How They Bypass Office 365 Security presented at BaltimoreCyberSecurityConference 2019

by Michael Landewe,

Summary : The move to SaaS has changed the phishing landscape: your Office 365 inbox is the #1 threat vector and your Office 365 credentials are their #1 target. In this talk, we will demonstrate the techniques attackers use to bypass Microsoft’s defenses. Learn how they use Microsoft’s own services to fool filters and utilize built-in tools to launch them internally–bypassing your email security gateway.During this session, we’ll demonstrate how to protect Office 365 from:Email-based phishing, spoofing, and malwareAccount takeover, insider threats, compromised Microsoft credentialsLoss of sensitive data from OneDrive, SharePoint and Office 365