sb-eu logo
Story image

Slack tackles balance between productivity and security

12 Aug 2019

Slack is on a mission to balance productivity and security as the global workforce moves towards flexible working that must be kept secure.

Slack’s new configurable security features allow IT administrators to ensure that only authorised people and devices can access Slack. The new features also include more options to protect data without interrupting employees’ requirements to get work done.

IT admins can also keep up with the market’s move towards specific mobile application management, rather than EMM and MDM.

The end result is that employees can work in a more flexible and product environment, with drastically reduced disruption from IT issues.

ESET cybersecurity specialist Jake Moore says the move illustrates a fundamental market shift.

 “This really shows that security is slowly becoming important to the normal user. Much of the infosecurity industry is led by what the people want rather than delivering what the industry thinks the consumer needs,” says Moore.
 
“With Slack making great steps forward, adding more prominent security functions, it will hopefully make people more aware of the importance of authentication and other protection techniques. It might even push other manufacturers into rolling out similar features as default.”

Slack notes that the following features are available now:

  • Secondary authentication controls on mobile - Available immediately, admins can now require an additional layer of security after logging in, via Face ID, Touch ID, or generated passwords.
  • Domain whitelisting tools - Available now, this allows admins to define which workspaces can be accessed within a corporate network, to ensure sensitive information isn't shared to non-managed workspaces.
  • Block file downloads and message copy for mobile - Admins can restrict downloading sensitive files or copying messages onto mobile devices no managed by an EMM provider.

Available in the coming weeks

  • Session management tools - Admins can remotely wipe mobile or desktop sessions associated with a specific user in case a device is ever lost or stolen.

Available later this year

  • Default browser control - Admins can require all links from Slack to open in Blackberry or other browsers managed within a MAM container.
  • Jailbroken device detection - Admins can detect if a device is jailbroken and block access if so.
  • Force app upgrade - Admins can ensure employees are using the latest version of the Slack app so they can access new features and security updates.

From early next year, Slack will also include the ability to block file downloads on desktops accessing slack from non-approved IPs.

Story image
Kaspersky releases new report on consumer’s approach to digital services
COVID-19 related restrictions and the necessity to stay indoors has influenced the way people approach digital services, making them more aware of how securely both they, and their housemates, use the internet.More
Story image
Ripple20 threat has potential for 'vast exploitation', ExtraHop researchers find
One in three IT environments are vulnerable to a cyber threat known as Ripple20. This is according to a new report from ExtraHop, a cloud-native network detection and response solutions provider. More
Story image
Spending on managed security services in A/NZ to grow despite COVID headwinds
COVID-19 has changed security priorities significantly, and managed security services in A/NZ are set to benefit. More
Story image
Radware issues security alert, warning of global rise of DDoS-for-hire
Efforts from corporations, law enforcement and independent researchers around the world have attempted in the last two years to curb this growth – but the industry keeps growing says Radware information security researcher Daniel Smith.More
Story image
Metallic adds data management and GDPR compliance
Now GDPR compliant, additions to the portfolio include eDiscovery features and support for Microsoft Hyper-V and Azure Blob and File storage.More
Story image
OT networks warned of vulnerabilities in CodeMeter software
Manufacturers using the Wibu-Systems CodeMeter third-party licence management solution are being urged to remain vigilant and to urgently update the solution to CodeMeter version 7.10.More