Sponsor: Avanan

In the most thorough analysis of its kind, Avanan security analysts classified over 500,000 malicious emails, sent to real end-user mailboxes protected by Microsoft's Advanced Threat Protection (ATP). This research identified the types of attacks that were blocked by ATP or EOP, and the types of attacks that were missed by both.

Overall results:

When looking over all malicious emails, the analysis concluded that;

• EOP catches widespread, previously-known methods: about 41% of all attacks.

• ATP catches many zero-day attacks that bypass EOP: 48% of malicious emails.

• 11% of malicious emails reach the inbox, bypassing both EOP and ATP.

When measuring ATP as an independent layer of security, it misses 18% of the malicious emails that bypass EOP. In some environments, the miss rate can be much higher.

As firms and workers across the globe went remote, it was Microsoft Teams that saw the bulk of growth for chat and collaboration.

The growth has been exponential and stunning. Teams usage in December 2020 is estimated to be 115 million daily users, growing from 32 million in early March 2020. After what appeared to be an early pandemic rivalry with Slack, Teams quickly became the de-facto communication and collaboration app for anyone using Office 365. Now, 91 of the U.S.’s 100 largest companies use Teams. Twenty organizations with more than 100,000 users use it, with major organizations like Coca-Cola, Pfizer and Accenture, to name a few.

The success of Microsoft Teams has also made it ripe for hackers. In fact, as this year of explosive growth comes to an end, we’ve begun to see and learn how hackers are targeting this platform for data, personal and corporate information, and as a jumping-off point for other attacks.

For this whitepaper, Avanan analyzed nearly 200 enterprise customers for two months. In doing so, we were able to uncover current hacking activities and trends in Teams, as well as assess the overall cybersecurity risk involved in using the service.

Most using Office 365 know first hand the challenges with preventing email based phishing and malware attacks. To help solve the problem, Microsoft is trying to convince their customers to upgrade to an E5 license or purchase ATP as a separate add-on. But does this pricy add-on really solve the problem? In this live demo, we'll explain how ATP falls short in securing Office 365 and we'll actually demo O365 ATP side by side with Avanan to highlight the gaps so you can see for yourself.

Business email compromise doesn’t exactly roll off the tongue, but laughs sure do. That’s why we’ve put together all of our funniest cloud security comics into one calendar!

Inside, you’ll find jokes about phishing, compromised accounts, suspicious logins, and multi-factor authentication drawn by Avanan’s very own Content Marketing Manager, Reece Guida. The calendar also has dates for major infosec events across the United States in 2019.

We hope you hang up this free calendar for your coworkers or family to see!

Most using Office 365 know first hand the challenges with preventing email based phishing and malware attacks. To help solve the problem, Microsoft is trying to convince their customers to upgrade to an E5 license or purchase ATP as a separate add-on. But does this pricy add-on really solve the problem? In this white paper, we'll explain how ATP falls short in securing Office 365. Further, the white paper goes beyond phishing attacks ATP misses and highlights the missing features enterprise security teams need when trying to secure O365 as a whole.

Why a healthcare provider switched from O365 ATP to Avanan

For HershellFoster, Capital Caring’s CIO, email security was a constant worry. Like so many healthcare organizations, employee inboxes were inundated with hundreds of phishing and other malicious messages each day, confusing users and potentially putting patient data at risk. Even with aggressive training, it was difficult for employees and volunteers to filter out the increasingly sophisticated attacks. Avanan helped made Capital Caring's dramatically reduce phishing attacks to protect patients and employees from breaches of personally identifiable information. Using Avanan has helped Capital Caring spend more time on what matters most: patient care."

Healthcare is moving to the cloud and HIPPA regulations still apply. Two key challenges healthcare organizations have when moving to the cloud is preventing the accidental sharing of ePHI via cloud applications and the takeover of your user’s SaaS accounts by hackers due to phishing attacks. Avanan connects to any SaaS or IaaS in one click via API connection. Secure all of your cloud applications from business suites like Office 365, G-Suite, to Citrix ShareFile, and everything in between. With the click of a button, protect your enterprise Office 365, Box, G Suite, or any other SaaS application with cloud-based versions of security technology from best-of-breed vendors like Check Point, Symantec, and McAfee.

Healthcare is migrating to the cloud, putting HIPAA regulations in a new context. Moving clinical and business data into Software as a Service (SaaS) or Infrastructure as a Service (IaaS) improves scalability, interoperability, and cost—but cloud adoption must not be at the expense of security or compliance.

This whitepaper identifies challenges of enforcing HIPAA compliance in the cloud, and offers technical solutions that address these requirements in order to provide lasting security for ePHI.

Since 1977, Capital Caring has improved care for those facing life-limiting illness through public education, advocacy, and direct support of patients and their families. Over 650 employees and 850 volunteers offer hospice, palliative care, and counseling to more than a thousand patients and their families each day. They turned to Avanan to help stop email based phishing attacks that were targeting their O365 users.