Microsoft Defender for Office 365

Microsoft Defender for Office 365

Wednesday, 5th May, 2021

Read More
Microsoft Defender for Office 365
Microsoft Defender for Office 365

It is estimated that 48% of data breaches are caused by malicious or criminal attacks. With Cyber-attacks becoming increasingly complex and showing no signs of slowing down, now is the time to take action. Protect your business with Microsoft Defender for Office 365. Defender protects you and your business by preventing dangerous links and malicious attachments from entering your organization via email and other tools (like SharePoint, OneDrive, and Teams).

With industry-leading, integrated protection, Microsoft Defender for Office 365 offers a comprehensive solution that protects businesses and employees from advanced cyber threats. Your will have access to detailed and actionable reporting, and built-in detection and response capabilities to help them stay better protected.

During a study conducted on the Total Economic Impact of Defender of 365 post-breach capabilities, it was reported that there was an 89.3% reduction in investigation and response times, and 96% of consumers better understood real-time risks. Microsoft Defender for Office 365 will not only protect and support your business, it will also help educate your staff so that they are able to mitigate cyber-attacks.

The two main protection technologies within Defender for Office 365 are Safe Links and Safe Attachments. These technologies enhance protection levels against zero-day threats as they can analyse links in emails and office documents. Both Safe Links and Safe Attachment policies apply to internal and external emails in real-time.

Safe Links

When a user clicks a link in an email or document, Safe Links checks if the link is malicious by redirecting the link to a secure server in the Microsoft 365 environment This server then checks the link against a list of known malicious web sites.

If the site is deemed safe, the browser is redirected to the original link destination. If the site is on the block list, the user is blocked, and the browser displays a warning page to the end-user.

This protection persists for the life of the message, meaning the link will be re-processed and evaluated at every click. It doesn’t matter if this is a few hours, days, or even years later – the protection still applies.

This defends against attackers who hide malicious URLs with seemingly safe links that are subsequently redirected to unsafe sites after the message has been delivered.

Should a link point to a downloadable file, Safe Links can be configured to execute and scan the file within the sandbox and detonation chamber.

Safe Attachments

Office 365 Safe Attachment policies also route any attachments that do not have a known virus or malware signature to a special hypervisor environment for behavioural analysis.

This environment uses a variety of machine learning and analysis techniques to detect malicious intent. Only if no suspicious activity is detected is the attachment released for delivery to the user’s mailbox.

This protection from malware-infected content in Defender for Office 365 also applies beyond email. If malicious files or links are uploaded to SharePoint or OneDrive for Business and shared, even via Microsoft Teams, Defender for Office 365 will detect it, block it, and prevent the file from being opened or shared in the future.

For further information on Microsoft Defender for Office 365, please get in touch.