Summary of the current Companial partner sentiment, representing the voice of 353 individuals from approximately 290 companies across 34 countries.
Learn moreSecurity on Azure
Wednesday, December 7, 2022
Reading time: 2 minutes
Dear partner,
In this news update, we’ll talk about securing our own and customer environments. Over the last couple of years, Microsoft has implemented many measures to protect Microsoft 365 (formerly Office 365) and Azure environments from being compromised. The huge investment in security for both the cloud services and other Microsoft products has resulted in a very good track record. However, we are all aware that in many cases, the human factor (aka our employees) is the weakest link. Many of the of random attacks we hear about come back to the leaking of passwords via phishing links/sites. When we consider security measures, we take into account that we can’t guarantee human behavior. That means we must assume that passwords will be compromised as a rule. Luckily, there is a solid solution to maintain security despite this: multi-factor authentication (MFA). By requiring another ‘factor’ such as a mobile phone with an authenticator app, we can make sure that a leaked password on its own is not enough to compromise your organization.
As a Microsoft Partner, you likely have access to many customer environments. Therefore, security is probably one of the biggest risks your company faces. Microsoft took a major step forward by enforcing MFA for all administrative accounts with partner center roles, helping to increase our security and raise awareness of need for security measures.
In the last months, we have seen many attacks on these accounts, both via ransomware but also because of break-ins within Azure environments. In one example of the latter scenario, the hacker gained administrative access to a CSP Azure subscription and installed crypto-mining software within a large-scale infrastructure. With the execution of one script, they deployed an infrastructure over many regions in the world with a cost exceeding 10 thousand euros per day!
The call to action:
- Implement MFA for all your customer environments as soon as possible (for both preventing Azure attacks but also random ware)
- Implement Azure Lighthouse for all customers using Azure. Lighthouse provides you the option to monitor usage of Azure within your customer tenants. Do keep in mind that budgets are for monitoring only and will not enforce a spending limit!
We are here to support you!
Wouter Abma is responsible for IT and operations, which gives him the ability to adapt business processes quickly or change according to ever-changing world dynamics. Wouter is a strong team player, and his focus is to build a team he can rely on. His background in IT security consulting, compliance and operations management enables him to improve business flows and build exceptional IT solutions.
- Welke cyberbeveiligingsrisico’s lopen jouw klanten - 10/12/2023
- Strengthening Security: The Significance of Holding an ISO 27001 Certificate - 20/06/2023
- Security on Azure - 07/12/2022
More in the News
Companial celebrates 2nd anniversary
Since its official launch Companial, has witnessed rapid developments in both the partner landscape and technology.
Learn moreEmpowered in the press
The launch of Empowered was well received and in cooperation with MSDW a press release went out to the broader ...
Learn moreCompanial Launches Empowered – Tools and Solutions for Dynamics Partners
Companial today unveiled Empowered, a transformative set of tools and solutions, designed to empower Microsoft Dynamics 365 Business Central Partners ...
Learn moreRecognition for Microsoft’s Sales Force Automation
Microsoft has been ranked a leader in the Gartner® Magic Quadrant for Sales Force Automation Platforms 2023 for the thirteenth ...
Learn moreRecognition for Microsoft Power Platform by Forrester
The Forrester Wave assessment of Low-Code Development Platforms included 26 criteria that were identified, researched, analyzed and evaluated. The evaluation ...
Learn more