Security News > 2022 > November > 90% of organizations have Microsoft 365 security gaps
A recently published study evaluated 1.6 million Microsoft 365 users across three continents, finding that 90% of organizations had gaps in essential security protections.
To find out, CoreView experts reviewed the most common problems to understand what companies are doing well and reveal gaps in IT management strategies.
Research from the study reveals that many common security procedures are not being followed 100% of the time.
90% of companies had gaps across all four key areas studied - multi-factor authentication, email security, password policies, and failed logins.
The average company had 21.6% of their licenses unassigned or "Sitting on the shelf." Another 10.2% of licenses were inactive, for an average of 31.9% unused licenses.
Overall, the study reveals that reporting challenges make security and license management incredibly difficult, leading to unnecessary risks and costs.
News URL
https://www.helpnetsecurity.com/2022/11/22/microsoft-365-security-protections/
Related news
- ScubaGear: Open-source tool to assess Microsoft 365 configurations for security gaps (source)
- New Mamba 2FA bypass service targets Microsoft 365 accounts (source)
- Microsoft Issues Security Update Fixing 118 Flaws, Two Actively Exploited in the Wild (source)
- Week in review: Microsoft fixes two exploited zero-days, SOC teams are losing trust in security tools (source)
- Microsoft warns it lost some customer's security logs for a month (source)
- Microsoft lost some customers’ cloud security logs (source)
- Microsoft Entra "security defaults" to make MFA setup mandatory (source)
- Microsoft pulls Exchange security updates over mail delivery issues (source)
- Microsoft 365 Admin portal abused to send sextortion emails (source)
- Microsoft Ignite 2024 Unveils Groundbreaking AI, Security, and Teams Innovations (source)