Protect your account and passwords
Your Microsoft 365 account gives access to your emails, documents and work tools. It must be protected like a vault.
1. A strong, unique password
Use a password manager to ensure strong, different passwords.
2. Multi-factor authentication (MFA)
Always validate MFA notifications. If a request appears without you trying to sign in, reject it immediately.
Avoid: sharing or writing down your password.
Emails, attachments and phishing
Email is the main attack vector. A single click can compromise an account.
1. Beware of urgent requests
Fraudsters use pressure and urgency.
2. Verify the sender
A name can be imitated, not an email domain.
3. Be careful with attachments
Hover over links before clicking.
Good reflex: forward suspicious messages to the IT team.
Remote work, devices and Wi‑Fi
Your devices must remain secure, up-to-date, and used in a trusted environment.
1. Lock your screen
Always lock before leaving your workstation.
2. Avoid public Wi‑Fi
Use a VPN when available.
3. Updates & antivirus
Never disable EDR protections.
4. Personal data
Do not sync professional data on personal accounts.
In case of doubt or incident, act quickly
A quick reaction can prevent a compromise or the spread of an incident.
• Stop clicking and don't respond
• Disconnect your device from the network if necessary
• Contact the IT team immediately