Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Threat Intelligence

3/28/2019
04:15 PM
Connect Directly
Twitter
RSS
E-Mail
50%
50%

40% of Organizations Not Doing Enough to Protect Office 365 Data

Companies could be leaving themselves vulnerable by not using third-party data backup tools, a new report finds.

IT organizations are taking a big risk by relying on Office 365 to deliver all the backup they need, according to a new report released today by Barracuda.

Based on responses from more than 1,000 IT professionals, business executives, and backup administrators, Barracuda found that 40% of IT organizations surveyed don't use third-party backup tools to protect Office 365 data.

Greg Arnette, director of data protection platform strategy at Barracuda, points out that while Microsoft does offer a resilient SaaS infrastructure to ensure availability, it does not protect data for historical restoration for long, and its service-level agreements don't protect against user error, malicious intent, or other data-destroying activity.

"Microsoft will protect your data for an outage in a data center environment," Arnette says. "But they will not detect threats such as account takeovers and ransomware. Those kind of attacks will look like the actions of a typical end user. The backup vendors are now doing more detection using cloud-based APIs to keep track of what changes over time."

According to the study, deleted emails are not backed up on Office 365 in the traditional sense. Rather, they are kept in the recycle bin for a maximum of 93 days before they're deleted forever. For SharePoint and OneDrive, deleted information gets retained for a maximum of 14 days by Microsoft, and individuals must open a support ticket to retrieve it. SharePoint and OneDrive are unable to retrieve single items/files; they must restore an entire instance. It's unlikely that such short retention policies meet most compliance requirements.

"There's an assumption that if the data is in SaaS, it's automatically backed up, but that's not the case," says Christophe Bertrand, a senior analyst at the Enterprise Strategy Group who covers data protection. "Just because it's in the cloud doesn't mean that you don't have to back it up. You are still responsible for protecting the data, making it recoverable and archiving it, especially email."

The Barracuda study also found that while 64% of global organizations say they back up data to the cloud, a sizeable 36% still don’t. The reason for this is unclear, according to the report, although there could be latent security concerns over doing so.

“We see this as a checkpoint in time where the industry is shifting to a cloud mentality,” Arnette says.

Related Content: 

 

 

Join Dark Reading LIVE for two cybersecurity summits at Interop 2019. Learn from the industry's most knowledgeable IT security experts. Check out the Interop agenda here.

Steve Zurier has more than 30 years of journalism and publishing experience, most of the last 24 of which were spent covering networking and security technology. Steve is based in Columbia, Md. View Full Bio

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
REISEN1955
50%
50%
REISEN1955,
User Rank: Ninja
5/14/2019 | 9:23:01 AM
Re: Follow me
I still have floppy disks from ancient backups --- both 3.5 AND 5.25!!!!!   Now finding one of those drives to attach is a challenge.   May have to Ebay an IBM 5150 to read them.  Also runs Visiword.  (Now that disk had an encryption scheme for boot that nobody ever cracked).

i have a box of 8" floppy disks too but don't have an IBM S/36 5360 to run them on. 
REISEN1955
50%
50%
REISEN1955,
User Rank: Ninja
5/13/2019 | 8:45:30 AM
Re: Follow me
Email too can be a great restoration option - tons of attachments are often resident and can be accessed if needed, of course, by both user and hacker.  Que sera sera. 
StephenGiderson
50%
50%
StephenGiderson,
User Rank: Strategist
5/13/2019 | 3:29:07 AM
Follow me
Previously in school, I used to back up every single one of my assignments on more than 2 devices after saving in my email account. That is how prudent I was when it comes to safeguarding my own data. Organizations should really follow my style!
REISEN1955
0%
100%
REISEN1955,
User Rank: Ninja
3/29/2019 | 8:11:08 AM
Backups to the cloud
As primary?????   I use a cloud app for backups but with CAUTION and have local backups, 3 of them, ready to go if something like ransomware hit my system - and i don't open suspect emails OR open suspect attachments.  Ever.  My backups are set ot mirror the drive structure of primary data data and I have used this for my clients as well.  Small business - bad drive, pull and replace - takes 15 min and a screwdriver but the same apples to data center.  Have two backup protocols, not one - Murphy's Law.  It will fail when needed so have two methods and one offsite secure.  Data schedule generally daily - not weekly or random.  Putting trust in the cloud is a fools game, you are exposing data on a second tier of theft - not one but two.  
Microsoft Patches Wormable RCE Vulns in Remote Desktop Services
Kelly Sheridan, Staff Editor, Dark Reading,  8/13/2019
The Mainframe Is Seeing a Resurgence. Is Security Keeping Pace?
Ray Overby, Co-Founder & President at Key Resources, Inc.,  8/15/2019
GitHub Named in Capital One Breach Lawsuit
Dark Reading Staff 8/14/2019
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Write a Caption, Win a Starbucks Card! Click Here
Latest Comment: This comment is waiting for review by our moderators.
Current Issue
7 Threats & Disruptive Forces Changing the Face of Cybersecurity
This Dark Reading Tech Digest gives an in-depth look at the biggest emerging threats and disruptive forces that are changing the face of cybersecurity today.
Flash Poll
The State of IT Operations and Cybersecurity Operations
The State of IT Operations and Cybersecurity Operations
Your enterprise's cyber risk may depend upon the relationship between the IT team and the security team. Heres some insight on what's working and what isn't in the data center.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2019-15150
PUBLISHED: 2019-08-19
In the OAuth2 Client extension before 0.4 for MediaWiki, a CSRF vulnerability exists due to the OAuth2 state parameter not being checked in the callback function.
CVE-2017-18550
PUBLISHED: 2019-08-19
An issue was discovered in drivers/scsi/aacraid/commctrl.c in the Linux kernel before 4.13. There is potential exposure of kernel stack memory because aac_get_hba_info does not initialize the hbainfo structure.
CVE-2017-18551
PUBLISHED: 2019-08-19
An issue was discovered in drivers/i2c/i2c-core-smbus.c in the Linux kernel before 4.14.15. There is an out of bounds write in the function i2c_smbus_xfer_emulated.
CVE-2017-18552
PUBLISHED: 2019-08-19
An issue was discovered in net/rds/af_rds.c in the Linux kernel before 4.11. There is an out of bounds write and read in the function rds_recv_track_latency.
CVE-2018-20976
PUBLISHED: 2019-08-19
An issue was discovered in fs/xfs/xfs_super.c in the Linux kernel before 4.18. A use after free exists, related to xfs_fs_fill_super failure.