Products > Security

Office365 , Outlook compromized accounts origin

<< < (3/3)

DimitriP:

--- Quote from: rrinker on September 23, 2019, 07:53:50 pm --- Proofpoint is an email scanning/filtering service from Cisco. It's a bit above the usual spam filtering, in that it can do other sorts of tests on attachments and block them if they attempt to access known bad web sites, etc.

 However - Office365 accounts all get Exchange Online Protection, you can't bypass it. Of course, there are no rules by default, so you need to configure it.

--- End quote ---

Sometimes the difference between incompetency and business model is faint...very faint.
Sounds like something GoDaddy should be doing when they sell Office365 to unsuspecting users, instead of charging them $400 for "email security" after the account is compromised.

Are you saying that Proofpoint does or does not protect an Office365 account from being compromised ?

Mr. Scram:

--- Quote from: rrinker on September 23, 2019, 07:53:50 pm --- Proofpoint is an email scanning/filtering service from Cisco. It's a bit above the usual spam filtering, in that it can do other sorts of tests on attachments and block them if they attempt to access known bad web sites, etc.

 However - Office365 accounts all get Exchange Online Protection, you can't bypass it. Of course, there are no rules by default, so you need to configure it.

--- End quote ---
I absolutely hate how due to EOP you can't tell where a link sends you. Office 365 obfuscates it for you and you need to fully depend on their ability tp filter out crap. Their definition is obviously going to be different than mine.

rrinker:
 Proofpoint can help, but nothing is foolproof, the world just invents better fools.

There is an advanced extra-cost version of EOP that adds the attachment sandbox feature, where it checks attachment files and links in emails, and if they go to known bad actors, they get filtered out. Like Proofpoint, this can help reduce the chances of account compromising phishing emails from getting through, but it's pretty much impossible to prevent. User training is the only real answer - we do internal phishing tests and it's amazing how many people will click a fake email saying their is something wrong with their Citibank account - WHEN THEY HAVE NO ACCOUNTS WITH CITIBANK! How the hell stupid do you have to be? And most financial sites I deal with rather constantly mention that they will never ask you for certain types of information, yet when a fake email comes through, Joe Average will happily provide the information - which they clearly state they will never ask for! You can't fix stupid.

And of course, with all the data breaches these days - even if you use a good secure password, if you use the same one all the time, good luck. You can't prevent someone else's stupidity, but you can guard yourself against the effects of it.

 

Navigation

[0] Message Index

[*] Previous page

There was an error while thanking
Thanking...
Go to full version