Employees working from home can mean a company has created thousands of extra endpoints, each one of which is vulnerable to attack. This, combined with the move away from on-premise to Cloud, means that we have millions of files moving around the world every day.
One phrase has become synonymous with the business world since the outbreak of the Coronavirus in 2019: secure hybrid working. We all know what it is and what it means, but do we know how to achieve it? One of the main vehicles for this continual exchange of information is Microsoft 365. This is the reason we have added protection for OneDrive to our WithSecure Elements Collaboration Protection offering. “What we’re doing with protection for OneDrive is protecting the end user, it’s as simple as that,” says Aviv Alfital, Senior Management, R&D for WithSecure Elements Collaboration Protection at WithSecure. “Cybersecurity is all about layers. Our layers are very, very thick, which allows us to be very confident in our product.”
By introducing extra layers of protection, your attack surface is significantly diminished and makes you a less-attractive target for attackers. Olga Kornilova, Senior Product Owner at WithSecure, sums it up perfectly. “We want to create a virtual space where you can trust each and every asset you share or send, every meeting invite and email, as well as contact details, messages, files, and links. With our solution, you no longer have to worry whether you can click a link or open a file– everything can be trusted.”
How does it work?
“We are often asked by our customers: Why shouldn’t we just purchase the Microsoft protection license and let them do the job? Well, during the first few months of our OneDrive Protection being live in a testing environment, we discovered 159 malicious files got into our customers’ OneDrive accounts. We detect far more than basic protection. There is a basic layer in place, but you need to take it that step further,” according to Alfital.
By scanning and analyzing files in each of your users’ personal OneDrive folders for malicious content, OneDrive Protection begins a multi-stage analysis to detect all forms of malware that may have slipped through Microsoft’s barriers.
We know our customers. If they’re using one Microsoft program, it is very likely they are using many more – that’s how the offering works. So, we made sure that if a problem in one service, it will automatically be identified in others as well without waiting for the scan to finish. This means it is far more efficient, while adding value by minimizing risk.
It also works the other way around. If you don’t want to block a file and choose to release it from quarantine, the next time we encounter this file, across any other service, it will be ignored, saving time and energy.
“Imagine you’re an admin and you’ve got a file on SharePoint that you want to trust. You then release it. However, tomorrow someone else in the organization shares it on OneDrive. You won’t have to go through the whole process again, as we can remember its classification,” explains Alfital.
By not charging for OneDrive and SharePoint protection separately, the security of your entire ecosystem is covered – giving you the best possible chance of staying safe.
What does the future hold?
Developing a product is not a linear operation. The threat landscape is continually changing and evolving, meaning you need to create a product that can react to this in the future as well. “We need to be aligned with the latest vulnerabilities and viruses, as well as deepening the security at the same time. It is not enough to cover and identify threats, we need to make sure the protection is efficient, effective, and rock solid,” Kornilova continues.
Logically, it would seem that the way to protect a hybrid environment would be to go for the jugular first: in this case, Microsoft Teams. However, this is not the case and would be learning to run without being able to walk. “Protecting the entire Teams environment is the ultimate goal,” says Kornilova. “But OneDrive is your personal space, where your assets, such as shared files, are stored. You need to protect this area before you can move on to ensuring that the area in which you share these things is also protected. Having said that, we already protect internal Teams chats against malicious files, as they are stored in personal OneDrive spaces.”
“Next up is Teams. We are currently in the testing phase of this project and once complete, we will protect the entire Microsoft 365 ecosystem,” Alftital confirms.
Safeguard your hybrid workforce with advanced protection for Microsoft 365