Friday, December 1, 2023

Microsoft Office 365 New Campaign Views to help Customers Tracking Attacks Targeting Organization and its Users

Microsoft announced the public preview of the campaign views security feature that let users view the full campaign of how the attackers targeted the organization and its users. The campaign’s view is the new feature in Office 365 Advanced Threat Protection.

This new feature allows security teams to spot the vulnerable surface, vulnerable users, harvest attacker intelligence and to take remediation steps, Microsoft said.

Campaign Views

The feature displays the data like when the campaign started/ended, impact, the user clicks, sender IP, senders and the payloads embedded. It also highlights the email flow from sender IPs to the delivery location.

Microsoft tested the feature in early previews with some of their customers and the result is extremely positive.

Following are some important features

  • Provides campaign summary including a timeline and the users affected.
  • List of IP address used to launch an attack
  • Messages that blocked, ZAPped, delivered to junk or quarantine or allowed into the inbox
  • Domain names used in the attack
  • To see how many users clicked on the phishing link
Campaign Views

“One large customer we’ve worked with was able to identify multiple configuration flaws in their tenant, by using campaign views for just a short duration of time,” Microsoft said.

The Email accounts are the tempting targets for hackers, cyberattacks are initiated over an email. Attackers follow innovative and sophisticated methods to trick the users in opening the malicious emails.

“It’s worthwhile to think about how attackers target organizations and users. It’s important to remember that attackers are often after financial gain.”

Microsoft Office 365 comes with several security tools that help security teams more comprehensively, effectively investigate, remediate issues and to stop potential breaches.

Campaign Views

Now the campaign views are available only the following plans Office 365 Advanced Threat Protection Plan 2, Office 365 E5, Microsoft 365 E5 Security and Microsoft 365 E5.

You can follow us on Linkedin, Twitter, Facebook for daily Cybersecurity and hacking news updates.

Website

Latest articles

Hackers Using Weaponized Invoice to Deliver LUMMA Malware

Hackers use weaponized invoices to exploit trust in financial transactions, embedding malware or malicious...

US-Seized Crypto Currency Mixer Used by North Korean Lazarus Hackers

The U.S. Treasury Department sanctioned the famous cryptocurrency mixer Sinbad after it was claimed...

CISA Warns Hackers Exploiting Wastewater Systems Logic Controllers

In a disconcerting turn of events, cyber threat actors have set their sights on...

Zyxel Command Injection Flaws Let Attackers Run OS Commands

Three Command injection vulnerabilities have been discovered in Zyxel NAS (Network Attached Storage) products,...

North Korean Hackers Attacking macOS Using Weaponized Documents

Hackers often use weaponized documents to exploit vulnerabilities in software, which enables the execution...

Most Popular Websites Still Allow Users To Have Weak Passwords

The latest analysis shows that tens of millions of people are creating weak passwords...

Chrome Zero-Day Vulnerability That Exploited In The Wild

Google has fixed the sixth Chrome zero-day bug that was exploited in the wild this...

API Attack Simulation Webinar

Live API Attack Simulation

In the upcoming webinar, Karthik Krishnamoorthy, CTO and Vivek Gopalan, VP of Products at Indusface demonstrate how APIs could be hacked.The session will cover:an exploit of OWASP API Top 10 vulnerability, a brute force account take-over (ATO) attack on API, a DDoS attack on an API, how a WAAP could bolster security over an API gateway

Related Articles