The Danish National Police Cyber Crime Center (NC3) are reporting an increasing number of cyberattacks via Office 365. The LogPoint SIEM solution can track data breaches in the Office 365 environment real-time by detecting lateral movements within the network including exploitation of privileges.
Copenhagen – May 29, 2018 – The warning issued by the Danish National Police Cyber Crime Center (NC3) on May 24, pinpoints the immediate need and requirement for efficient cybersecurity solutions in cloud-based environments. With more than 120 million users worldwide, the Office 365 suite is one of the most widely used cloud-based platforms, underscoring the need for all-aspect security solutions for applications in the cloud.
The LogPoint Modern SIEM tool includes out-of-the-box support for Office 365. It pulls logs from Office 365 using MS cloud-based services and the Office 365 management API. Integrating LogPoint with Office 365, provides the instant benefit of a centralized log monitoring tool and correlation between other on-premise and cloud-based events. Along with security and compliance controls within the Office 365 environment, this data can also be used for general and business analytics.
LogPoint’s cloud integration with Office 365 allows IT security departments to keep track of changes made within the entire Azure cloud ecosystem. It enables control of file changes, deletion, and access in Sharepoint; monitors One Drive activities to establish controls in data exfiltration, unauthorized access and sharing of files. Azure AD will be fully monitored for changes to critical accounts and misuse/insider threats. LogPoint also monitors e-mail activities for Exchange online, including attachments and other media in emails.
“Email is one of the most prominent data exfiltration methods. Threat actors use various sophisticated tactics to spread spam, malware or scams such as CEO fraud. It is critical to keep track of fraudulent and abnormal e-mail behavior, reducing the chance that a displeased employee or contractor leaving the organization, emails confidential data to external accounts. With LogPoint, email activities are easily traceable, keeping your confidential critical information safe,” says Christian Have, LogPoint Chief Product Officer.
The LogPoint tool combines the simplicity and flexibility in design with cutting-edge technology, including UEBA capabilities. The simplicity and flexibility of LogPoint does not only apply to the technical solution but also to the business model, which includes a licensing structure that drastically reduces the cost of deploying a SIEM solution whether it is local or global, hosted on-premise or in the cloud via our MSSPs.
For more information, visit https://www.logpoint.com/en/product/cloud-security-integrations/
or contact us via the form below.