Varonis debuts trailblazing features for securing Salesforce. Learn More

Varonis named a Leader in The Forrester Wave™: Data Security Platforms, Q1 2023

Read the report
Blog / Security Bulletins

Threat Update #16 - O365 & Business Email Compromise

1 min read
Published December 4, 2020
Last updated October 22, 2021

Contents

    How can companies tell the difference between legitimate email activity from malicious activity if they suspect someone is inappropriately accessing a user’s email?

    Click to watch Kilian Englert and Ryan O’Boyle from the Incident Response team discuss how the IR team leverages built-in Varonis event enrichment to tackle this problem and help simplify investigations.

    How do you plan to defend against ransomware infections like Emotet? Are you concerned your company may already be infected?

    👋 Varonis can help. Please click here to contact us.

    What you should do now

    Below are three ways we can help you begin your journey to reducing data risk at your company:

    1. Schedule a demo session with us, where we can show you around, answer your questions, and help you see if Varonis is right for you.
    2. Download our free report and learn the risks associated with SaaS data exposure.
    3. Share this blog post with someone you know who'd enjoy reading it. Share it with them via email, LinkedIn, Reddit, or Facebook.
    Kilian Englert
    Kilian Englert

    Kilian has a background in enterprise security engineering, as well as security solution selling. Kilian is a Certified Information Systems Security Professional (CISSP) and creates internal and public content on topics related to cybersecurity and technology best practices.

    Try Varonis free.
    Get a detailed data risk report based on your company’s data.
    Deploys in minutes.
    Get started View sample
    Keep reading
    threat-update-56-–-sso-imposter:-targeting-box
    Threat Update 56 – SSO Imposter: Targeting Box
    threat-update-56-–-sso-imposter:-targeting-box
    Kilian Englert
    September 20, 2021
    In the final part of the series, Kilian Englert and Ryan O’Boyle from the Varonis Cloud Architecture team walk through how attackers could target Box. They investigate how an attacker…
    threat-update-55-–-sso-imposter:-targeting-google
    Threat Update 55 – SSO Imposter: Targeting Google
    threat-update-55-–-sso-imposter:-targeting-google
    Kilian Englert
    September 15, 2021
    In part two of this three-part series, Kilian Englert and Ryan O’Boyle from the Varonis Cloud Architecture team investigate how an attacker who compromised a single sign-on admin account can…
    threat-update-54-–-sso-imposter:-intrusion
    Threat Update 54 – SSO Imposter: Intrusion
    threat-update-54-–-sso-imposter:-intrusion
    Kilian Englert
    September 7, 2021
    Virtually every organization leveraging more than a few cloud offerings has a single sign-on solution to simplify the management of their various cloud apps. With a little careful planning, attackers…
    threat-update-53-–-proxyshell-and-petitpotam-and-ransomware…-oh-my!
    Threat Update 53 – ProxyShell and PetitPotam and Ransomware… Oh My!
    threat-update-53-–-proxyshell-and-petitpotam-and-ransomware…-oh-my!
    Kilian Englert
    August 31, 2021
    Technology grows, evolves, and changes over time, but most organizations often need to support legacy systems. In the Microsoft world, this typically means keeping legacy authentication protocols like NTLM authentication…