Saturday January 19, 2019
Home Lead Story Symantec Anno...

Symantec Announces New Security Features For Microsoft Office 365

New capabilities in Symantec DLP include automatic protection for sensitive emails and attachments in Office 365 and Gmail

0
//
Symantec
Symantec expands security features for Microsoft Office 365. Flickr

Cyber security leader Symantec on Wednesday announced new enhancements to its Data Loss Prevention (DLP) technology to protect information in Office 365.

With Symantec DLP, data is protected whether at rest or in transit — on-premises or in the Cloud — and everywhere it flows through a single management console, the company said in a statement.

“As enterprises migrate to Office 365 and other Software-as-a-Service (SaaS) applications, they risk a huge potential of data loss, which is made even more complex in the face of increasing data regulations such as GDPR,” said Nico Popp, Senior Vice President of Information Protection, Symantec.

Symantec
Symantec. (IANS)

Monitoring and protecting data in the Cloud generation is a complex task, and EU’s General Data Protection Regulation (GDPR) and other similar privacy regulations have further raised the stakes on data security, privacy and compliance.

Enterprises are rapidly adopting SaaS applications, including Office 365, that require data to continuously move between endpoints, Cloud and third parties such as partners, vendors or contractors, said Symantec.

Also Read- Sudan Suffers From A Chikungunya Outbreak

New capabilities in Symantec DLP include automatic protection for sensitive emails and attachments in Office 365 and Gmail, with identity-based encryption and digital rights management. (IANS)

Next Story

Bug Spotted in Microsoft Office 365, Outlook

Several tech companies offer bug bounty incentives. Sahad also received bug bounty from Facebook last year for discovering a bug in the social networking platform

0
Microsoft
New Microsoft project to give users more data control: Report. Pixabay

A Kerala-based application security engineer has won bug bounty from Microsoft for discovering a series of vulnerabilities that left over 400 million Microsoft users’ accounts — from Office 365 to Outlook emails — open to hacking.

Sahad NK, who works as a security researcher with cybersecurity portal Safetydetective.com, came across multiple vulnerabilities that, when chained together, allow an attacker to take over any Microsoft Outlook, Microsoft Store, or Microsoft Sway account simply via the victim clicking on a link.

“Immediately after finding these vulnerabilities, we contacted Microsoft via their responsible disclosure programme and started working with them,” said Safetydetective on Tuesday.

The vulnerabilities were reported to Microsoft in June and fixed by November end.

“While the vulnerability proof of concept was only made for Microsoft Outlook and Microsoft Sway, we expect it to affect all Microsoft accounts including Microsoft Store,” said Sahad.

Microsoft, PUBG
A sign for Microsoft is seen on a building in Cambridge. VOA

Sahad discovered that a Microsoft subdomain, “success.office.com”, had not been properly configured. He also found bug in Microsoft Office, Store and Sway products.

A string of bugs when chained together created the perfect attack to gain access to someone’s Microsoft account — simply by tricking a user into clicking a link.

“Anyone’s Office account, even enterprise and corporate accounts, including their email, documents and other files, could have been easily accessed by a malicious attacker, and it would have been near-impossible to discern from a legitimate user,” said TechCrunch.

Also Read- New Bug Forces Alphabet to Expedite Google+ API Shutdown

Sahad, with the help of fellow security researcher Paulos Yibelo, reported the bug to Microsoft, which fixed the vulnerability and gave an unspecified amount as bug bounty to Sahad.

Several tech companies offer bug bounty incentives. Sahad also received bug bounty from Facebook last year for discovering a bug in the social networking platform. (IANS)