If you are a small or medium-size business using Office 365, your organisation could be targeted by cyber criminals and hackers. Office365 comes with very little cyber security protection by default. This is because to get the increased security you need to increase your plan. As an example the basic account does include logging or management for mobile devices. As a minimum we would recommend:
- Set-up 2-factor verification.
- Use dedicated admin accounts.
- Implement advanced email filtering as a necessity.
- Enable Logging
There is more that needs to be setup for Office365 such as Mobile Device Management, Sharing Protections, Password Restrictions and Email Impersonation Protection, which we can setup as part of our Office365 Security Hardening service.
We would strongly recommend you reach out to discuss why these items are important before you are hacked.
