Ransomware

Ransomware Risks for Microsoft 365

by Michael Otey

With the rise in remote workers the risk of ransomware is higher than it has ever been before. By now most people know that ransomware is a type of malware extortion scheme that typically encrypts files and folders preventing access to critical data or sometimes it can also be used to steal sensitive data. After… Read More

Microsoft Defender for Endpoint Pricing Plans

by Dean Ellerby

Microsoft recently announced that Microsoft Defender for Endpoint will soon be available in two plans: P1 and P2. In this article, I will look at how the two plans compare. With Windows, MacOS, iOS, and Android devices being the most common target for cyber criminals, malware and threats are continuously improving and evolving. In the… Read More

Patch Microsoft Exchange Servers Now to Stop LockFile Ransomware

by Russell Smith

The LockFile ransomware group has been actively launching attacks against Microsoft Exchange Servers, exploiting three vulnerabilities that were patched by Microsoft in April and May this year. Known as the Exchange Server ProxyShell vulnerabilities, the LockFile group uses them, in conjunction with the Windows PetitPotam vulnerabilities that were partially patched in the round of updates… Read More

Azure Sentinel Gets Fusion AI Early Ransomware Detection in Preview

by Russell Smith

Earlier this month, the Azure Sentinel and Microsoft Threat Intelligence Center (MSTIC) teams announced the public availability of 'Fusion detection for ransomware'. Fusion is designed to automatically correlate security alerts that could be related to ransomware. More precisely, Microsoft said the Fusion machine learning model collates alerts detected in a specific timeframe during defense evasion… Read More

When Technology Fails: Woes With SharePoint Online Restore this Library

with 9 Comments by Tony Redmond

It's great when Microsoft introduces new functionality to SharePoint Online to make the lives of administrators and users easier, which is what the Restore this library feature is all about. Then problems happen, and we understand where the flaw lines exist. Recovering from a recent ransomware attack caused one Office 365 tenant more problems than they thought likely because Restore this library didn't work as well as expected.

Is Exchange Online Threatened by Ransomware?

with 4 Comments by Tony Redmond

Some people worry that Exchange Online mailboxes could be compromised by ransomeware and people will be forced to pay BitCoin to decrypt their messages. It's certainly a possibility, but out-of-the-box solutions exist if you're unlucky enough to be infected. That is, if you've done the necessary up-front planning to prepare for the worst to happen.,