remediation steps, Microsoft said.

Campaign Views

The feature displays the data like when the campaign started/ended, impact, the user clicks, sender IP, senders and the payloads embedded. It also highlights the email flow from sender IPs to the delivery location.

- Advertisement - SIEM as a Service

Microsoft tested the feature in early previews with some of their customers and the result is extremely positive.

Following are some important features

  • Provides campaign summary including a timeline and the users affected.
  • List of IP address used to launch an attack
  • Messages that blocked, ZAPped, delivered to junk or quarantine or allowed into the inbox
  • Domain names used in the attack
  • To see how many users clicked on the phishing link
Campaign Views

“One large customer we’ve worked with was able to identify multiple configuration flaws in their tenant, by using campaign views for just a short duration of time,” Microsoft said.

The Email accounts are the tempting targets for hackers, cyberattacks are initiated over an email. Attackers follow innovative and sophisticated methods to trick the users in opening the malicious emails.

“It’s worthwhile to think about how attackers target organizations and users. It’s important to remember that attackers are often after financial gain.”

Microsoft Office 365 comes with several security tools that help security teams more comprehensively, effectively investigate, remediate issues and to stop potential breaches.

Campaign Views

Now the campaign views are available only the following plans Office 365 Advanced Threat Protection Plan 2, Office 365 E5, Microsoft 365 E5 Security and Microsoft 365 E5.

You can follow us on Linkedin, Twitter, Facebook for daily Cybersecurity and hacking news updates.

Gurubaran
Gurubaran
Gurubaran is a co-founder of Cyber Security News and GBHackers On Security. He has 10+ years of experience as a Security Consultant, Editor, and Analyst in cybersecurity, technology, and communications.

Latest articles

Halo Security Launches Slack Integration for Real-Time Alerts on New Assets and Vulnerabilities

Halo Security, a leader in external attack surface management and penetration testing, has announced...

Researchers Detailed FrostyGoop Malware Attacking ICS Devices

FrostyGoop, a newly discovered OT-centric malware that exploited Modbus TCP to disrupt critical infrastructure...

5 Hackers Charged for Attacking Companies via Phishing Text Messages

Federal authorities have unsealed charges against five individuals accused of orchestrating sophisticated phishing schemes...

Two PyPi Malicious Package Mimic ChatGPT & Claude Steals Developers Data

Two malicious Python packages masquerading as tools for interacting with popular AI models ChatGPT...

Free Webinar

Protect Websites & APIs from Malware Attack

Malware targeting customer-facing websites and API applications poses significant risks, including compliance violations, defacements, and even blacklisting.

Join us for an insightful webinar featuring Vivek Gopalan, VP of Products at Indusface, as he shares effective strategies for safeguarding websites and APIs against malware.

Discussion points

Scan DOM, internal links, and JavaScript libraries for hidden malware.
Detect website defacements in real time.
Protect your brand by monitoring for potential blacklisting.
Prevent malware from infiltrating your server and cloud infrastructure.

More like this

Wireshark 4.4.2 Released: What’s New!

The Wireshark Foundation has officially announced the release of Wireshark 4.4.2, the latest version...

ANY.RUN Sandbox Automates Interactive Analysis of Complex Cyber Attack Chains

ANY.RUN, a well-known interactive malware analysis platform, has announced Smart Content Analysis, an enhancement...

Rekoobe Backdoor In Open Directories Possibly Attacking TradingView Users

APT31, using the Rekoobe backdoor, has been observed targeting TradingView, a popular financial platform,...