Security Manager's Journal: Move to hosted email opens new vulnerabilities