Hornetsecurity releases 365 Total Protection Plan 4 for Microsoft 365 with AI Recipient Validation that prevents misdirected emails

Hornetsecurity releases 365 Total Protection Plan 4 for Microsoft 365 with AI Recipient Validation that prevents misdirected emails

  • Hornetsecurity’s comprehensive 365 Total Protection Suite had so far provided advanced Email Security and Backup for Microsoft 365 (Plans 1-3).
  • The new 365 Total Protection Compliance & Awareness (Plan 4) is an upgraded solution that additionally delivers compliance, permission management and security awareness.
  • It also includes new AI Recipient Validation to prevent misdirected emails and thus data leaks.

Pittsburgh, PA (5 September 2023) – Leading cybersecurity provider Hornetsecurity has launched its Plan 4 “Compliance & Awareness” solution of 365 Total Protection Suite, offering a higher level of defense and compliance with new AI tools, security awareness service, and permission management for Microsoft 365. This new plan covers a broader range of an organization’s Microsoft 365 security, compliance management and data protection needs, and prevents existing and potential risks of spam, malware, and threats.

AI helps to prevent accidental data exposure

Screenshot AI Recipient Validation

AI Recipient Validation is one of 365 Total Protection’s newest features, providing security and compliance managers with true visibility into how often employees are exposed to potentially misdirected emails and how they respond to them. It protects the end user by providing a warning when an email they are about to send appears to be misguided or contain sensitive information. The user can decide to either adjust their email or continue to send without modification.

Additionally, this new AI-based service continuously updates its understanding of the user’s email communication patterns by learning user behavior and responses. It then automatically adjusts warnings for outgoing emails and prevents users from receiving similar warnings multiple times.

Strengthening employees’ security awareness

The new 365 Total Protection Plan 4 now also includes Hornetsecurity’s Security Awareness Service, which runs fully automated and continuously measures employees’ security behaviour. As part of this service, the Employee Security Index (ESI®) metric measures the security behaviour of employees to determine how well-versed they are in their security awareness. Based on this metric, additional training and phishing simulations can be adapted to an individual’s specific needs. This service helps to strengthen awareness of cybersecurity risks and threats, and ensures that employees are actively learning how to protect themselves and their organizations.

Easy-to-use permission management improves compliance

Permission management in Microsoft 365 is complex and failure to handle this properly can easily lead to data leaks. The new 365 Total Protection package therefore also includes 365 Permission Manager. This easy-to-use DLP (data loss prevention) service gives admins and CISOs an easy-to-understand view of all permissions and enables effortless auditing, management, compliance policy enforcement and violation monitoring.

Holistic management of risk prevention

“As AI-based technologies increasingly make cyber-hacking more sophisticated and as targeted email attacks multiply, having full protection and preventative measures in place will lessen the risk of a potential data breach. With this latest version of 365 Total Protection, organizations will have all the tools needed to holistically manage risks and protect against them from all angles across security, archive and backup, and now compliance and security awareness,“ said Hornetsecurity CEO Daniel Hofmann.

Learn more about Hornetsecurity’s 365 Total Protection Plan 4 and AI Recipient Validation.

About Hornetsecurity

Hornetsecurity is a leading global provider of next-generation cloud-based security, compliance, backup, and security awareness solutions that help companies and organizations of all sizes around the world. Its flagship product, 365 Total Protection, is the most comprehensive cloud security solution for Microsoft 365 on the market. Driven by innovation and cybersecurity excellence, Hornetsecurity is building a safer digital future and sustainable security cultures with its award-winning portfolio. Hornetsecurity operates in more than 30 countries through its international distribution network of 8,000+ channel partners and MSPs. Its premium services are used by more than 50,000 customers.

Media enquiries

Please contact us at press@hornetsecurity.com.
Hornetsecurity’s new podcast series helps businesses understand and overcome latest cybersecurity risks

Hornetsecurity’s new podcast series helps businesses understand and overcome latest cybersecurity risks

  • Podcast series ‘The Security Swarm’ explores trending cybersecurity topics
  • Conversations with leading cybersecurity experts open up discussions around AI, compliance and Microsoft 365

Pittsburgh, PA (31 August 2023) – Hornetsecurity has recently launched The Security Swarm podcast series to shed light on the latest cybersecurity issues. The weekly show, hosted by Hornetsecurity’s Andy Syrewicze, brings together experts from across the cybersecurity sector to discuss industry challenges, how businesses can overcome ever-changing threats, and future cybersecurity issues.

The informative and educational series has already looked at topics such as AI and whether ChatGPT could conduct a cyberattack, discussions around Hornetsecurity’s recent compliance survey, as well as a conversation with Microsoft Certified Trainer on how secure Microsoft 365 actually is.

Hornetsecurity CEO Daniel Hofmann said: “The Security Swarm podcast launch has been incredibly successful and delivers insightful conversations about the biggest cybersecurity challenges facing businesses today. This podcast is one of many new approaches we have introduced to support and educate cybersecurity decision-makers across the world.”

the Security Swarm Podcast

The world of cybersecurity should not be taken on alone. A glimpse into the podcast series is available in this trailer.

The podcast can be listened to via the Hornetsecurity website and is also available to download on Apple Podcasts, Google Podcasts, Spotify, and YouTube.

About Hornetsecurity

Hornetsecurity is a leading global provider of next-generation cloud-based security, compliance, backup, and security awareness solutions that help companies and organisations of all sizes around the world. Its flagship product, 365 Total Protection, is the most comprehensive cloud security solution for Microsoft 365 on the market. Driven by innovation and cybersecurity excellence, Hornetsecurity is building a safer digital future and sustainable security cultures with its award-winning portfolio. Hornetsecurity operates in more than 30 countries through its international distribution network of 8,000+ channel partners and MSPs. Its premium services are used by more than 50,000 customers.

 

Media enquiries

Please contact us on press@hornetsecurity.com.

Hornetsecurity launches new Backup Bible to support businesses with data loss prevention

Hornetsecurity launches new Backup Bible to support businesses with data loss prevention

  • Hornetsecurity’s Backup Bible offers business owners actionable content and customizable templates to create a personalized backup strategy
  • The eBook will help businesses maintain data protection systems as well as prepare them for the recovery process

Pittsburgh, PA (July 5 2023) – Leading cybersecurity provider, Hornetsecurity, has today announced the launch of its new Backup Bible – a complete guide to support businesses through all stages of preparing for, responding to, and recovering from a substantial data loss event.

The Backup Bible features 150+ pages of actionable content, divided into four core parts, including customizable templates enabling business owners to create their own personalized backup strategy.

The online support document contains instructions and examples for building and maintaining a thorough data protection system, as well as discussion material on expanding recovery processes throughout the enterprise. Without this, businesses could experience data destruction or losses which could cost them excessive amounts of time and money.

Hornetsecurity CEO, Daniel Hofmann said: “Consistently delivering support for businesses is critical to Hornetsecurity’s success. The new Backup Bible is testament to this goal, with the online content enabling businesses to create sustainable backup strategies, to ensure they are prepared in the event of a data breach.

“The Backup Bible is one of a host of new initiatives – our Security Swarm podcast is another – that Hornetsecurity is delivering, to show consistent support for businesses undergoing cybersecurity challenges.”

About Hornetsecurity

Hornetsecurity is a leading global provider of next-generation cloud-based security, compliance, backup, and security awareness solutions that help companies and organizations of all sizes around the world. Its flagship product, 365 Total Protection, is the most comprehensive cloud security solution for Microsoft 365 on the market. Driven by innovation and cybersecurity excellence, Hornetsecurity is building a safer digital future and sustainable security cultures with its award-winning portfolio. Hornetsecurity operates in more than 30 countries through its international distribution network of 8,000+ channel partners and MSPs. Its premium services are used by more than 50,000 customers.

Media enquiries

Please contact us on press@hornetsecurity.com.

”A WAKE-UP CALL FOR BUSINESSES”: MORE THAN HALF OF IT DEPARTMENTS SADDLED WITH BURDEN OF COMPLIANCE, HORNETSECURITY SURVEY REVEALS

”A WAKE-UP CALL FOR BUSINESSES”: MORE THAN HALF OF IT DEPARTMENTS SADDLED WITH BURDEN OF COMPLIANCE, HORNETSECURITY SURVEY REVEALS

  • Nearly 80% of companies ‘more concerned’ about compliance than 5 years ago
  • Seven in 10 respondents (68.7%) say compliance has a ‘moderate’ to ‘extreme’ impact on their IT department’s operations.
  • 4 in 5 believe (81.7%) their organisation would benefit from a new, easier compliance management tool in Microsoft 365.

London ExCeL, UK (JUNE 20 2023) – Nearly 4 in 5 organisations are more concerned about compliance than they were five years ago, with the burden falling on the IT department in more than half (57%) of businesses, according to a new ‘IT Compliance Survey’ conducted by leading cybersecurity software provider Hornetsecurity. The company released its latest research findings at Infosecurity Europe 2023, currently in progress in London, where it is exhibiting at booth N40.

Worryingly, 69% of respondents said that compliance has a ‘moderate’ to ‘extreme’ impact on their IT department’s operations, and 1 in 8 companies (13%) said they couldn’t confirm that they were compliant with required controls.

The findings of more than 200 respondents, from CIOs to system administrators, revealed that despite this widespread concern, more than a third (37.5%) of organisations don’t have a dedicated compliance officer, and 1 in 8 have been penalised for non-compliance with regulations.

Just one-fifth of respondents said they use an automated system for compliance, with nearly 40% relying on time consuming manual processes. Even when using compliance features, like those present in Microsoft 365, there are problems; over half (52%) cited ‘Lack of internal knowledge’ and 44% said ‘complexity’ causes issues, both of which can jeopardise effective data protection and compliance with laws and regulations. More than 80% of respondents said their organisation would gain ‘moderate’ to ‘extreme’ benefit from a new, easier compliance management tool.

Commenting on the research, Hornetsecurity CEO, Daniel Hofmann, said: “This new survey should be a wake-up call for businesses. The fact that more than half of companies are hindering the day-to-day work of IT departments through lack of compliance staff and policies is a huge concern. It confirms our suspicion that there’s a widespread need for easy-to-use, effective compliance management solutions to enable companies to streamline data management and reduce the risk of data loss.”

Only 2 in 10 utilize an automated process to verify IT compliance on a regular basis

Cloud problems

Unfortunately, the survey findings also revealed that cloud storage was a major issue when it comes to compliance.

  • 1 in 3 respondents (33.3%) said a ‘lack of effective reporting and auditing tools’ is a reason the cloud cannot be used to store data in their organisation.
  • 2 in 10 respondents (21.6%) claimed compliance regulations prevent their organisations from storing data in the cloud.
  • ‘Lack of trust’ (42.2%) and a ‘hard requirement data on-premises’ (37.8%) were the most commonly cited reasons for not storing data in the cloud.

To address the mounting challenges faced by IT teams, Hornetsecurity has created a way for any-sized companies to alleviate compliance burdens with its next-gen all-in-one email security, backup, compliance and security awareness solution for Microsoft 365, 365 Total Protection. Additional value is added by coupling this with Hornetsecurity’s newly launched 365 Permission Manager, which delivers effortless permissions management, enabling administrators to control Microsoft 365 permissions, enforce compliance policies, and monitor violations in SharePoint Online and OneDrive for Business.

Hofmann added: “Hornetsecurity’s offerings for M365 helps to deliver easy-to-use and effective security, backup, compliance and governance solutions for organisations. For example, the ease of file-storage and file-sharing in SharePoint Online and OneDrive for Business can quickly create a compliance headache for administrators. Our solutions assist business leaders to work in line with regulations, and importantly, it frees up time and responsibility for IT teams to focus on their essential tasks.”

Click here to access the full ‘IT Compliance Survey’ report.

About Hornetsecurity

Hornetsecurity is a leading global provider of next-generation cloud-based security, compliance, backup, and security awareness solutions that help companies and organizations of all sizes around the world. Its flagship product, 365 Total Protection, is the most comprehensive cloud security solution for Microsoft 365 on the market. Driven by innovation and cybersecurity excellence, Hornetsecurity is building a safer digital future and sustainable security cultures with its award-winning portfolio. Hornetsecurity operates in more than 30 countries through its international distribution network of 8,000+ channel partners and MSPs. Its premium services are used by more than 50,000 customers.

For more information, visit www.hornetsecurity.com.

Media enquiries

Please contact us at press@hornetsecurity.com.

Hornetsecurity launches new 365 Permission Manager to help companies protect critical data

Hornetsecurity launches new 365 Permission Manager to help companies protect critical data

  • Hornetsecurity’s 365 Permission Manager delivers effortless permissions management for Microsoft 365
  • New software gives administrators the ability to control Microsoft 365 permissions, enforce compliance policies, and monitor violations
  • Rise in hybrid work means three-quarters of remote workers have access to critical data

Pittsburgh, PA (23 May 2023) – Leading cybersecurity provider, Hornetsecurity, has today announced the launch of 365 Permission Manager – a user-friendly, admin-centred solution to manage permissions, enforce compliance policies, and monitor violations within Microsoft 365 (M365).

This innovative solution brings ease and order to the tracking of employee access to M365 sites, files and folders, and ensures that critical permission situations do not occur. This way, 365 Permission Manager helps protect the organization’s information assets and ensures that users follow good practices when sharing critical business information, in line with Chief Information Security Officer (CISO) requirements.

A recent study from Hornetsecurity found that nearly three-quarters (74%) of remote staff have access to critical data. This increase in hybrid work further demonstrates how critical and valuable 365 Permission Manager is to administrators and CISOs, as it can help prevent unauthorized access to corporate data. It also enables administrators to meet compliance requirements by helping users to work diligently.

Hornetsecurity CISO, Olaf Petry, said: “It is critical for a CISO to effectively oversee the company’s strategy and programs to ensure adequate protection of information assets and technologies, and yet this process can be very complicated. My peers often discuss what a great pain point it is for them. Hornetsecurity’s new 365 Permission Manager will set CISO’s minds at rest by enabling security and compliance managers and administrators to efficiently and easily control Microsoft 365 permissions, and help prevent critical data from getting into the wrong hands.”

Elevating compliance

Hornetsecurity worked closely with CISOs, security and compliance managers, and administrators to create the new 365 Permission Manager. The solution helps organisations better protect sensitive information via a user-friendly interface that provides a comprehensive view of permissions. This will save organisations and administrators time and effort, as it allows them to perform bulk actions to manage permissions and maintain a compliant SharePoint, Teams, and OneDrive infrastructure.

365 Permission Manager also enables organisations to confidently maintain compliance with internal and external regulations, as well as policies across sharing sites, files and folders in Microsoft 365 – making for an easier, smoother and more efficient process for administrators and site owners.

User Friendly usage of 365 Permission Manager

Going beyond existing offerings

Hornetsecurity’s 365 Permission Manager also empowers organisations to exercise reasonable control over the access and sharing permissions granted in M365 in a pragmatic way. Instead of offering an excess of overly specific features, the unique solution is operational-centred, providing a non-obstructive workflow to easily review and fix permissions.

Both customers and partners will benefit from the introduction of 365 Permission Manager, with the additional benefit of Hornetsecurity’s integrated service platform for M365 security, compliance and backup, as well as security awareness.

Hornetsecurity CEO, Daniel Hofmann, said: “Having listened to many customers and partners who have shared their concerns about this issue, I understand how valuable 365 Permission Manager will be. It is vital that businesses and CISOs have the ability to enforce compliance policies and reasonably control access to documents and data – and we are proud to offer this with our new solution.”

Click here to learn more about Hornetsecurity’s 365 Permission Manager.

About Hornetsecurity

Hornetsecurity is a leading global provider of next-generation cloud-based security, compliance, backup, and security awareness solutions that help companies and organisations of all sizes around the world. Its flagship product, 365 Total Protection, is the most comprehensive cloud security solution for Microsoft 365 on the market. Driven by innovation and cybersecurity excellence, Hornetsecurity is building a safer digital future and sustainable security cultures with its award-winning portfolio. Hornetsecurity operates in more than 30 countries through its international distribution network of 8,000+ channel partners and MSPs. Its premium services are used by more than 50,000 customers.

About Hornetsecurity

Please contact us at press@hornetsecurity.com.

Security Alert: Severe security vulnerability discovered in Microsoft Outlook — CVE-2023-23397

Security Alert: Severe security vulnerability discovered in Microsoft Outlook — CVE-2023-23397

Microsoft Outlook users advised to urgently apply the security patches provided by Microsoft

Pittsburgh, PA – 16 March 2023 – A severe security vulnerability has been discovered in Microsoft Outlook, which is currently being exploited by cybercriminals. The vulnerability, identified as CVE-2023-23397 with a CVSS score of 9.8, permits a remote, unauthorized attacker to compromise systems simply by transmitting a specifically crafted email. This malicious email enables the attacker to gain unauthorized access to the recipient’s credentials.

More widespread attacks that target this vulnerability are expected

Umut Alemdar, Head of the Security Lab at Hornetsecurity, said, “We expect that the likelihood of more widespread attacks targeting the CVE-2023-23397 vulnerability to increase, as public proof-of-concepts have already been released. We therefore highly recommend that all users of Microsoft Outlook apply the security patches provided by Microsoft as soon as possible.”

He confirmed that Hornetsecurity detects emails that exploit the vulnerability and quarantines them to prevent emails from reaching the victim’s inbox, and added, “The Security Lab at Hornetsecurity is continuing to monitor the threat landscape to ensure that customers are protected from the latest cyber threats.”

 

Exploitation occurs even before the email is displayed in the preview pane

The exploit is initiated by fetching and processing a malicious email by the Outlook client, potentially leading to exploitation even before the email is displayed in the preview pane. It triggers a connection from the victim to a location controlled by the attacker. This results in the leakage of the victim’s Net-NTLMv2 hash, a challenge-response protocol used for authentication in Windows environments. The attacker can then relay this information to another service and authenticate as the victim, further compromising the system.

The complexity of the attack is low, and it has been seen in the wild according to Microsoft, with the exploit being used to target the European government, military, energy, and transportation organisations. It was initially reported to Microsoft by CERT-UA (the Computer Emergency Response Team for Ukraine).

A proof-of-concept created by the Hornetsecurity’s Security Lab team demonstrates that the exploit is hard-to-detect since all anti-malware and sandbox services incorporated into VirusTotal were unable to recognize it as malicious.

 

Recommended actions

For a list of affected versions, and recommended action to secure your organization, please click here.

About Hornetsecurity

Hornetsecurity is a leading global provider of next-generation cloud-based security, compliance, backup, and security awareness solutions that help companies and organisations of all sizes around the world. Its flagship product, 365 Total Protection, is the most comprehensive cloud security solution for Microsoft 365 on the market. Driven by innovation and cybersecurity excellence, Hornetsecurity is building a safer digital future and sustainable security cultures with its award-winning portfolio. Hornetsecurity operates in more than 30 countries through its international distribution network of 8,000+ channel partners and MSPs. Its premium services are used by more than 50,000 customers.

Media enquiries

Please contact us on press@hornetsecurity.com.