Email Phishing: Protecting Your Organization

June 3, 2020

Explore other posts on these topics:

Email phishing is the most common cybersecurity attack leading to breaches, according to the 2019 Data Breach Investigations Report from Verizon. It’s pervasive and does not discriminate. Organizations, small and large, must be vigilant. And while user training and awareness are integral parts to reducing email phishing incidents, having a best-in-class email protection solution is critical.

The State of Email Phishing

While cybercriminals are continually changing phishing tactics to lure more victims, we’re doing all we can to help administrators and users deflect and prevent these attacks. As they become more sophisticated, so must the tools and practices to detect them. Ensuring awareness of cybersecurity for your staff is just as important as the defensive approaches you take to reduce the number of phishing emails that actually make it into your network. So, what does optimal email protection look like? And how easy it is to implement?

Security Technology and Security Awareness Protect Your Business

A recent video with Ryan Barrett, CSO of Intermedia, highlights how Intermedia approaches security as a partnership between Intermedia and our customers and the role of security technology. Advanced email protection expands the protection of your email service and helps users identify and avoid potential phishing and malware threats.

The advanced email protection solution includes:

  • Policy-based spam and malware blocking allow administrators to create flexible policies and use granular filtering from a simple security control panel.
  • Anti-phishing and anti-spoofing protection that weeds out external threats, including impersonating trusted internal or known external senders.
  • Malicious link protection that detects and neutralizes suspicious links when they arrive (LinkSafe™ point of click protection), and also defends against links that are designed to pass initial inspection and become threats later on (LinkSafe realtime URL scanning)
  • Outbound scanning to protect against spreading malware, malicious links and spam
  • Marketing (graymail) management to flag potential spam and prioritize inbound messages

Our solution is easy to configure. We take care of the state-of-the-art backend, while you simply use your control panel to turn on the security policies you want.

Layered Approach  meets the Need for Accuracy

The Intermedia email protection strategy was driven by the desire to provide the highest possible accuracy. Accuracy means the proper classification of what emails should be hitting your inbox and those that should be quarantined.

Alex Smith, Security Product Manager and email protection expert, shared Intermedia’s approach to email phishing prevention. “Our email protection solution is a layered approach that uses best-of-breed engines to detect potentially dangerous emails,” Alex said.

The key difference in our email protection service is that we use multiple engines that have different detection approaches. This mixing and matching enables more accurate and reliable results. You can think of it as each engine checking the work of others. This “group” evaluation delivers a unified score on the email’s validity with near-zero false positives. “With defensive layering, we have high levels of confidence in classification. That’s the advantage of multi-engine approaches, and we also have the ability to bring in new engines as new approaches become promising. ” Alex added.

These advanced email protection capabilities are available with Intermedia Hosted Exchange Email as well as with Office 365 plans from Intermedia. It’s a valuable add-on that fortifies your defense against email phishing.

Protecting Your Users: An Email Security Checklist

We’re here to help you safeguard your network from email phishing. Here are nine easy ways to do so, featured in our Phishing Guide.

  1. Be cautious of emails that stress high urgency and quick action — these tactics are often used in phishing to prompt a response.
  2. Never provide financial or personal information via email.
  3. Look for misspellings and bad formatting as a sign of impersonation.
  4. If the offer seems too good to be true, it probably is.
  5. If you did not prompt the action (i.e., password reset, signing up for a trial of a product), then it’s probably a spoof.
  6. Be careful about what you post and its visibility on social media, as this is a source of information for cybercriminals.
  7. Stay up to date on the latest tactics used by hackers – tactics are always changing- .
  8. Don’t send or store passwords in email.
  9. Act quickly to notify your IT department if you click on a possible phishing link.

The Intermedia Security Tool Kit: Resources for You

To help you better understand security and email protection, we’ve developed the Intermedia Security Tool Kit. In our Security Tool Kit, you can find valuable information, including how-to videos that demonstrate which settings to turn on for email protection. You’ll also find an email to send to your users that tells them about email protection best practices. These resources will help you protect your business.

Craig Woods

Craig Woods is the Director of Product Marketing at Intermedia.

June 3, 2020

Explore other posts on these topics: