Office 365 & G Suite

Phishing Email Compromises Client’s Office 365 Email Account

By |2018-05-09T11:39:36-04:00May 9th, 2018|Office 365 & G Suite, Uncategorized|

Last week one of our client’s LinkedIn account and Office 365 email account was compromised by a phishing scam. An email was then sent from this user’s compromised Office 365 email account with the subject ‘John Smith has shared “CEO Emails” with you’ with a PDF attached containing a link to log into a Dropbox account to view this document. This email went out to all contacts this compromised user has ever emailed from their Office 365 email account.

Image 1

image 2

Some recipients who received the email and felt it was suspicious replied to the user’s email address, and the recipients received one more email confirming that in fact ‘It is legit. Please proceed to view in Dropbox’ from the user’s compromised mailbox. The hacker gained access to the user’s email and sent out reply emails confirming the Dropbox email to try and trick people to get more credentials. The hacker also added a rule to move all incoming emails to the delete folder. If you entered your information into the Dropbox screen it would tell you ‘please try again later, the services are down’.

image 2

image 4

One of these phishing emails were also sent to our E-Tech Helpdesk Ticketing System and we were in contact with the client right away. We reset the user’s compromised mailbox password and the user changed their LinkedIn Password. We increased the security and compliance to the next level, by enforcing two-factor authentication and enforcing password policy. We scanned this user’s computer for malware and viruses, but nothing was found. We confirmed that the malware/virus is quarantined at Office 365 cloud by generating anti-malware, anti-virus, and spam reports from Office 365 and confirmed no other mailboxes were compromised.

The best tips to avoid this type of Phishing scam are to:

  • Enforce password policy every 42 days
  • Enforce Password complexity (using symbols, capitals, numbers etc.)
  • Enforce Two-step Factor Authentication on both your personal and work emails
  • Open only Microsoft documents (Word, Excel, PowerPoint), and Adobe (PDF)
  • If you receive PDF or word document attachment, make sure it’s making sense to you and relates to your work (hover over the link first to see where it will take you, example: if its Dropbox it should say https://www.dropbox.com LinkedIn should be https://www.linkedin.com)
  • Avoid opening social media links attached in the email or inside PDF, or word document files
  • Pay attention to the sender email address that is in the ‘From:’ address box, and the domain that the email was sent from (hover over the email address, see if its legit, example: if its Dropbox it would say someone@dropbox.com if its LinkedIn it would say someone@linkedin.com)
  • Pay attention to the content of the email. If you see grammar mistakes, please confirm with the sender and mark this email as spam (instead of replying to the email you’re not sure about, call the user or email them in a new email thread)

Here are some links for more information on Phishing Hacks:

https://www.microsoft.com/en-us/wdsi/threats/support-scams

https://blogs.technet.microsoft.com/office365security/how-to-deal-with-ransomware/

https://dev.etechcomputing.com/how-to-identify-phishing-emails/

https://dev.etechcomputing.com/beware-phishing-scam-for-office-365-users/ 

Feel free to Contact Us for more information.

Total Data Protection Means Security

By |2018-04-06T13:13:27-04:00April 6th, 2018|Office 365 & G Suite, Uncategorized|

It turns out that Total Data Protection solutions have a “side effect”: they’re the ultimate security solution, too.

But don’t be too surprised. Total Data Protection platforms were conceived with laser focus on the challenge of ensuring your business data is always protected and continuity is always guaranteed. Malware, hacker attacks, and (most commonly) human error are simply three of many “disasters” they defend against.

Several technical factors come together to enable a Total Data Protection solution to be the fastest, safest way to return a breached environment to normal operation.

• It requires image-based backups that include all the business data plus your IT environment. • It combines use of on-site or virtual appliances and a purpose-built, secure cloud, always storing backup images in an archival format (ZFS) that is essentially invulnerable to malware. • It includes tools that let you pinpoint the moment of attack or infection • By using Inverse Chain Technology TM, it ensures that backup images stored before the attack are wholly uncorrupted End-to-end 256-bit AES encryption safeguards data in transit and at rest. • Security features such as encryption simplify compliance with regulations (e.g., HIPAA and PCI)

Thus, we address virus, ransomware and other attacks by rolling back your entire environment to the last uncorrupted backup image. A bare metal restore from our Total Data Protection platform guarantees a clean result.

While Total Data Protection is primarily for backup and business continuity, it also functions as a failover or secondary security backup. The way it functions, you’re able to turn back time. Which is a lot easier than relying on any other application or software to get back your uncorrupted data.

With E-Tech, Total Data Protection Means a New Level of Security. With us, you can:

• Implement image-based backups as often as your need dictates – and include your business data plus your IT environment • Pinpoint the moment you suffer an attack or infection • Roll back your entire environment to the last uncorrupted image • Enable rapid return to normal operations with only limited loss of productivity and downtime • Encrypt data in transit and at rest • Simplify compliance with regulations such as HIPAA and PCI

We Keep Your Business Safe!

Feel Free to Contact Us for more information.

>

BEWARE: Phishing Scam for Office 365 Users

By |2017-07-12T13:56:06-04:00July 12th, 2017|Office 365 & G Suite, Uncategorized|

91% of cyber attacks start with a phishing email. From CEO fraud to ransomware, these attacks are a big problem for businesses.

Another phishing scam is happening for Office 365 users around the world.

What we know: • This type of hack creates rule(s) in Office 365 online mailbox to delete Sent item, contacts, etc. • It changes the User ID and account information to Dropbox Inc. • It accesses to other mailboxes, data and information on other accounts in Office 365 • It generates lots of spam emails that cause Office 365 mailbox to be locked.

To prevent this hack from happening: • Backup Office 365 accounts • Setup two factor authentication sign-in • Setup password reset policy

The best way to prevent this from happening to your office is to have Cloud-to-Cloud Data Protection. We offer all-in-one backup, search, restore and export solution for Office 365 or G Suite. E-Tech ensures business-critical data is always backed up seamlessly, restored quickly and protected securely.

What are the benefits? • Take full control of your organization’s Office 365 or G Suite data. • Protection against accidental or intentional deletion of data by users. • Protection due to ransomware hacker attacks. • Protect against data loss due to inactive license or scenarios that are not covered by Microsoft or Google. • Time loss in restoring files: Contacting Microsoft or Google Support for assistance with possible data loss issues and restore options after identifying the proper previous version is very time consuming. • Data loss within previous draft, accessing the previous versions in OneDrive or Google Drive is not an option as it saves only the most recent version, not the entire history. • Unlimited backup retention, this means your backups will never expire. • 3x/day automated backup. Perform additional backups as needed at any time. • Security controls that include compliance with SOC 2 Type II, HIPAA, and Safe Harbor. Data is secured with 256-bit encryption. • Browse and preview backups by user and item. Search for metadata. • Restore individual files or groups of files back into a user’s account or export them directly to your machine. • Monitor data with domain health status and activity log.

Try out our Cloud-to-Cloud Data Protection for Office 365 or G Suite for 15 days FREE Trial. As low as $3.99/mailbox user/month.

Feel free to Contact Us for more information.

>

Title

Go to Top