A major new cyber-attack named as KnockKnock has been detected currently taking place against Office 365 Exchange Online email accounts, according to Skyhigh Networks.
The cloud security firm is reporting that more than half of its customers are being attacked from 16 different countries. The interesting thing about this attack is that it’s not targeting humans or their ‘human’ accounts, but rather machines. Under attack are corporate accounts, not tied to any human identity, which thus lack the usual advanced security measures such as two-factor authentication or recurring password reset.
The attacks started in May and are still ongoing, although Skyhigh says the bulk of attack happened in the summer months between June and August. So far, 63 different networks and 83 IP addresses have been used for the attacks.
Skyhigh has notified the affected parties and said that no data loss has been spotted.
“Normally, login attacks follow the ‘brute force’ template with widespread attempts made simultaneously across hundreds of corporate accounts, but KnockKnock reveals that more precise tactics are being deployed,“ commented Nigel Hawthorn, chief European spokesperson at Skyhigh Networks.
“By intelligently targeting accounts not linked to users, the attempts are far less likely to be red flagged or noticed by security, particularly if only one or two attempts are made at any one time; three failed login attempts often sets of alarm bells – just think about what happens to your phone if you forget your pin.”
“Businesses rely on a variety of tools that work together to produce a holistic cloud infrastructure but these connections require the creation of accounts that aren’t linked to a specific user. If companies don’t fully understand how their infrastructure works, hacker entry into one system could have a domino effect. For example, if actors manage to force entry into email accounts which, in turn, are linked to CRM or accounting solutions, suddenly an even bigger pool of corporate and customer data is at risk.”
“To ensure such accounts are awarded the same attention as other network vulnerabilities, firms must not only be aware of which and how systems are linked, but have the ability to monitor long-term login and user activity, so that attacks like KnockKnock are flagged.”
"*" indicates required fields
Software Asset Management is a business practice that involves managing and optimising the life cycle of software within an organisation.
Software asset management is relevant to many facets of a business - take a look at some of the roles that it can form part of the focus of.
Software vendors come in all shape and sizes - all with their own set of licensing models and rules. We take a look at just a few of them.
As a constantly evolving subject, SAM is not without its challenges. We take a look at some of the most common ones.
Wondering what an investment in SAM could do for your business? Fill out a few details and find out what return you could get!
Answer a few questions about your SAM infrastructure & experience, and we'll put together a personalised recommendation for the future.
A simple health check of what's being used across your Office 365 estate in this FREE, Microsoft backed and easy to setup review.
Just like you would with your vehicle each year, get an annual check up of your software asset management programme.
Overwhelmed by the task of documenting the steps for a successful SAM programme? Get the experts in to help!
Concerned your SAM tools aren't covering your whole estate? Or on the look out for an entirely new tool? Get us in to assist.
Not content with covering all things SAM related, we've teamed up with Capital to provide a comprehensive hardware asset management review.
A simple, one-time reconciliation of the software you have deployed versus the licence entitlement you own.
A regularly scheduled analysis of your organisation's estate, specifically adapted to your needs and budget.
A full appraisal of your Microsoft 365 setup and how best to optimise it through automated recommendations.
An add-on to our SAMplicity One, MOT and Plus offerings, quickly diagnose your ability to migrate your resources to the cloud.
In collaboration with law firm Addleshaw Goddard, ensure the legality of your SAM programme and get assistance with any contract disputes.
Available as standard with SAMplicity Plus, ensure you're compliant if you're unexpectedly audited by a vendor.
We've teamed up with some of the forefront experts in licensing knowledge so you can teach yourself to be an expert too.
Stumped by the continually evolving complexities of SAM? Join us for one of our comprehensive courses, either in-person or online.
It’s chock full of useful advice, exclusive events and interesting articles. Don’t miss out!