Today on the Rosetta Stone we’re going to show you how to check for yourself whether or not people are in fact trying to hack into your Office 365 system… stick around we’ll show you how.
Is Someone hacking my Office 365?
Welcome to the Rosetta Stone where we translate the geek speak spoken by your IT department into plain English so that you as a business person can understand what the it support people are really saying. My name is Jeremy Colwell, Founder and Managing Director of The Human IT Company here in Vancouver and today we’re talking about sign in logs for Office 365.
The reason this is important is because a lot of business owners say to themselves “I have no indication that I’m being attacked so why should I bother with the security stuff?”. And the truth is that even though you may not see that it’s happening, it’s absolutely taking place every single day, You probably just don’t know it, because it hasn’t affected you yet.
How To Check If Someone Is Hacking My Microsoft 365
Checking your own signin logs in Office 365 is really easy to do; you simply go to https://portal.azure.com and I’ll put the link for this in the comments below go to https://portal.azure.com and sign in with an administrator account for Office 365, and then scroll down to the signin logs. I’m going to share my screen here so that you can see exactly what I’m talking about.
When you sign in to Azure you can click on Entra and it will take you to your company overview; and again I’ll put a link in the comments for all of this. You scroll down to the left hand side and click on “sign-in logs”. We recommend that you change the date to show the last seven days, since it’ll give you a better idea of what’s actually happening. Next, add a filter based on status and then select failure status and what this is going to do, is this is going to show you all the failed login attempts….. it’ll show you the type of login attempt, it’ll show you where somebody was trying to sign in from, it’ll show you which account was being used to sign in. You can scroll to the bottom of the list click on the button that says load more and it will keep going, and going…… and going. And going. In our instance here there are literally hundreds of failed login attempts where people have been trying to hack into our Office 365 system somehow or another. Either they’re trying to go in through Webmail, or they’re trying to use an application… whatever the case might be people are definitely trying to get in.
Where Do my 365 hackers come from?
And you can see where they’re coming from; this is Korea, this is China, this is India, this is… what’s this one? Bondag, that’s Korea… I don’t know what this is… ok…. this is Iran. So it happens from all over the world. It’s really quite a geography lesson to see where it’s happening. It does give you a sense that there’s more happening that you probably know about, you just don’t see it, so you don’t think it’s a problem.
So there you have it an easy way to see for yourself if somebody’s trying to hack into your Microsoft 365 ecosystem. If you want to know more about protecting yourself or how to stay safe online, or how to secure your Office 365 infrastructure give us a shout at 604-336-8133. Thanks for watching the Rosetta Stone, we’ll see you again soon.
Pingback: Checking If You're Being Attacked - Vancouver Cybersecurity
Comments are closed.