Restrict entry and federation between on-prem and cloud
One ought to restrict entry and federation between on-premises and cloud property the place one can. Sure, we’ve constructed up reliance on this potential to share knowledge and authentication between cloud property and on-premises, however too usually it’s additionally introducing weaknesses.
A recent ProPublica article claims {that a} whistleblower identified these dangers to Microsoft years earlier than assaults primarily based on them occurred. Whereas the SolarWinds provide chain assaults have been the entry factors, it was misuse of Energetic Listing Federation Providers that allowed attackers to achieve extra entry. Thus perceive the danger concerned and add extra monitoring assets to evaluation authentication processes.
Lastly, should you’ve been a buyer of Microsoft 365 for some time, and also you haven’t reviewed your safety defaults and settings, it’s now time to evaluation these settings. From Microsoft to the Heart for Web Safety, numerous entities have up to date and revised benchmarks over time. Some benchmarks have extra handbook steps and a few are extra automated.