Office - 365 Playbook


CEO Scam or Business Email Compromise (BEC) has been around for many years and there has always been an impression that email spam is well-controlled. However, phishing and BEC attacks require special attention as an increasing number of organizations move their email service to software as a service (SaaS) platforms like Microsoft Office 365 (O365) or Google G Suite. BEC scams are initiated through phishing kits designed specifically to mimic cloud-based email services in order to collect credentials from victims.

This Incident Response (IR) Playbook addresses IR issues on the fast-expanding usage of O365 SaaS application. Blackpanda prepared this playbook based on our experience in handling these kinds of incidents in order to help end-users or system and security administrators take the necessary mitigating actions when phishing emails or suspicious BEC activities are found.

Copyright © 2021 Blackpanda.
All Rights Reserved.


Room 33 

Entrepreneurship Center

IT Street, Level 3, Cyberport 3

100 Cyberport Rd

Hong Kong


D1-U3A-6 Solaris Dutamas

Jalan Dutamas 1

50480 Kuala Lumpur


6 Raffles Quay
Singapore (048580)


301, 2-7-18

Nishiazabu Minato-ku

Tokyo 106-0031


Penthouse, World Plaza Bldg.

5th Ave., Bonifacio Global City

Taguig City 1634

  • LinkedIn
  • Facebook