Knowledge base

December 17, 2024

Microsoft 365: 3 indispensable security actions

 

Microsoft 365 is a powerful solution, but securing your environment is crucial. Here are the top 3 essential security actions you can implement immediately to protect your data and accounts.

The principle of BYOD (Bring Your Own Device).

1️⃣ 🔑 Multi-Factor Authentication (MFA) with Conditional Access.

What does it entail?
An additional layer of security with a second verification step¹, such as:

  • Mobile app (e.g., Microsoft Authenticator)
  • SMS message

Conditional Access limited access based on:

  • Location
  • Device type

🎯 Why important?

  • Protects against hackers even with stolen passwords.
  • Blocks risky logins with smart access rules.

👉 Impact for users:
Users must register for MFA and install the Microsoft Authenticator app on their mobile device, for example.

 

 

2️⃣ 🚫 Block legacy authentication

What does it entail?
Disable old authentication methods and protocols that are vulnerable to attacks², such as:

  • Email clients prior to 2016 (e.g., Outlook 2010 or 2013)
  • Old scanners or MFP devices

🎯 Why Important:
Legacy authentication does not support modern security standards such as MFA and makes your organization vulnerable. 👉 Impact to users:
Some older apps and devices may no longer work. Time to upgrade to modern solutions!

 

 

3️⃣ 📧 Limit logins on shared mailboxes

What does it entail?
Avoid direct logins to shared mailboxes, as they often:

  • Having bad passwords
  • Not supporting an MFA

🎯 Why Important
Shared mailboxes³ are a popular target for cyberattacks. By giving users access as “delegates,” you significantly reduce the risks. 👉 Impact for users:
Users can no longer log in directly, but work through their delegated permissions.

 

 

🚀 Conclusion: straight to work!

By implementing these top 3 essential security actions, you will make your Microsoft 365 environment much more secure. Smaller steps can make a big difference against modern cyber threats. 🔒

Secure your organization today and take proactive measures! Need help implementing, feel free to contact us.

 

¹https://learn.microsoft.com/nl-nl/entra/identity/authentication/concept-mfa-howitworks ²https://learn.microsoft.com/nl-nl/entra/identity/conditional-access/policy-block-legacy-authentication ³https://learn.microsoft.com/microsoft-365/admin/email/create-a-shared-mailbox

 

 

About the author

My name is Alta Martes, a specialist in Microsoft 365 and Google Workspace, with a focus on modern workplace management, cloud security and identity & access management. With years of experience, I help organizations optimize their IT infrastructure and create a secure, efficient digital workplace. 🎯 Need help with your Microsoft 365 strategy?
Click below and find out how we can support your organization:

Schedule a no-obligation consultation

Want to know more?

Get in touch
Microsoft 365 top 3 beveiligingsacties

Related
blogs

Microsoft Purview classificaties en vertrouwelijkheidslabels
January 13, 2025

Secure your Data with Microsoft Purview: Classifications and confidentiality labels

Read more
Verhuizen naar SharePoint
January 11, 2025

Moving to SharePoint: Simple and Efficient

Read more
Microsoft Teams Live Chat
January 10, 2025

Microsoft Teams launches Live Chat for small businesses

Read more
Conditional Access (Voorwaardelijk toegang)
January 09, 2025

Conditional Access in Microsoft Entra ID: The Key to Modern Security

Read more
AWS en Azure
January 08, 2025

AWS vs Azure: Who offers the best security? 🔒

Read more

Tech Updates: Microsoft 365, Azure, Cybersecurity & AI – Wekelijks in je Mailbox.