The ClearSwift blog is looking out for users of Microsoft Office 365, of whom there are many, on how to protect from having their software compromised by hackers.
It advises that “The National Cyber Security Centre (NCSC) has recently published an advisory report that explores the ways MO365 can be compromised by malicious parties, explaining how cybercriminals can use compromised MO365 accounts to obtain financial profit. It reports that attacks on business email, including MO365, cost businesses over $5.3 billion dollars in losses between 2013 and 2016.”
That’s no small security risk.
“Research conducted by Clearswift found that phishing emails are seen as the most dangerous threat to businesses across all email platforms. In fact, the most common way hackers gain access to MO365 accounts is through targeted phishing attacks – also known as spear phishing.
“In order to execute a spear phishing attack, a cybercriminal sends an email (or emails) to employees, seemingly from a trusted source – often C-suite and suppliers – requesting them to click on a malicious link. Once the employee clicks on the link, it redirects them to a spoofed login page where the hacker is then able to harvest sensitive information including log-in credentials that the unsuspecting employee provides.”
Don’t get caught in a phishing attack. Be careful about emails whose senders you don’t recognize.