Microsoft rolls out Protection to kitty critical accounts

Microsoft has launched Office 365 priority protection for accounts of high-profile employees such as executive-level managers who are most often targeted by threat actors.

The new feature was added to MS defender ATP which provides enterprise accounts with email threat protection from advanced threats including business email compromise and credential phishing, as well as automated remediation of detected attacks.

ADPriority Account Protection enables an organization’s security team to provide critical accounts with custom-tailored protection measures to block targeted attacks such as phishing that could lead to severe security breaches due to their access to highly sensitive company data.

It allows prioritizing alerts and threat investigations involving an organization’s most targeted or visible executive-level users.

Priority account tags

Enterprise security teams can also identify attacks targeting critical Office 365 accounts easier and quickly switch their efforts to campaign investigations involving C-suite users.

“These Priority account tags and filters will surface throughout the product, including in alerts, Threat Explorer, Campaign Views, and reports,” Microsoft previously said last month, when the feature was still in development.

Customers are required to have Defender for Office 365 Plan 2 subscriptions to get access to this new feature, including those with Office 365 E5, Microsoft 365 E5, or Microsoft 365 E5 Security.

Priority account alert

Microsoft has also announced the general availability of Office 365 Consent Phishing, including OAuth app publisher verification and app consent policies.

Redmond is also planning to add SMTP Strict Transport Security to secure Office 365 customers’ email communication integrity and security starting next month.

Once launched,MTA-STS support will help protect users’ Exchange Online emails against email interception and downgrade or man-in-the-middle attacks.