Attack simulator Office 365

Hearing about the attack simulator first I thought back at the time I was in college and somebody actually did a phishing "attack" on the whole school. That got him suspended (for a short period) but it made me aware of how easy it is to "attack" a school or another company.

Do you know in your organization who is actually vulnerable for phishing or other forms of attack? Who of your employees does understand that the email is not coming from a trusted organization? Tot test this Microsoft released the "Attack simulator" a pretty cool name for a tool in Office 365.

The Attack simulator

At this moment it's in preview but if you're in targeted release you can go to Security and compliance center > Threat management > Attack simulator. Note! you need to activate Multi Factor Authentication (MFA) for this. Activate this first and then log-in again to be able to use the Attack simulator features.


Let the games begin

You can use a template to try it out. Click on template on the right and select "Price giveaway" or "Payroll update" I'm using the second template for testing.


Once you choose the Target you have to configure the email details, who is it coming from what does the message contain etc.. The template fills in all the field automatically.



Now let's write an email. Microsoft has an awesome template that looks so real! As a Dutch organization I will have to translate it but for now it's good to go.


Are you sure you want to proceed? YOU BET! Charge!


Within a few seconds I receive an email. It looks so real!


Once I click on the button I get a big red screen! Windows Defender warns me of the risks.


When I go back to the Attack simulator I can see that an account has been compromised. I surrender!

Conclusion

Having people being aware of how easily they can be "Attacked" is important. Companies practice their fire drills so having a "Cybercrime" practice is not a bad thing. You can see how easy it is and I'm sure a lot of people will fall for it! You'll be amazed how people think about the internet and security.

Remember! The weakest link is a person.

Comments

Post a Comment

Popular posts from this blog

Azure Information Protection (AIP)

Image
Let's start with one of my favorites (till now). Azure Information Protection (or AIP). Just imagine the following example: You are working on your Word document and you want to send this document to an external person. You e-mail that document as an attachment. The person opens this document, reads it and puts it on an USB stick to take with him. The USB stick get's lost! Now the document can have fallen into the wrong hands! Now what? OK this is a little bit of a roman but hey it could happen! Active Director Rights Management  First let us go back in time to when AIP didn't exist and there was  Active Directory Rights Management Services .  This was a server role that could be installed on Windows Server 2008 R2, it exists since Windows server 2003! Back then it was called RMS. The RMS client is available  from Windows 2000 and later. So what does RMS do? To explain in simple English: Information with RMS on it has certain policies with it  that would remain
Read more

Tiles modern UI

Image
Back in SharePoint 2013 Microsoft introduced "Promoted links" a feature which enabled users to create tiles quick and easy without any custom code. Since then I've seen Promoted links being used a lot of ways, some better than others. However creating tiles with an image in the background was always a nasty thing to do. People would use the weirdest images as background to indicate what it was, totally not user friendly. Especially the choice of the color was very "weird" you would have tiles with all sort of colors and images (see image below as an example). Promoted links always had one big problem; Scaling! It's not responsive in a way you would want to have it. Since Microsoft introduced Modern UI they have also introduced the webpart "tiles". Tiles enables the user to create custom tiles within their SharePoint site, quick and easy. Cool features of the Tiles webpart. Tiles are responsive! They resize when the screen gets smalle
Read more

Azure Active Directory (AAD)

Image
In my last post I talked about Azure Information Protection (AIP). It was a way of getting a good sense of security in the Cloud. Today I want to talk about a very important feature in Azure: Azure Active Directory (AAD). AAD is a good place to start with security. Users that are allowed or prevented from logging in is your first line of defense. In preview AAD is not something radically new. Microsoft created the Management portal om the new Azure Portal to make it look and feel like the new portal. At this moment the most users will have to use the old portal for AAD but once the new management portal is out of preview we are good to go! What has changed? So who cares? It's a new Mangement portal for AAD. To be honest nothing has really changed, Microsoft just changed the look & feel of the new portal. 3 versions There are 3 versions of the AAD: Free, Basis and Premium. See the link below to decide what versions of AAD you need. Overview AAD subscriptions F
Read more