Intermedia Email Protection Gets New Anti-Phishing Features

PRESS RELEASE — Mountain View, CA –– Intermedia, a leading cloud business applications provider, today announced that six new anti-phishing features have been integrated within its Intermedia Email Protection solution to address the escalating and widespread threat of phishing attacks.

Phishing emails attempt to coerce a user into making a financial transaction, disclosing login credentials or visiting a malware-laden website. Total phishing attacks surpassed 1.2 million in 2016 – a year-over-year increase of 65 percent[1]. While 86 percent of office workers feel confident in their ability to detect phishing emails, the reality is that roughly one in five have fallen victim.[2]. With Ransomware having grown into a $1 billion business, and the prevalence of sophisticated worldwide attacks such as WannaCry[3], businesses must prepare for things to get worse, not better.

Enterprise-grade anti-phishing protection, designed for SMBs

Contrary to popular belief, SMBs are the victims of the majority (60 percent) of targeted cyberattacks[4] and are 5x more likely than larger organizations to fall victim to ransomware[5]. Because SMBs are frequently limited by technical and/or financial resources to protect their data effectively, their vulnerability makes them a prime target. Intermedia Email Protection is specifically designed to help SMBs counter the latest phishing, spear-phishing, and spoofing techniques.

“While many email security providers charge extra for these types of advanced anti-phishing features, we believe these measures should not be restricted to enterprise-sized companies,” said Alex Smith, Director of Security Products at Intermedia. “Available at no additional cost to our Exchange Email users[6], Intermedia Email Protection’s sophisticated cybersecurity features help SMBs defend against current and future threats. Paired with Intermedia’s 24/7 J.D. Power-certified support, SMBs get the enterprise-grade protection they need to avoid disruption to their business.”

New Intermedia Email Protection features include:

• Similar domain check: Spear-phishing campaign authors will typically register an email domain that looks ‘similar’ to a company’s email domain (e.g., iintermedia.net with two i’s instead of intermedia.net). Intermedia’s domain check feature uses a similarity algorithm to confirm that the sending domain is, in fact, someone from within the organization.
• User impersonation check: Spear-phishing attacks target specific employees within an organization, by impersonating someone they know – most typically the CEO or other high-profile individuals. Since many email clients prominently show the sender’s display name (instead of their actual email address), attackers will commonly change the display name in an attempt to trick the recipient. Intermedia’s impersonation check feature helps identify and eliminate this threat.
• Suspicious content check: This feature performs an email content inspection to pinpoint vocabulary and language that might indicate a spear-phishing attack. The message can then be blocked or a subject tag (such as “[POSSIBLE PHISHING ATTEMPT]”) can be added, alerting the recipient to take greater caution when reading and acting upon the message.
• Tag messages from external senders: This is a straightforward way for users to know if a message originated from outside of the organization. The word “[EXTERNAL]” can be added to all messages sent from someone outside of your company, so emails that appear to be from a colleague but contain this subject tag should be treated as suspicious. This feature is most effective when coupled with security training for your employees on how to react to these kinds of messages.
• Reply-to check: A phishing email will often contain an innocuous message like, “Hi John, are you there?” to elicit a spontaneous reply. This feature checks the “reply to” address of a message to alert readers if they are sending a response to a different address from where the email originated.

• Domain impersonation check: To help stop attackers from spoofing a company’s email domain, this feature determines if the sending domain of an external message is an exact match to a company email domain. These messages should simply be dropped unless they originated from specific, predefined sources.

Intermedia Email Protection also comes with …