Around 90% of organizations are exposed to breaches through misconfigured cloud settings. M365's defaults were never meant to be your finished security posture. Here is what to fix now.
MICROSOFT 365CCloud Matrix IT/September 15, 2023/3 MIN READ
Misconfiguration of your Microsoft 365 accounts poses a significant risk to the security of your cloud data, a concern especially crucial for the modern small and medium-sized business. When organizations fail to properly adjust their cloud platform security settings, they inadvertently expose their accounts to threats like data breaches, business email compromise, or account takeovers.
// 01Why Defaults Are Not Enough
Shockingly, a staggering 90% of organizations currently find themselves vulnerable to breaches due to misconfigured cloud settings. Businesses often assume that defaults, such as those in M365, will suffice for their unique needs. But those defaults are not universally suitable; they exist to provide flexibility, anticipating that companies will tailor their settings to match their requirements. M365 offers numerous additional security features beyond the defaults, but users have to proactively engage with them, either configuring them personally or enlisting an IT professional.
The suggestions below are actions you can take now to quickly improve the security of your M365 environment and its users. That said, properly managing an M365 environment is more involved and should be handled by someone fluent in M365 development.
// 02Six Configuration Fixes to Make Now
01
Enable MFA for all users
Credential compromise is a leading cause of breaches, and according to Microsoft, activating multi-factor authentication can slash your risk of fraudulent sign-ins by a staggering 99.9%. You can enable it quickly via the Microsoft 365 admin center under Azure Active Directory security defaults, but the more optimal route is a conditional access policy, which is more involved and offers far greater flexibility.
02
Use a dedicated admin account
Administrator accounts are prime targets for the damage and sensitive access they carry. Create a dedicated admin account used solely for administrative tasks, not email or daily activity. Admins keep a standard user account for everyday work and switch to the admin account only when needed, reducing the risk of phishing attacks landing on a privileged account.
03
Prevent email auto-forwarding
Hackers who infiltrate an account do not always announce themselves. They may quietly set up auto-forwarding to intercept password resets and sensitive data. Because most users rarely review their forwarding settings, this can go undetected for a long time. Block auto-forwarding to outside addresses.
04
Strengthen malware and ransomware protection
Microsoft 365 provides a baseline against ransomware and malware, but you can harden it. In the Security & Compliance center under Threat management, edit the default Anti-Malware policy and use the Common Attachment Types Filter to block file types commonly exploited for malware distribution.
05
Turn on Safe Links (Business Premium)
Phishing attacks frequently use links rather than attachments, yet many companies lack protection against malicious URLs. If you are on Microsoft 365 Business Premium, the Safe Links feature scrutinizes and rewrites potentially harmful links, reducing the risk of users falling for phishing pages.
06
Harness Microsoft Secure Score
Microsoft Secure Score evaluates your security posture and benchmarks it against companies of similar size or industry, with specific, prioritized recommendations to raise your score. At Cloud Matrix IT we proactively manage this for our clients and use it to continually fortify their security.
Each of these takes minutes to start but meaningfully reduces your exposure. Together they close the gaps that the out-of-the-box defaults leave wide open. Need help securing your Microsoft 365 environment? Let's schedule some time to chat about how we can lock it down.
Cloud Matrix IT is a managed IT and technology consulting firm specializing in proactive IT management for small and medium-sized businesses. IT PROTECT is a comprehensive technology strategy and cybersecurity platform that helps your business save time, reduce costs, and stay protected with a fully managed 24/7/365 SOC+ platform led by cybersecurity professionals. Yes, even weekends and holidays.
// LET'S TALK
Tell us what you're working through.
Real conversations beat sales pitches, every time. Share what's on your plate and we'll be in touch to set up a chat, usually within a business day. No pressure, no pitch.