Tag - advanced threats

We need “MDATP Lite,” not full MDATP, in order to complete Defender’s value proposition in the SMB–and this is what it looks like

TL;DR: Just give me the device risk level with a description of "why" so I can follow up with potentially at-risk users. You can keep Advanced Hunting, etc. So many people I talk to in the SMB community think that they want MDATP. Well, it is available now as an independent...
Read more...

Introducing the Microsoft Office 365 Email Security Checklist

Okay. I think I have had enough. Enough of what? Enough of reports like this one. And since email is still the number one attack vector in use by the bad guys, it's time we step up our game--I'm looking at you, IT pros (especially consultants). Of note, from the...
Read more...

Add-ons that are NOT compatible with Microsoft 365 Business (yet)

Update 3/9/2019: I had to update this article. I am moving some former content on Identity & Threat Protection to its own article, and expanding on it there. Microsoft 365 Business is a fantastic value, and contains most of what we would like to see in a small business subscription. However,...
Read more...

Understanding Email authentication (SPF, DKIM and DMARC) in Office 365 Exchange Online

For a long time now, we administrators have had the ability to provide email authentication for our customers using SPF, DKIM and DMARC. However, an embarrassingly low percentage of us actually take advantage of these tools. That means it is fairly trivial business for a third party to spoof messages...
Read more...

Understanding the Anti-Spoofing technology in Exchange Online

In the Spring of 2018, Microsoft released some new anti-spoofing features into their Advanced Threat Protection product, which is also bundled into Microsoft & Office 365 E5 plans, as well as Microsoft 365 Business. Anti-spoofing leverages machine learning and other intelligent software to determine whether messages have been "spoofed" or...
Read more...

How to configure Advanced Threat Protection (ATP) part 3: safe links

This will be our last post in this series on Advanced Threat Protection (ATP). We have previously covered anti-phishing policies and safe attachments. Now we will consider safe links. Safe links are basically just taking hyperlinks which exist in Exchange email messages or other content in Office 365, and "rewriting" the...
Read more...

How to configure Advanced Threat Protection (ATP) part 2: safe attachments

In the previous post, we introduced ATP and one of its key features, anti-phishing polices.  ATP is an advanced security product from Microsoft, which is included with Microsoft 365 Business, Office 365 E5, or as a separate add-on to any other subscription, for $2.00/user/month (USD). Today we will explore another...
Read more...

How to configure Advanced Threat Protection (ATP) part 1: anti-phishing

In a previous post, I covered some of the basic anti-spam/anti-malware protections included with Office 365/Exchange Online. Today I want to explore an add-on subscription called Advanced Threat Protection (ATP), which leverages some fancy pants machine learning and other advanced AI-like tech to detect zero-day and other advanced threats. The...
Read more...

Helping IT Consultants Succeed in the Microsoft Cloud

Have a Question? Contact me today.