SharePoint: Collaborate on SharePoint pages and news with co-authoring

🚨 The Signal: SharePoint pages and news now support real-time co-authoring. This increases the risk of unauthorised content modification or data exfiltration if access controls are not rigorously enforced.

The Impact

All users with edit permissions are affected, increasing the risk of accidental or malicious content modification and data loss.

• Content Owners: Increased risk of unauthorised changes to critical information.
• Security Teams: Greater challenge in auditing and attributing content modifications.
• Compliance Officers: Potential for non-compliance with data integrity requirements.
• End Users: Risk of accidental overwrites or exposure of sensitive draft content.

The Action

1. Review and enforce granular permissions on all SharePoint sites, pages, and news.
2. Implement Sensitivity Labels with appropriate encryption and access controls for sensitive content.
3. Configure SharePoint audit logging to capture all page and news modification events.
4. Educate content owners on the implications of co-authoring and best practices for secure collaboration.
5. Regularly review SharePoint site access policies and group memberships.

Domain: SharePoint · Impact: high · Workload: SharePoint