Cybersecurity

Data Breach: Remote Workers Can Now Leverage Microsoft’s New Encryption and Data Security Tools

Data breach - cfamedia

Since the coronavirus episode become a global phenomenon, some businesses have either shut down, or adopted the work-from-home protocol.

However, working from home has its challenges, due to the fact that workers are now more exposed to data breaches, now, than ever before.

In recent weeks, there has been a great surge in the number of data breaches and just a few days ago, the Twitter accounts, belonging to top influencers, such as:

Jeff Bezos, Bill Gates, Elon Musk, Whiz Khalifa, US presidential candidate, Joe Biden, Kim Kardashian and host of others were hacked.

Twitter released a report, stating that, it was a coordinated attack, targeting its employees, with access to internal systems and tools.

The Twitter data breach might be the most publicized, but lots of data breaches have been going on, for quite some time and nobody is talking about it.

Remote workers, however, can now leverage on Microsoft’s newly released encryption and data security tools, for organisations to prevent a data breach.

Below are the encryption and data security tools that organisations should explore against data breach:

Double Key Encryption for Microsoft 365

The double key encryption for Microsoft 365 will serve as an extra layer of protection for the user’s data and will repel any malicious entity that seeks to steal user’s data.

Organisations can now move sensitive data to the cloud or share it through a cloud platform, which means that files can now bypass third parties encryptions.

“Double Key Encryption (…) uses two keys to protect your data—one key in your control and a second key is stored securely in Microsoft Azure’, Microsoft’s spokesperson stated.

“Viewing data protected with Double Key Encryption requires access to both keys. Since Microsoft can access only one of these keys, your protected data remains inaccessible to Microsoft, ensuring that you have full control, over its privacy and security”, Microsoft’s spokesperson further stressed.

This Microsoft enterprise security solution allows organizations to migrate sensitive data to the cloud, or share it via a cloud platform, without relying, solely on the provider’s encryption.

It, also, makes sure that the cloud provider, or collaborating third parties cannot have access to sensitive data.

Microsoft Endpoint Data Loss Prevention

It is, extremely, useful when it comes to preventing copying sensitive content, directly to the USB drives, printing sensitive documents, uploading a sensitive file to cloud service and finally, blocking off the disallowed app, from accessing a sensitive file, etc.

“Data Loss Prevention solutions, help prevent data leaks and provide context-based policy enforcement, for data at rest, in use and in motion, on-premises and in the cloud”, Alym Rayani, Senior Director, Microsoft 365, stressed.

Alym further stated that, this option is only accessible to users on Windows 10, Microsoft Edge and the Office apps.

Endpoint DLP provides data-centric protection for sensitive information, without the need for an additional agent, enabling you to prevent risky, or inappropriate sharing, transfer, or use of sensitive data, in accordance with your organization’s policies”, he concluded.

Insider Risk Management and Communication Compliance

What Microsoft has done with the Insider Risk Management is that, it has updated and upgrade,d with new features to further prevent data breaches, while Communication Compliance will create more protection and safety for workers.

“For those using Microsoft Defender Advanced Threat Protection, (MDATP), we can now provide insights into, whether someone is trying to evade security controls, by disabling multi-factor authentication, or installing unwanted software, which may indicate potentially malicious behaviour”, Talhar Mir, Principal PM, at Microsoft stated.

“Finally, one of the key early indicators, as to whether someone may choose to participate in malicious activities is, disgruntlement.

In this release, we are further enhancing our native HR connector, to allow organizations to choose, whether they want to use additional HR insights that might indicate disgruntlement, to initiate policy.” Talhar concluded.


Featured Image: kappaservices


Don’t miss important articles during the week. Subscribe to cfamedia weekly digest for updates.