Tag Archive for Office 365

| September 11, 2021
Comments Off on 10 Ways To Catch A COVID Phish

10 Ways To Catch A COVID Phish

10 Ways To Catch A COVID Phish

Cybercriminals, like to take advantage of fear. They are taking advantage of the ignorance-fueled COVID-19 Delta variant surge. Attackers are increasingly using business-looking COVID phish emails to do their dastardly deeds.

return to the office.More than half of employers are forcing a to return to the office. Employers are requiring the submission of paperwork such as COVID test results and proof of vaccination to keep your job. Hackers know that communication from employers about COVID can spark an emotional reaction and compel people to click. Researchers at Proofpoint found that business looking COVID phish attempts have increased by 33%.

Cybercriminals are taking advantage of these requirements. The demands for COVID paperwork give the attackers more ways to disguising their phishing attempts. Sherrod DeGrippo, Vice-President of Threat Research and Detection at Proofpoint, told The Washington Post. “That almost makes it easier for the bad actors because people are getting used to: ‘Upload your negative test here, go download this COVID form, fill it out.’” 

Fake O365 COVID phish attempts

Proofpoint logo

Proofpoint has detected fake Microsoft Office 365 phishing emails from cybercriminals posing as human resource departments. The attackers ask the recipients to submit proof of vaccination. The attacker’s goal is to steal your Microsoft 365 sign-in credentials. If you receive such an email, be sure to take the time to verify that it’s come directly from the organization you work for. One’s vaccination card contains useful information such as birthdates or full names, which hackers could target.

Proofpoint’s research has found emails telling employees they’ve lost their jobs due to COVID-19 are also on the rise. And what better way to do that than tell someone they’ve been fired? Mr. DeGrippo explains “It quite literally is clickbait. They need you to click on them, so in order to get the person to take the action, you’ve got to escalate their emotional state to one that has them emotional, instead of intellectual — thinking with the smart part of the brain.”

What if you suspect a phishing email

  1. Fake O365 COVID phish emailBreathe – If an email seems to make you particularly angry, worried, or curious – it’s best to pause for a moment before you click.
  2. Altered domain names are a giveaway. Did  “humanresources@widgit.com” suddenly become “HR@widgit.com” – verify these requests through a second channel —  get someone from HR on the phone before opening it.
  3. Be skeptical of emails from familiar people (like the CEO) who do not usually communicate directly with you. Don’t click on links or open attachments from those senders. Always get someone on the phone before opening it.
  4. Hover over the link to expose the associated web addresses in the “to” and “from” fields. Your company’s email is probably not gmail.com.
  5. Note grammatical errors in the text of the email; they’re usually a sure sign of fraud.
  6. Use different passwords for your work and personal email. That way, if one gets compromised, hackers can’t break into the other and use it to compromise more accounts. A good password manager tool should help.
  7. Don’t forward suspicious emails to co-workers.
  8. Report suspicious emails to the IT security department.
  9. Install and keep up-to-date anti-malware software on all your devices to scan web sessions and emails.
  10. Never donate to charities via links included in an email; instead, go directly to the charity website to donate.

Stay safe out there!

Related article

 

Ralph Bach has been in IT long enough to know better and has blogged from his Bach Seat about IT, careers, and anything else that catches his attention since 2005. You can follow him on LinkedInFacebook, and Twitter. Email the Bach Seat here.

Category: Uncategorized | Tags: , , , , ,
| January 11, 2020
Comments Off on Veeam Backup Bought

Veeam Backup Bought

IVeeam Backup Boughtn a move to improve its U.S. market share, Veeam Software has agreed to be bought by private equity firm Insight Partners. The deal valued a $5 billion, is Insight’s second major acquisition of 2020. Veeam is cloud-focused data protection, backup, and disaster recovery software company.

Backup, and disaster recovery company.

Veeam logoVeeam was founded in 2006 and owned by Russians Andrei Baronov and Ratmir Timashev. The firm has grown to 365,000 customers worldwide and annual sales of more than $1 billion by capitalizing on the VMware-led server virtualization boom. As part of the take-over, the founders will leave the firm and Veeam will become a U.S. company based in New York. The company had been based in Baar, Switzerland.

Veeam’s products include backup solutions, cloud security offerings, and cloud data management. Veeam’s cloud data management portfolio consists of Veeam Backup for Amazon Web Services (AWS), Veeam Backup for Microsoft Office 365, Veeam Universal License (VUL), and Veeam Backup for Microsoft Azure.

Private equity plans

Veeam's products include backup solutionsThe private equity company has a three-stage program to help the companies in which it invests grow, including the Startup stage of focused on companies looking for early growth in their markets, the ScaleUp stage for companies with strong businesses, and the Corporate stage for companies ready for IPOs or other exits, Mike Triplett, a managing director of Insight Partners and new Veeam board member told CRN.

ZDNet says Veeam is in the second “ScaleUp” stage as customers are now also utilizing hybrid cloud setups with AWS, Azure, IBM, and Google, the firm’s “Act II” is to capitalize on a growing need for cloud data management across these environments. Mr. Triplett claims Insight Partners can bring the right resources to bear to move Veeam from the “ScaleUp” stage to the “Corporate” stage.

Other Insight Partners investments

Insight Partners has invested heavily in cybersecurity and MSP-friendly technology markets.Insight Partners also owns other data protection companies — including Unitrends and Spanning. In addition to data protection, the VC has invested heavily in cybersecurity and MSP-friendly technology markets. Other key Insight Partners investments include:

rb-

private equity firms and hedge funds have a bad reputationExpect to see lots of PE activity this year (decade?). Channele2e reports that private equity investors are sitting on a record $1.5 trillion in cash. This kind of war chest is no wonder private equity firms and hedge funds have a bad reputation. VC firms have a history of acquiring businesses, loading them up with debt, and cutting staff to boost profits. The most recent examples being Sears and Toys R Us. Channele2e points out that U.S. presidential candidate Elizabeth Warren is calling for new private equity restraints to combat “legalized looting.”

I have seen that Veeam has a Russian problem. Back in the day when I shared technical services, I tried to replace an HP LTO2 tape library (PDF) with a Veeam solution and the powers-that-were did not want Veeam  – we spent a lot more money to maintain the old HP LTO2 technology.

Related article

 

Ralph Bach has been in IT long enough to know better and has blogged from his Bach Seat about IT, careers, and anything else that catches his attention since 2005. You can follow him on LinkedInFacebook, and Twitter. Email the Bach Seat here.

Category: Data protection | Tags: , , , , , , , , , , , ,
| January 19, 2019
Comments Off on Zix Buys AppRiver – Bolsters Email Security

Zix Buys AppRiver – Bolsters Email Security

Zix Buys AppRiver - Bolsters Email SecurityCompetition in the email security market is intense. Most of the major endpoint security companies, Barracuda, Cisco (CSCO) Fortinet (FTNT), Mimecast (MIME), and Proofpoint (PFPT), have moved into email security — emphasizing training services to mitigate rising phishing threats. Plus, Microsoft (MSFT) has pushed into email security services that wrap around its core business productivity software Office 365.

email securityThe global email security market is expected to reach $18 billion by 2023, expanding at 22% from 2016, this report asserts. This growth has drawn the attention of venture capitalists. The latest VC deal is unique in that the smaller company is buying the larger firm.

Publicly traded Zix (ZIXI) is acquiring AppRiver for $275 million in cash. Zix is a Dallas-based maker of email archiving and security products including ZixMail which manages the key management to provide end-to-end email encryption that protects messages and attachments.

Zix is acquiring AppRiver AppRiver is a privately held Florida-based MSP-friendly cybersecurity and Microsoft Office 365 cloud solutions provider specialist. AppRiver, founded in 2002, supports more than 60,000 companies globally in 2019.

Zix and AppRiver each have about 260 employees. As part of the M&A plan, Zix expects to generate about $8 million in cost synergies — which typically means that layoffs are coming. AppRiver CEO Michael Murdoch is exiting the combined firm. Zix CEO David Wagner would not rule out further job cuts.

cost synergiesCEO Wagner has lined up financial backers to help finance the AppRiver deal. Among the financial players are:

True Wind Capital will make a $100 million equity investment with the closing of the AppRiver acquisition.

SunTrust Bank and KeyBanc Capital Markets committed to a new five-year $175 million term loan and a $25 million revolving credit line.

The combined company, known as Zix, expects to generate roughly $200 – $207 million in annual recurring revenue in fiscal 2019, up 11% – 15% year over year. The deal is expected to close by March 31, 2019. Bu purchasing AppRiver, the new Zix will grow its channel from about 400 to 4,000 partners and its customer base will go from 20,000 to 60,000.

AppRiver is no stranger to acquisitions as it worked to position itself as a one-stop-shop for commercial cybersecurity services.

In October 2017, VC firm Marlin Equity Partners purchased a majority stake in AppRiver with intention of expanding its global footprint.

In March 2018, AppRiver acquired Canadian company Roaring Penguin for its anti-spam and machine learning technologies. In October of 2018, AppRiver acquired Total Defense, a provider of subscription-based endpoint security for consumers and small businesses.

rb-

The last three places I have worked were AppRiver or Zix shops. It makes sense email is the gateway to the cloud for many firms. Email is mission-critical and complicated to secure so it gets moved to the cloud.

My experience with both firms was OK. We were an earlier adopter of hosted Exchange from AppRiver and then at a re-seller. In keeping with industry trends, my current employer moved from Zix as we moved to O365, maybe this deal is a year too late.

 

Related articles

 

Ralph Bach has been in IT long enough to know better and has blogged from his Bach Seat about IT, careers, and anything else that catches his attention since 2005. You can follow him on LinkedInFacebook, and Twitter. Email the Bach Seat here.

Category: Uncategorized | Tags: , , , , , , , , , , , , , ,
| May 7, 2013
Comments Off on Which SkyDrive is Right For You?

Which SkyDrive is Right For You?

Updated February 19, 2014 – To add to the SkyDrive confusion, Microsoft has been forced to re-brand its storage service from SkyDrive to OneDrive following a trademark dispute with a British pay-TV provider BSkyB.

Which SkyDrive is Right For You?Jonathan Hassell who runs 82 Ventures, a consulting firm based out of Charlotte, NC tries to clear up confusion about exactly which Skydrive is right for you. He explains for CIO.com that the Microsoft (MSFTbranding machine confuses perfectly good and functional software with names that are impossible to parse. In the article, he tries to define exactly what each service is and what its limitations are.

SkyDrive Pro

SkyDrive logoSkyDrive Pro – is a business storage space for individual users. The author says SkyDrive Pro is a feature and capability that comes from a SharePoint Server 2013 Enterprise license—a license that you can buy either to run on servers in your own data center premises or access through a subscription to Office 365 on a monthly or annual basis.

SkyDrive Pro is available in the data center or the cloud and functions the same either you run it. The article stresses the key part to remember is that it is a function of SharePoint and nothing else. It has absolutely no relationship to the free service of a very similar name that’s discussed below. The blog presents several key points to remember when thinking about SkyDrive Pro:

  • Microsoft logoSkyDrive Pro is essentially a replacement for the old My Site feature that was available within SharePoint 2010 and 2013. It’s a place for users to store files they might want to share with others in the future. For instance, you might be working on a budget spreadsheet that needs constant updating, so you could save a copy to your SkyDrive Pro location and invite other users to read, view, and update that copy on their own.
  • With SkyDrive Pro on Office 365, each user gets 7 GB of space that is not counted against the overall SharePoint storage quota that is part of the plan you pay for. For SharePoint Server 2013 on-premises installations, administrators can configure the SkyDrive Pro space quota on an individual basis. While you can buy add-on space to pool more available gigabytes for your overall SharePoint sites and workspaces on Office 365, you can’t buy more storage to extend SkyDrive Pro spaces.
  • There is a SkyDrive Pro client application, but at this point, it’s available only as part of the Office 2013 suite. If you don’t have an Office 2013 license, you’re forced to use SkyDrive Pro through the browser just like most of your interactions with other parts of the SharePoint product.
  • The SkyDrive Pro client application behaves like the old SharePoint Workspace client application. It synchronizes the online content with an offline cache so you can still access files, documents, and other objects from the site just like you were online, even if you are stuck without a connection somewhere.
  • SkyDrive Pro works only for Windows and Web browsers. There are no native client applications for other operating systems.

The CIO.com article states that SkyDrive Pro is definitely not a free-for-all when it comes to data storage. Microsoft has imposed the following limitations:

  • Software for rentIn your SkyDrive Pro library, you can synchronize up to 20,000 items, including folders and files;
  • No single file can be greater than 250 MB in size;
  • You can download files up to 2 GB from your library.

If you’re running Office 2013 you can remove the hooks within Windows Explorer that expose the space. Just issue the following command at the elevated administrative command prompt:

regsvr32 /u %programfiles%MicrosoftOfficeGROOVEEX.DLL

SkyDrive

SkyDrive, referred to by Mr. Hassell as SkyDrive Free to prevent confusion, is a consumer service provided by Microsoft that works a lot like Dropbox. It provides up to 7 GB of free cloud storage where users can upload files that are then accessible from either a Web browser or any Internet-connected device where the right client-side extensions are installed. The article notes that consumers can part with some money for even more space above what’s allowed on the free tier.

These client extensions are available for the Windows desktop, through the Windows Store (for Windows 8 and Windows RT devices), for the Windows Phone, and on Apple (AAPL) iOS, Google (GOOG) Android, and Mac OS devices.

Cloud storageTo make things even more confusing, according to the author, users who subscribe to Office 365 Home Premium plans get an extra 20 GB of SkyDrive free storage space. Office 365 Home Premium, despite being an Office 365 product/service, has nothing to do with SkyDrive Pro. This extra SkyDrive Free space is not granted to any other Office 365 subscription plan—and there’s currently no way to increase the SkyDrive Pro space on Office 365 beyond the 7 GB quota. The blog offers a few takeaways when thinking about SkyDrive Free:

  • There’s no corporate control over what’s stored on SkyDrive Free. Other than preventing the client extensions from being installed on corporate-owned devices and blocking access to skydrive.com from your Internet connection, there’s no other way IT can control what a user stores on SkyDrive Free.
  • In Office 2013, SkyDrive Free is the default location where users are prompted to save documents and other objects. SkyDrive Pro spaces are not the default.
  • SkyDrive Free has absolutely nothing to do with SharePoint, won’t work with either SharePoint Workspace 2010 or SkyDrive Pro client applications, and can be used by shops that have no link to SharePoint whatsoever, even all-Mac shops with no Windows machines at all.
  • Finally, SkyDrive Free does not support advanced functionality such as document versioning, file alerts, quick preview, and deeper Office client integration. That’s all exclusively reserved for SkyDrive Pro spaces.

SaaSMr. Hassell concludes that the idea behind both SkyDrive services is the same—a place to store documents, files, and other things so they’re available from multiple places. But SkyDrive Pro is clearly oriented at businesses and provides enterprise features that are useful for collaboration, while SkyDrive Free is a consumer service available to anyone, for free, across different platforms.

Ralph Bach has been in IT long enough to know better and has blogged from his Bach Seat about IT, careers, and anything else that catches his attention since 2005. You can follow him on LinkedInFacebook, and Twitter. Email the Bach Seat here.
Category: Uncategorized | Tags: , , , , , , , , ,
| April 18, 2013
Comments Off on Enterprise Resisting Office 365

Enterprise Resisting Office 365

Microsoft has bet big on Microsoft Office 365 but CITEworld says so far, the big enterprises that make up the bulk of Microsoft’s revenue haven’t jumped on board. Microsoft channel boss Jon Roskill told Redmond Channel Partner that “90 percent” of Office 365 customers are from businesses with fewer than 50 employees, and explained, “small business is at the core of this product customer base.” Mr. Roskill also said that Office 365 “penetration is still in the low single digits” in other words, less than 5%.

Microsoft Office 365Office 365 was originally introduced in June 2011, and the first focus was on Microsoft-hosted versions of servers like Exchange and SharePoint. But enterprise customers tend to have multi-year license agreements.

 

Ralph Bach has been in IT long enough to know better and has blogged from his Bach Seat about IT, careers, and anything else that catches his attention since 2005. You can follow him on LinkedInFacebook, and Twitter. Email the Bach Seat here.

Category: Uncategorized | Tags: , , , , , , , ,