Central Office Systems is hiring: Social Media in Waukesha
Central Office Systems - Waukesha, WI, United States, 53188
Work at Central Office Systems
Overview
- View job
Overview
OneDrive for Business May Not Be Fully Secure
Posted by centralofficesystems on March 4, 2025
Heads up: If your company uses OneDrive for Business to store critical documents in the cloud, they may not be as secure as you think.
According to security expert Brian Maloney, Microsoft is not adequately securing data on users' devices, which could pose a significant security risk if those devices become compromised. Without sufficient OneDrive for Business security, sensitive information could fall into the wrong hands, with serious consequences for your company.
What Businesses Need To Know About the OneDrive Data Vulnerability
The risks associated with Microsoft OneDrive stem from an issue with Optical Character Recognition (OCR), a tool that supports search functions. When you search files in your OneDrive account, the system automatically saves OCR data as plain text images in a database on your computer. Security experts also note that pictures saved with OneDrive are stored in an unsecured SQLite file.
Why is this an issue?
The concern is less significant when employees use company-issued hardware, which typically has multiple layers of security. Problems arise when employees access their OneDrive files on personal devices that lack the same level of protection, making those files more vulnerable to unauthorized access.
Cloud Storage Security Tips To Protect Your Business
Since Microsoft has not acknowledged this issue or explained why OCR databases are not secured, it is your responsibility to implement security measures to protect your company from data breaches. Some recommended strategies include:
- Implementing network access control (NAC) to block devices that don't meet security standards from accessing your network
- Requiring employees to use a VPN for work-related activities on personal or company devices
- Managing OneDrive access controls to restrict sensitive data to authorized personnel
- Maintaining an up-to-date protocol for patching and updating Microsoft 365 and OneDrive security features
- Enforcing two-factor authentication and strong password policies
- Disabling unused OneDrive features to reduce potential vulnerabilities
While these tips can enhance your security, they are not foolproof—especially considering the risk posed by employee devices. You should evaluate whether to allow personal devices for work and establish specific security standards accordingly.
Additionally, remind employees to remain vigilant when using their devices, as phishing and other online threats can occur outside of work hours. Continuous awareness is key to preventing security breaches.
The Southeast Wisconsin Business Owner's Guide To IT Support Services And Fees
What you should expect to pay for IT support for your small business, and how to obtain the services you need without unnecessary costs or hidden fees.
Contact
Central Office Systems Corp
- W223 N777 Saratoga Drive
Waukesha, WI 53186-6264 - Phone: 262-228-9966
- Email: info@centralofficesystems.com