Soteria - Security Solutions & Advisory

A reminder as we approach the holidays, a little bit of preparation goes a long way.

Our Holiday Season Incident Response Operating Hours: There when you need us.

In Microsoft 365 organizations with Exchange Online mailboxes, zero-hour auto purge (ZAP) is a protection feature that retroactively detects and neutralizes malicious phishing, spam, or malware messages that have already been delivered to Exchange Online mailboxes. Spam and malware signatures in the service are updated in real-time on a daily basis. However, users can still receive malicious messages. For example: - Zero-day malware that was undetectable during mail flow. - Content that's weaponized after being delivered to users. ZAP continuously monitors spam and malware signature updates in the service, finding and acting on messages already in a user's mailbox. Moving beyond mailboxes and currently in Preview, ZAP can retroactively detect existing malicious chat messages in Microsoft Teams. To Learn More about Microsoft's ZAP feature: https://lnkd.in/gtTVK8NY Need help hardening your Microsoft 365 Security Posture? https://lnkd.in/gbz7r7Ji

How accurately do you calculate risk within your security program? "Lesson Learned: The organization’s leadership minimized the business risk of known attack vectors for the organization. Leadership deprioritized the treatment of a vulnerability their own cybersecurity team identified, and in their risk-based decision-making, miscalculated the potential impact and likelihood of its exploitation." A powerful insight from Cybersecurity and Infrastructure Security Agency's Red Team assessments. To read the full report: https://lnkd.in/gdNe9VbQ

Your business is a target of a phishing campaign. A lookalike domain was just registered to use in the attack. Are you aware this has happened? Soteria Domain Watch clients would be. From domain registration monitoring, to alerting and investigation, all the way through the legal domain take down process, Domain Watch helps organizations like yours take proactive measures in situations like the one described above. And most importantly, it gets results, with 100% domain takedown success for two years running. To learn more: https://lnkd.in/gP79cftk

Soteria Inspect for Microsoft 365 has updated Azure Marketplace listings, including the free trial. To sign up today: https://lnkd.in/gbz7r7Ji

Don't let a cyber attack ruin your holiday time with friends and family. Make sure you're ready. And if you need us, know that we're here 24 hours a day.

As we head into the holiday season, we strongly suggest you have your Incident Response plans and playbooks refreshed and available. Need assistance with your Incident Response readiness efforts? Whether it's creating your IR Plan for the first time, refreshing an outdated one or running through a tabletop exercise, we can get you ready. To contact our team of Security Advisors: https://lnkd.in/gxeqZBnk

It's been a heavy focus on security and AI so far at this year's Microsoft Ignite event. "Azure Integrated HSM (hardware security module) is our newest in-house security chip, which is a dedicated hardware security module that hardens key management to allow encryption and signing keys to remain within the bounds of the HSM, without compromising performance or increasing latency. Azure Integrated HSM will be installed in every new server in Microsoft’s datacenters starting next year to increase protection across Azure’s hardware fleet for both confidential and general-purpose workloads." To read more: https://lnkd.in/edCksitA Watch online: https://lnkd.in/dyX5hiwc