Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Endpoint

4/23/2020
10:40 AM
Dark Reading
Dark Reading
Products and Releases
50%
50%

Abnormal Security Protects Remote Workforces from Social Engineering Attacks with Cloud Email Security Integrations

API-Based Integration with Microsoft Teams and Okta Multi-Factor Authentication Extends Security Coverage Beyond Email to Provide End-to-End Channel Protection.

SAN FRANCISCO -- April 22, 2020 -- Abnormal Security, a leader in protecting large enterprises from business email compromise (BEC) attacks, today announced the availability of Microsoft Teams protection and integration with Okta to extend email security coverage and protect remote workforces from social engineering attacks. Seamlessly delivered through Abnormal Security’s API-based integration with Office 365 and Okta’s Identity Cloud, respectively, these new integrations give enterprises more visibility, extended protection, and faster response to email-borne attacks. 

Microsoft Teams protection automatically detects suspicious messages sent within a customer's Microsoft Teams environment, lowering the risk of phishing attacks infiltrating internal Teams communication channels. Analysis of signals from Okta’s Identity Cloud provides early detection of compromised accounts.

“With Microsoft Teams becoming a much bigger part of the business communications mix, especially with the shift to remote work, it needs to be holistically protected,” said Evan Reiser, CEO and co-founder of Abnormal Security. “Integration of Teams and Okta greatly deepens the Relationship Graph and Identity Model in our Abnormal Behavior Technology in order to protect enterprises regardless of how they communicate.” 

Abnormal Security’s Microsoft Teams protection is completely automatic. Following one-click integration through Office 365 APIs, the Abnormal Cloud Email Security Platform runs Teams detection in the background and surfaces suspicious messages as they appear. Security analysts receive alerts and can instantly investigate and remediate as needed.

Abnormal Security integrates with Okta’s Identity Cloud via API’s in minutes. Once connected, the Abnormal Cloud Email Security Platform monitors for suspicious sign-in failures, leading to faster detection of account compromises. Security analysts can opt to receive alerts for investigation or automatically initiate remediation procedures.

Microsoft Teams protection and Okta integration are available immediately in the Abnormal Cloud Email Security Platform. For more information and to schedule a demo, please visit https://abnormalsecurity.com/integrations/.               

About Abnormal Security

The Abnormal Security Cloud Email Security Platform protects enterprises from targeted email attacks. Powered by Abnormal Behavior Technology (ABX), the platform combines the Abnormal Identity Model, the Abnormal Relationship Graph and Abnormal Content Analysis to stop attacks that lead to account takeover, financial damage and organizational mistrust. Through one-click, API-based Office 365 and G Suite integration, Abnormal sets up in minutes, requires no configuration and does not impact email flow. Backed by Greylock Partners, Abnormal Security is based in San Francisco, CA.www.abnormalsecurity.com

 

 

Recommended Reading:

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
7 Tips for Choosing Security Metrics That Matter
Ericka Chickowski, Contributing Writer,  10/19/2020
IoT Vulnerability Disclosure Platform Launched
Dark Reading Staff 10/19/2020
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
Special Report: Computing's New Normal
This special report examines how IT security organizations have adapted to the "new normal" of computing and what the long-term effects will be. Read it and get a unique set of perspectives on issues ranging from new threats & vulnerabilities as a result of remote working to how enterprise security strategy will be affected long term.
Flash Poll
How IT Security Organizations are Attacking the Cybersecurity Problem
How IT Security Organizations are Attacking the Cybersecurity Problem
The COVID-19 pandemic turned the world -- and enterprise computing -- on end. Here's a look at how cybersecurity teams are retrenching their defense strategies, rebuilding their teams, and selecting new technologies to stop the oncoming rise of online attacks.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2020-27673
PUBLISHED: 2020-10-22
An issue was discovered in the Linux kernel through 5.9.1, as used with Xen through 4.14.x. Guest OS users can cause a denial of service (host OS hang) via a high rate of events to dom0, aka CID-e99502f76271.
CVE-2020-27674
PUBLISHED: 2020-10-22
An issue was discovered in Xen through 4.14.x allowing x86 PV guest OS users to gain guest OS privileges by modifying kernel memory contents, because invalidation of TLB entries is mishandled during use of an INVLPG-like attack technique.
CVE-2020-27675
PUBLISHED: 2020-10-22
An issue was discovered in the Linux kernel through 5.9.1, as used with Xen through 4.14.x. drivers/xen/events/events_base.c allows event-channel removal during the event-handling loop (a race condition). This can cause a use-after-free or NULL pointer dereference, as demonstrated by a dom0 crash vi...
CVE-2020-3996
PUBLISHED: 2020-10-22
Velero (prior to 1.4.3 and 1.5.2) in some instances doesn’t properly manage volume identifiers which may result in information leakage to unauthorized users.
CVE-2020-15680
PUBLISHED: 2020-10-22
If a valid external protocol handler was referenced in an image tag, the resulting broken image size could be distinguished from a broken image size of a non-existent protocol handler. This allowed an attacker to successfully probe whether an external protocol handler was registered. This vulnerabil...