Skip to main content Microsoft Defender Microsoft Entra Microsoft Intune Microsoft Purview Microsoft Security Copilot Microsoft Sentinel View all products AI-powered cybersecurity Cloud security Data security & governance Identity & network access Privacy & risk management Security for AI Small and medium business Unified SecOps Zero Trust Pricing Services Partners Why Microsoft Security Cybersecurity awareness Customer stories Security 101 Product trials How we protect Microsoft Industry recognition Microsoft Security Insider Microsoft Digital Defense Report Security Response Center Microsoft Security Blog Microsoft Security Events Microsoft Tech Community Documentation Technical Content Library Training & certifications Compliance Program for Microsoft Cloud Microsoft Trust Center Security Engineering Portal Service Trust Portal Microsoft Secure Future Initiative Business Solutions Hub Contact Sales Start free trial Microsoft Security Azure Dynamics 365 Microsoft 365 Microsoft Teams Windows 365 Microsoft AI Azure Space Mixed reality Microsoft HoloLens Microsoft Viva Quantum computing Sustainability Education Automotive Financial services Government Healthcare Manufacturing Retail Find a partner Become a partner Partner Network Microsoft Marketplace Software companies Blog Microsoft Advertising Developer Center Documentation Events Licensing Microsoft Learn Microsoft Research View Sitemap
Best practices 1 min read

Top 10 security steps in Microsoft 365 that political campaigns can take today

By , Senior Cybersecurity Strategist, Defending Democracy Program

Tags

Content types

Topics

The increasing frequency of cyberattacks make clear that more must be done to protect key democratic institutions from cyber-enabled interference. With just a few weeks left before the U.S. midterm elections and early voting under way, campaigns must stay vigilant in protecting against cyberattacks to their online collaboration tools, including email. Microsoft recommends taking action today to protect against phishing, malware, account compromise, and other threats—see Top 10 ways to secure Office 365 and Microsoft 365 Business plans from cyberthreats. These recommendations are tailored for small to mid-sized political campaigns and election-focused stakeholders using Office 365 or Microsoft 365. Any organization—especially those without full-time IT security staff—can benefit from taking these actions.

This guidance provides step-by-step instructions for using 10 high-impact security capabilities. These actions help you implement many of the best practices recommended in the Cybersecurity Campaign Playbook, created by the Defending Digital Democracy program at Harvard Kennedy School’s Belfer Center for Science and International Affairs.

Top 10 cybersecurity recommendations:

  1. Set up two-step verification for all staff.
  2. Train campaign staff to quickly identify phishing attacks.
  3. Use dedicated accounts for administration.
  4. Raise the level of malware protection in mail.
  5. Protect against ransomware.
  6. Prevent emails auto-forwarding outside of the campaign.
  7. Increase encryption for sensitive emails.
  8. Protect your email from phishing attacks.
  9. Protect against malicious attachments in email.
  10. Protect against phishing attacks that include malicious website links in email or other files.

Read Top 10 ways to secure Office 365 and Microsoft 365 Business plans from cyberthreats for details on how to implement each action.

These recommendations are provided as part of Microsoft’s ongoing commitment to the Defending Democracy Program. Qualifying organizations using Office 365 can also take advantage of Microsoft AccountGuard for additional protection to leverage Microsoft’s state-of-the-art threat detection and notification in case of targeted nation-state cyberattacks.

Ethan Chumley

Senior Cybersecurity Strategist, Defending Democracy Program

See Ethan Chumley posts

Get started with Microsoft Security

Protect your people, data, and infrastructure with AI-powered, end-to-end security from Microsoft.

Learn how

Connect with us on social

Surface Pro Surface Laptop Surface Laptop Ultra Surface RTX Spark Dev Box Copilot for organizations Copilot for personal use Explore Microsoft products Windows 11 apps Account profile Download Center Microsoft Store support Returns Order tracking Certified Refurbished Microsoft Store Promise Flexible Payments Microsoft in education Devices for education Microsoft Teams for Education Microsoft 365 Education How to buy for your school Educator training and development Deals for students and parents AI for education
Microsoft AI Microsoft Security Dynamics 365 Microsoft 365 Microsoft Power Platform Microsoft Teams Microsoft 365 Copilot Small Business Azure Microsoft Developer Microsoft Learn Support for AI marketplace apps Microsoft Tech Community Microsoft Marketplace Software companies Visual Studio Careers About Microsoft Company news Privacy at Microsoft Investors Diversity and inclusion Accessibility Sustainability
English (United States)
Your Privacy Choices Opt-Out Icon Your Privacy Choices
Consumer Health Privacy Sitemap Contact Microsoft Privacy Manage cookies Terms of use Trademarks Safety & eco Recycling About our ads