GRC Roll-up: Email Security for Office 365, Search Engines Becoming Major Web Security Threat

3 minute read
David Roe avatar

With Office 365 now on general release, Proofpoint offers security for its email services, LexisNexis upgrades its Concordance e-Discovery software, Blue Coat identifies search engines as one of the web’s biggest security threats, and DocuLex PDF functionality.

Secure Office 365 Email

So Office 365 has finally been released, and in the aftermath, companies start looking at how it deals with the usual problems affecting software performance. One of those concerns is security.

With this in mind, Proofpoint (news, site),which provides cloud-based email security and compliance solutions, announced availability of Proofpoint Compliance for Microsoft Office 365, a suite of cloud-based products that provide regulatory compliance support for the Office 365 email application.

With it, users of Microsoft Office 365 email will find it easier to comply with regulatory standards that require email encryption, email archiving, email security and data loss prevention (DLP).

The new bundle provides compliance for a wide range of mandates, including HIPAA/HITECH, SOX, GLBA, PCI, FERPA, FINRA and SEC regulations, as well asmeeting the stringent requirements of the Federal Information Security Management Act (FISMA) certification and accreditation process for email archiving.

It comes with Proofpoint Enterprise Archive, Proofpoint Enterprise Protection and Proofpoint Enterprise Privacy.It is available for any Office 365 cloud deployment, including shared, dedicated and those used for and by federal agencies.

LexisNexis Adds Evolution to Concordance

LexisNexis (news, site) has announced the release of Concordance Evolution, an enterprise software product for e-Discovery and litigation document management.

Evolution comes with an all-new online interface and offers virtually limitless scalability, LexisNexis says, as well as centralized user administration, native file review, integrated processing and production, concept searching and email threading.

It also enables enterprises to deploy it in a neutral software environment so it can work alongside other legacy products.

And next month, the company plans to introduce "native viewer" functionality that will allow users to view documents in their "native" state and avoid the costs associated with converting them to images.

Concordance Evolution is available with a base cost for the software and then a per-seat licensing fee.

Learning Opportunities

Search Engines Pose Security Threat

Over the week, Blue Coat Systems (news, site) released their mid-year web security report, which has a number of interesting findings, in particular one that identifies search engines as one of the key security threats facing organizations.

The threat comes in the shape of Search Engine Poisoning (SEP), by which Web pages are delivered along with a payload bursting with malware, and even with keywords that will display them as legitimate search results.

The report identifies the rising threat of malware delivery networks (MDNs) that are growing in size by swallowing up smaller MDNs.

While SEPs have been around for a long time, the report says that they have now reached epidemic proportions and are the biggest emerging threat online. Think how many times every day enterprise workers use search engines and you get some idea of the threat.

Steve Daheb, the firm's senior vice president, said web-based malware has become so dynamic that it is nearly impossible to protect every user from every new attack with traditional defenses. Check out the full report for more on this.

Doculex Adds New PDF Functionality

Meanwhile DocuLex (news, site), has announced that its WebSearch v 4.0 document management software, a component of the DocuLex Archive Studio Content Management Software Suite, can execute document search and retrieval operations for password-protected PDF files.

This new capability enables WebSearch to accept and manage encrypted PDF files and is especially valuable for organizations that are transferring and delivering files mainly via email or unsecure FTP.

Doculex describes it as an all-encompassing product that will address any PDF document and allow the system to securely handle this document per the user’s specifications.