Mimecast Email Security with Targeted Threat Protection uses multiple, sophisticated, detection engines and a diverse set of threat intelligence sources to protect email from malware, spam, phishing, and targeted cyberattacks delivered as a 100% cloud-based service.
Phishing attacks are growing at a record rate, and cybercriminals are more adept at tricking their victims. It is estimated that 46,000 new phishing sites are created every day, with the majority being online and active for only four to eight hours. Attackers often use links in emails to bring unsuspecting users to these phishing sites or in some cases to initiate the downloading of malicious files, such as ransomware, directly to their computer.
Email security systems that only inspect URLs during the initial delivery are easily bypassed by attackers by using a benign site that only later changes to a malicious one. Furthermore, individuals are clicking these links from many different types of endpoints, thus endpoint-based email security controls are generally ineffective in protecting organizations from URL-based email-borne attacks.
Its capabilities include:
Protection from malicious URLs on and off the enterprise network with every click, from any device.
Rewriting of URLs in inbound emails and real-time scanning on every click.
Third-party and Mimecast proprietary threat intelligence and analytics to assess the URLs.
Blocking of commonly exploited typo-squatted internet brands.
Detection of non-western character and punycode domains in URLs to protect against sophisticated domain similarity attacks.
Stripping of file attachments containing malicious URLs from inbound emails.
Real-time inspection and sandboxing of directly downloaded files in conjunction with Mimecast Attachment Protect.
Dynamic and customizable user education to help improve employees’ caution and awareness of the threat environment.
Mimecast Targeted Threat Protection – URL Protect provides comprehensive protection from malicious URLs in email, including spear-phishing and other targeted attacks, and provides integrated user awareness education to train your users.