Scary, isn’t it? But what isn’t always recognised is the inability of some of the leading workplace technologies to provide the necessary level of protection.
In recent weeks, we’ve spoken of the vulnerabilities of VPNs and workplace technologies, with visibility and control an important issue, yet email is such a big area of risk that we decided it needed particular attention.
Shaun uses a simple online test from leading email security company, Libraesva, to evaluate existing email systems
Shaun McKay, our guest consulting CIO, gave us his view. “Microsoft 365 just doesn’t have sufficient protection from email attacks, but many people don’t realise it and, with more businesses fast tracking digital transformation programmes as a result of the pandemic, Microsoft 365 is fast becoming the most adopted business productivity suite.
“While there’s no doubt about its value and power for automating business, email is one area where there’s a clear need for additional security. I use a simple self-serve tool for testing email security on Microsoft 365 and, in almost all cases, users are shocked when they see the results”.
So, here’s our 4 steps for safer emails:
1. Microsoft 365 Protection:
Don’t rely on Microsoft 365 alone – enhance your Microsoft 365 email security for best possible protection.
Read more about the risks of Microsoft 365 here. If you’d like advice on how to enhance Microsoft 365, and we’ll put you in touch with people who can help (we won’t give your details to anyone - we’ll give you a selection to choose from).
2. Email Security Test:
Know how secure you email is by testing the security of your email system. We have a simple test you can do that’s been recommended by top UK law enforcement agencies – just click here.
3. Advanced Email Security:
Use an Advanced Email Security product that includes, at the very least, the following features:
- Multiple AV scanning
- Advanced spam protection
- Unique URL and document sandboxing
- Heuristic scanning and reputation checks to protect users from advanced threats such as phishing, whaling* and infected attachments.
*not sure what these mean? They’re explained at the foot of this page.
4. Email Security Policy:
Remember, most security breaches come for the actions of employees or other authorised network users (see our sponsored post, "The Threat From Within"). Education is essential, so communicate details of your email and cyber security policies to all users and provide them with access to improved security features.
Last week, we reported that global cyber-crime was predicted to reach $5 trillion next year, increasing from $3 trillion and with no allowance for Covid 19. “It’s not just about cost” says Shaun, “cyber-crime is a serious threat to a business’s reputation as well. Now more than ever, having the right protection is essential”.