News & Vacancies

Welcome to the Microtechs information portal. Here you can see the latest news and read through our current vacancies.

  • Home
    Home This is where you can find all the blog posts throughout the site.
  • Categories
    Categories Displays a list of categories from this blog.
  • Login
    Login Login form

Widespread, Brute-Force, Cloud-to-Cloud Attacks Hit Office 365 Users

Posted by on in Latest Microtechs news posts
  • Font size: Larger Smaller
  • Hits: 312
  • 0 Comments
  • Subscribe to this entry
  • Print

b2ap3_thumbnail_cloud-and-padlock_20170725-144041_1.png

An operationalized cloud-to-cloud brute-force attack against Microsoft Office 365 users has hit high-level employees at multiple Fortune 2,000 organizations.

According to Skyhigh Networks, which remediated the attack, the perpetrators used popular cloud service platforms to conduct a persistent attack to log into corporate Office 365 accounts. The campaign had a “slow-and-low” pattern of coordinated attacks on high-value targets, including more than 100,000 failed Office 365 logins from 67 IP addresses and 12 networks. The attempts in all targeted 48 different organizations.

Skyhigh said that the duration and measured pace of the attacks suggest a determined effort and the desire to avoid detection. Within each organization, the attackers targeted a small number of senior employees across multiple departments.

The attackers tried logging in with different versions of employees’ Office 365 usernames, suggesting they may already possess some combination of employee names and passwords and were seeking valid Office 365 usernames for data access or spear phishing campaigns. Password data could have been obtained in a database breach of a service like Yahoo or a phishing attack, given that password reuse across accounts remains rampant.

Similarly, if the attackers confirmed an accurate Office 365 username with a correct reused password, they could successfully log into corporate Office 365 applications and potentially additional cloud service accounts.

“Sensitive data has already moved to cloud applications, so it is only natural sophisticated attacks are following,” said Slawomir Ligier, senior vice president of engineering at Skyhigh. “While companies traditionally have invested extensively in perimeter security, those without a dedicated cloud security solution will lack visibility and control for a growing category of attacks. Enterprise cloud providers secure their infrastructure, but the ultimate responsibility to control access to sensitive data lies with the customer.”

Cloud services are on path to become the standard for enterprise IT solutions, and Office 365, which offers cloud access to Microsoft Word, Excel and other productivity apps, has taken a dominant role with 58.4% of all sensitive corporate data in the cloud is stored in Office 365.

Keith Graham, CTO at SecureAuth, told Infosecurity that with 85 million users working on a combination of desktop and laptop computers, mobile devices and web applications, Office 365 is a primary target for attackers.

“Breaches tied to phishing e-mail scams and lack of strong identity security are accelerating, and the latest discovery of brute-force attacks against Office 365 serves as further proof of the need for organizations to prioritize their identity security,” he said.

“Typically, organizations using Office 365 have been forced to rely on traditional and inadequate username-password authentication to try to protect themselves from sophisticated attackers. Current versions of Office 365 mail clients support basic two-factor authentication while older Microsoft clients and third-party email applications do not. Because of this antiquated approach to authentication, attackers know that Office 365 is ripe to be exploited, and we anticipate attacks against Office 365 to proliferate for the foreseeable future.”

https://www.infosecurity-magazine.com/news/widespread-bruteforce-office-365/

By Tara Seals US/North America News Reporter, Infosecurity Magazine

Picture credit: www.cio.com

Microtechs 24/7/365 White label Technical Helpdesk

In today's world, a rock solid IT infrastructure is key to every successful business. At Microtechs we have the experience and resource to ensure your company has the support it needs 24 hours a day, 7 days a week, 365 days a year. We are able to provide an immediate response from our state of the art Technical Operations Centre which is based in the heart of Surrey.

 

With our rapidly expanding team, all specifically trained, working 24/7/365, we are able to provide excellent customer service and technical support. All of our services are available completely white labelled, ensuring a seamless extension to your company.

Through our services you are able to extend your hours to 24/7 or simply use us as an over flow assistant during office hours. This is all tailored to your business needs.  

 

How does Outsourcing your helpdesk benefit your business?

1.       It reduces your staffing costs. Why hire another member of staff, if you can outsource all of your calls for less? We are normally between 25-50% cheaper than an in-house option.

2.       It expands your opening hours. We have a technical operations centre which is open 24/7/365.

3.       It will improve your customer experience. Are you taking multiple calls from clients, but can’t get back to them as quick as you would like? Well now you have a team of 30 staff taking your support calls for you. Have an important meetings? No problem, your helpdesk has your back.

 

We work with over 60 IT & Telecoms Businesses who trust us to deal day to day with their clients.

 

Feel free to call our friendly solutions team, who will be happy to discuss further and help tailor a solution to you.

Call us now on 01483 407417

 

 

0

Comments

  • No comments made yet. Be the first to submit a comment

Leave your comment

Guest
Guest Wednesday, 22 November 2017

DID YOU KNOW?

We help over 14,000 customers a month through our IT support centre in Guildford, Surrey

Microtechs monitor over 10,000 servers, access points and routers 24 hours a day, 7 days a week and answer well over 14,000 support calls a month.

Each and every client is just as important to us, whether you have 1 or 5000 computers or users. Our exceptional team provides the highest level of service to every single caller.

 

CONTACT US

Our business truly is 24/7, We operate entirely out of this office using our own staff.

Microtechs Head Office

Microtechs Ltd
Sussex House
11 The Pines
Broad Street
Guildford
GU3 3BH  

T: +44 (0) 1483 407400
Einfo@microtechs.co.uk

Alternatively, please use our Contact Us Form

 

WE'RE TWEETING

OUR COMPANY

Our Commitment to you

We are family run with all of our business based within the UK. We will only ever use UK staff and offices to provide our products and services to you.

Microtechs provide a variety of outsourcing solutions for individuals and businesses, whether its for 24/7 Helpdesk Services, Nationwide Engineer Coverage or IT Support.

button