Hackers Bypass Office 365 Security: A Guide for the Uninitiated presented at DataConnectorsSaltLakeCity 2020

by Jeffrey Raymond,

Summary : The move to SaaS has changed the phishing landscape: your Office 365 inbox is the #1 threat vector and your Office 365 credentials are their #1 target. In this talk, we will demonstrate the techniques attackers use to bypass Microsoft’s defenses. Learn how they use Microsoft’s own services to fool filters and utilize built-in tools to launch them internally–bypassing your email security gateway.During this session, we’ll demonstrate how to protect Office 365 from:• Email-based phishing, spoofing, and malware• Account takeover, insider threats, compromised Microsoft credentials• Loss of sensitive data from OneDrive, SharePoint and Office 365