Blog Data Security

COVID-19 Threat Update #1

Varonis sees the highest number of VPN and O365 events ever recorded across customer base. Click to watch our security experts discuss what they’re seeing on the front lines, and what...
Kilian Englert
1 min read
Last updated November 18, 2025

Contents

    Varonis sees the highest number of VPN and O365 events ever recorded across customer base.

    Click to watch our security experts discuss what they’re seeing on the front lines, and what folks can do.

    Video Thumbnail
    2:43

     

    What does this mean for security?  

    Organizations are scrambling to get newly home-bound employees up and running.  

    We’vgot anxious employees working from vulnerable home networks, and many organizations don’t have as much visibility into their remote connections and data as they’ll need. With the expanded attack surface, responding to incidents isn’t getting any easier.  

    Corporate laptops are in short supply, so organizations are making do with home systems. That’s like fighting in the dark – older or unpatched operating systems and browsers that may not be compatible with endpoint solutions.  

    We’re already seeing malicious COVID-19 links sent via email or social that lead to ransomware or browser-only attacks that threaten 365 environments. Here’s an example of a phishing attack that came in this week: 

    It’s poorly worded, but still very effective. User clicks; account or browser hijacked.  

    If you’d like help understanding what you’re seeing or not seeing, please click here to contact us.

    What should I do now?

    Below are three ways you can continue your journey to reduce data risk at your company:

    1

    Schedule a demo with us to see Varonis in action. We'll personalize the session to your org's data security needs and answer any questions.

    2

    See a sample of our Data Risk Assessment and learn the risks that could be lingering in your environment. Varonis' DRA is completely free and offers a clear path to automated remediation.

    3

    Follow us on LinkedIn, YouTube, and X (Twitter) for bite-sized insights on all things data security, including DSPM, threat detection, AI security, and more.

    Kilian Englert
    Kilian Englert Kilian has a background in enterprise security engineering, as well as security solution selling. Kilian is a Certified Information Systems Security Professional (CISSP) and creates internal and public content on topics related to cybersecurity and technology best practices.

    Try Varonis free.

    Get a detailed data risk report based on your company’s data.
    Deploys in minutes.
    Get started View sample

    Keep reading

    Varonis tackles hundreds of use cases, making it the ultimate platform to stop data breaches and ensure compliance.

    varonis-discovers-local-file-inclusion-in-aws-remote-mcp-server-via-cli-shorthand-syntax
    Varonis Discovers Local File Inclusion in AWS Remote MCP Server via CLI Shorthand Syntax
    varonis-discovers-local-file-inclusion-in-aws-remote-mcp-server-via-cli-shorthand-syntax
    Coby Abrams
    March 25, 2026
    Varonis uncovers a local file inclusion vulnerability in the AWS Remote MCP Server, exposing how authenticated access can lead to sensitive data exposure.
    varonis-recognized-as-leader-in-g2’s-spring-2026-reports,-including-new-data-security-posture-management-category
    Varonis Recognized as Leader in G2’s Spring 2026 Reports, Including New Data Security Posture Management Category
    varonis-recognized-as-leader-in-g2’s-spring-2026-reports,-including-new-data-security-posture-management-category
    Lexi Croisdale
    March 18, 2026
    Varonis has been recognized by G2 for leading in data security, DSPM, and AI security, proving its ability to help organizations secure data and control AI access.
    what-you-need-to-know-about-salesforce-aurainspector-attacks
    What You Need To Know About Salesforce AuraInspector Attacks
    what-you-need-to-know-about-salesforce-aurainspector-attacks
    Varonis Threat Labs
    March 10, 2026
    ShinyHunters is abusing misconfigured Salesforce Experience sites to expose sensitive data. Learn how the attack works and how to reduce your risk.
    1campaign:-a-new-cloaking-platform-helping-attackers-abuse-google-ads
    1Campaign: A New Cloaking Platform Helping Attackers Abuse Google Ads
    1campaign:-a-new-cloaking-platform-helping-attackers-abuse-google-ads
    Daniel Kelley
    February 24, 2026
    1Campaign is a new cloaking platform that helps attackers bypass Google Ads screening, evade security researchers, and keep phishing and crypto drainer pages online longer.