Arguably the no. 1 takeaway for security practitioners analyzing the recent cyber attacks targeting SolarWinds and its use of the Microsoft Office 365 cloud platform is the need to employ stronger mechanisms to detect and respond to such cross-platform threats in real time.
As demonstrated in this scenario, attackers’ abilities to compromise existing defenses and subvert access controls for Office 365 and other cloud platforms enabled them to infiltrate multiple organizations to execute potential data theft, all while remaining undetected. This was a particularly damaging technique given the “trusted connection” relationship existing between Office 365 and other clouds.
To address this issue and increase the likelihood of identifying and preventing such threats – those that take advantage of pervasive risks directly related to complex ecosystems of cloud applications and infrastructure – practitioners clearly require centralized capabilities designed to pinpoint and mitigate cross cloud platform attacks.
In this webinar, we’ll examine the specific steps that enabled attackers to gain access to Office 365 and leverage its connected cloud relationship with other applications to carry out their campaign. We will also highlighting key capabilities of the CipherCloud CASB+ that can help organizations address such conditions, including:
5 Key Steps for Mitigating Connected Cloud Applications Risk
Download this white paper to understand the specific security gaps exploited in the SolarWinds cyber attacks and the advanced cloud and data security capabilities delivered by CipherCloud CASB+ solution to help address Office 365-related security issues, including: