Most backup and security vendors overlook teams as an important communication channel. Employees often pass on business-critical information that also affects security. Wrong listeners can skim off information in this way.
Hornetsecurity urgently points out that many companies need better protection for Microsoft Teams data. A commissioned study highlights the often-overlooked need for Teams backup and security. The survey revealed that almost half of the users (45%) often send confidential and critical information via the platform. Internal corporate communication via chat has now become established in many companies and is therefore almost on the same level as communication via e-mail. The study was conducted by techconsult, an established German IT research and analyst firm.
Advertising
Teams also a channel to private devices
The analysis showed that 90% of respondents prefer user chats (direct messages) to group conversations (in a Teams channel). Overall, more than 41% of employees also send at least 10 user chat messages per day. Personal preferences result in an unequal distribution of communication within the platform. Just over a quarter of all messages (26%) are sent in Teams channel conversations.
Almost half (45%) of respondents also frequently share confidential and sensitive information across teams, with 51% of these frequently sending business-related documents and data. 51% of users tend to send such information from privately used devices. Only 29% of users use a work device to send restricted or confidential data.
Advertising
Subscribe to our newsletter now
Read the best news from B2B CYBER SECURITY once a month
Expand for details on your consent
It goes without saying that we handle your personal data responsibly. If we collect personal data from you, we process it in compliance with the applicable data protection regulations. Detailed information can be found in our Privacy Policy. You can unsubscribe from the newsletter at any time. You will find a corresponding link in the newsletter. After you have unsubscribed, your data will be deleted as soon as possible. Recovery is not possible. If you would like to receive the newsletter again, simply order it again. Do the same if you want to use a different email address for your newsletter. If you would like to receive the newsletter offered on the website, we need an e-mail address from you as well as information that allows us to verify that you are the owner of the e-mail address provided and that you agree to receive the newsletter. Further data is not collected or only collected on a voluntary basis. We use newsletter service providers, which are described below, to process the newsletter.
CleverReach
This website uses CleverReach to send newsletters. The provider is CleverReach GmbH & Co. KG, Schafjückenweg 2, 26180 Rastede, Germany (hereinafter “CleverReach”). CleverReach is a service that can be used to organize and analyze the sending of newsletters. The data you enter for the purpose of subscribing to the newsletter (e.g. email address) will be stored on the CleverReach servers in Germany or Ireland. Our newsletters sent with CleverReach enable us to analyze the behavior of the newsletter recipients. This can include It is analyzed how many recipients have opened the newsletter message and how often which link in the newsletter was clicked. With the help of so-called conversion tracking, it can also be analyzed whether a previously defined action (e.g. purchase of a product on this website) took place after clicking on the link in the newsletter. Further information on data analysis by CleverReach newsletter is available at: https://www.cleverreach.com/de/funktionen/reporting-und-tracking/. The data processing takes place on the basis of your consent (Art. 6 Para. 1 lit. a DSGVO). You can revoke this consent at any time by unsubscribing from the newsletter. The legality of the data processing operations that have already taken place remains unaffected by the revocation. If you do not want an analysis by CleverReach, you must unsubscribe from the newsletter. For this purpose, we provide a corresponding link in every newsletter message. The data you have stored with us for the purpose of subscribing to the newsletter will be stored by us or the newsletter service provider until you unsubscribe from the newsletter and deleted from the newsletter distribution list after you have canceled the newsletter. Data stored by us for other purposes remain unaffected. After you have been removed from the newsletter distribution list, your e-mail address may be stored by us or the newsletter service provider in a blacklist if this is necessary to prevent future mailings. The data from the blacklist is only used for this purpose and is not merged with other data. This serves both your interest and our interest in complying with the legal requirements when sending newsletters (legitimate interest within the meaning of Art. 6 Para. 1 lit. f GDPR). Storage in the blacklist is not limited in time. You may object to the storage if your interests outweigh our legitimate interest.
For more information, see the privacy policy of CleverReach at: https://www.cleverreach.com/de/datenschutz/.
Data processing
We have concluded a data processing agreement (DPA) for the use of the above-mentioned service. This is a contract mandated by data privacy laws that guarantees that they process personal data of our website visitors only based on our instructions and in compliance with the GDPR.
It's easy to make mistakes
🔎 38% send business-critical messages to public groups (Image: Hornetsecurity).
The survey also showed that 48% of all respondents sent messages through teams that they shouldn't have sent. It is noteworthy that 88% of this group had already been trained in the use of collaboration solutions. In addition to improved backup, this also highlights the need for better training on how to use Teams and the risks of sending sensitive data.
Teams backup also for user chats
More than half of respondents (56%) see employee training and awareness as the most important approach to reducing cybersecurity risks. However, with 89% of respondents more likely to use direct user chat to communicate, it's important to use a backup solution that protects all of Teams' collaborative features.
Microsoft doesn't provide robust protection for data shared across Teams. So companies must ensure that information and files exchanged via the platform are secured in a responsible manner.
About Hornetsecurity
Hornetsecurity is the leading German cloud security provider for e-mail in Europe and protects the IT infrastructure, digital communication and data of companies and organizations of all sizes. The security specialist from Hanover provides its services via 10 redundantly secured data centers around the world. The product portfolio includes all important areas of e-mail security, from spam and virus filters to legally compliant archiving and encryption, to defense against CEO fraud and ransomware. Hornetsecurity has around 200 employees at 12 locations around the world and operates with its international dealer network in more than 30 countries.
Security researchers have uncovered a sophisticated Phishing-as-a-Service (PhaaS) platform that poses a serious threat to organizations around the world. The threat actor ➡ Read more
More data security features for greater IT resilience at the storage level: Cyber security managers can pursue a proactive data security approach at the storage level with highly secure NetApp storage and thus ➡ Read more
A provider of IT security solutions introduces Quantum Protect, a post-quantum cryptography application suite for its u.trust General Purpose Hardware Security Modules (HSMs) ➡ Read more
A cybersecurity solutions provider published its research report “SUN:DOWN – Destabilizing the Grid via Orchestrated Exploitation of Solar Power Systems”, which ➡ Read more
