I would recommend +secureworks - This will help more with this problem. If you have internal email accounts emailing other users, you may want to look into finding and destroying whatever malware/virus you have on these computers. Now, if these emails are coming from internal email accounts +Mimecast may not be able to help you. It gives the user the option to permit, release or block an email if it finds something suspect about it.
It also has easy to use tool to managed trusted senders, unblock senders and do message tracking for example. Mimecast is a great product for catching junk and keeping it out. Even if an issue were to occur, this can often help prevent part of the issue. The defaults will not be strict enough even once tightened up, things will still slip through-hence the importance placed on education.Īs a secondary note, it would be ideal to have each user using 2FA/MFA (two-factor-authentication/multi-factor-authentication) at minimum.
Their support is not outstanding, but the software is pretty straight forward, highly configurable, and the reporting is nice too.Īs others have mentioned, definitely implement any and all appropriate filters and securities built-in to the Office 365 email configuration. We have Sophos Sophos Phish Threat and it seems to be a great product. There are a variety of ways you can educate your users without spending any money-it just involves time and effort on the part of you/IT department and the other managers to train employees.Īlternatively, some products and vendors offer training for email phish and scam. As wheelsOh1 mentioned earlier, the user is pretty much always the weakest link. User education is definitely a top-tier priority in avoiding such issues. Setup also MFA for your users and take a look at this We do have other IT staff in the team looking at this but i thought i'd ask here for some help so i can give some ideas in our next team meeting.
What i have been doing is resetting Email account password and checking the logs to see what time this happened etc. We are in the process of getting Mimecast but i was looking on other solutions in the meantime. Hello, I've had a Number of Email accounts that have been hacked Via user clicking on links from their inbox on 365 then when happens a number of Users are getting an internal email from spam from a staff member saying please go to this site and click this link etc.Īnd the person/persons are unaware if this until we get an alert.