Have you ever wondered whether or not your Microsoft 365 data is secure and protected?
Many users sadly become victims to cyber attacks due to not knowing that Microsoft aren’t actually protecting their valuable data. Adepteq SaaS Protection makes it easier and more cost effective than ever to safeguard all of your Microsoft 365 data- putting your mind at ease.
So, what is Adepteq SaaS Protection?
Software-as-a-Service (SaaS) is an intelligent way to deliver applications over the internet. These SaaS apps have revolutionised the way we do businesses. It allows companies to limit installation and maintenance of software by accessing applications with a click of a button. Adepteq Datto SaaS Protection helps you to remove the risk of losing any or all of your data with a simple, automated and secure backup of your Office 365 Data.
Feeling unsecure and want to know how we can protect your data?
We’re holding a FREE Online Webinar on ‘Protecting your Microsoft 365 data with Adepteq SaaS Protection’!
Our Webinar takes place on Wednesday 22nd September 2021 from 10:00AM – 10:45AM BST.
The following topics will be covered:
- Microsoft’s backup recommendation
- The threat landscape
- How to protect your data
- Ransomware in action (demo)
- Recovering your data
There will also be a short Q&A where our experts and presenters- Ian Loman and Adam Salley will be able to provide additional support.
This webinar is free of charge and is held in English. You can participate using Microsoft Teams in web browser, desktop app or mobile app. If the date and time is not suitable, sign up anyway and we will send you the presentation and a recording of the webinar.
If you want to know how to Secure and Protect your Microsoft 365 Data with Adepteq SaaS Protection, REGISTER NOW for our Free Webinar to avoid missing out!
Last week, Microsoft shared a new remote code execution vulnerability in Windows, that has been using the Windows Print Spooler. A remote code execution vulnerability exists when the Windows Print Spooler service improperly performs privileged file operations. An attacker who successfully exploited this vulnerability could run arbitrary code with SYSTEM privileges. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. The vulnerability is actively removed and Microsoft published two workarounds to protect systems from being attacked.
Microsoft have provided two suggestions: to disable the Print Spooler service or to disable inbound remote printing using the Group Policy.
Determine if the Print Spooler service is running
Run the following:
Get-Service -Name Spooler
If the Print Spooler is running or if the service is not set to disabled, select one of the following options to either disable the Print Spooler service, or to Disable inbound remote printing through Group Policy:
Option 1 - Disable the Print Spooler service
If disabling the Print Spooler service is appropriate for your enterprise, use the following PowerShell commands:
Stop-Service -Name Spooler -Force
Set-Service -Name Spooler -StartupType Disabled
Impact of workaround Disabling the Print Spooler service disables the ability to print both locally and remotely.
Option 2 - Disable inbound remote printing through Group Policy
You can also configure the settings via Group Policy as follows:
Computer Configuration / Administrative Templates / Printers
Disable the “Allow Print Spooler to accept client connections:” policy to block remote attacks.
You must restart the Print Spooler service for the group policy to take effect.
Impact of workaround This policy will block the remote attack vector by preventing inbound remote printing operations. The system will no longer function as a print server, but local printing to a directly attached device will still be possible.
To read the full Microsoft CVE article, click here, which also contains a handy FAQ. If you would like more support and assistance, click here to speak to one of our expert advisors.
The leading provider of human layer security, Egress, recently announced getting their hands on Aquilai, an anti-phishing provider with natural language processing technology and machine learning that puts all targeted email attacks, impersonation and spear phishing attempts to a halt. Egress Intelligent Email Security platforms are strengthened due to the acquisition of Aquilai.
Egress and Aquilai are a powerful combination that will provide customers with protection against all inbound cyberattacks targeting employees and real-time outbound email security for shared data, including inadvertent data loss and email encryption. Due to the increased volume and sophistication of targeted phishing attacks, security leaders need an intelligent, non-disruptive email security solution that detects multi-vector exploits and thwarts zero-day attacks. With seamless integration, Microsoft Outlook will enable organisations to effectively defend against email data loss and the increasing number of attacks targeting the 365 platform.
The acquisition will begin immediately with the launch of Egress Defend, incorporating Aquilai’s anti-phishing technology and the following key capabilities:
- Machine learning and natural language to detect all phishing attacks. Egress Defend detects and mitigates all zero day phishing attacks, including advanced threats such as BEC and brand forgery, CEO fraud and impersonation attempts, and spear phishing.
- Content and context analysis for inbound email traffic. Egress Defend detects BEC and social engineering attacks, including those utilising open-source intelligence (OSINT), to provide enhanced security versus relationship-based solutions.
- Streamlined user engagement for enhanced cybersecurity awareness among employees. Egress Defend includes traffic light warnings and insight summaries to provide active learning to educate users about the threats they face.
Egress CEO Tony Pepper comments: “Organisations face a daily onslaught of targeted attacks via email that are designed to exploit employees. By acquiring Aquilai, Egress will expand its protection over our customers’ human layer to ensure they can defend against targeted inbound attacks and outbound data loss as employees share content. I’m also personally delighted to welcome Jack Chapman as our new VP of Threat Intelligence and look forward to working with him to help our customers level-up in their fight against phishing.”
Chapman comments: “Aquilai is the perfect fit to advance Egress’ mission to secure the human layer, adding sophisticated anti-phishing capability to existing products that secure outbound content as it is shared by employees. I’m also delighted to be joining Egress as VP of Threat Intelligence to further accelerate the company’s high growth in EMEA and North America.”
As a result of the acquisition and launch of Egress Defend, the Aquilai Ajax brand will be retired from 1st June 2021.
So how can Adepteq help?
We partnered with Aquilai to provide our clients with leading edge protection against the most common (and costly!) form of cyber attack. Once we understand your environment we will provide a proposal to deploy Egress Defend to work alongside your existing defences, with licences on a per user basis.
Adepteq can provide an online demo and arrange a 10-day free Proof of Value, so you can see how Egress Defend works in your environment. Simply visit our page to arrange your online demo and to speak to our experts.
If you would like to read the full article click here.