Phishing is at the bottom of the list of cyber attacks in terms of technological sophistication. Even more sophisticated phishing variants like spear phishing (targeted and often personalized phishing attacks) and whaling (phishing attacks targeted at high profile or high dollar value targets) are more focused on social engineering than on technology.
Yet phishing remains one of the most effective types of attacks, because it bypasses many network and endpoint protections. Training end users is helpful, as are tools for detecting and preventing phishing attacks.
Why phishing works
Phishing and its variants are ultimately social engineering attacks, intended to convince end users of the trustworthiness of the requester, the urgency of the request, or both. Reliability is established through things like official-looking emails, login pages, or even contact names that the user will recognize and trust. Phishing attempts often attempt to sway a victim’s judgment by manipulating their emotional state, making claims on already compromised accounts, or suggesting that a business or financial disaster is imminent if action is not taken. timely.
A 2019 FBI Public Service Announcement calls the Compromise Enterprise Messaging (BEC) as the source of more than $ 26 billion in losses over a three-year period. Phishing attacks frequently result in the compromise of system credentials, which can then become a significant attack vector against a range of business systems. Financial information (and even money transfers) is also the target of many phishing attacks.
The risks of phishing attacks don’t stop with your business users spitting out sensitive information. Businesses should also be aware that their customers are potentially vulnerable to phishing attacks using their brand and realize that these attacks could also result in system compromise and even damage to the corporate brand.
How to protect your business from phishing
Before implementing an anti-phishing solution, make sure that you have taken basic steps to mitigate the risk of phishing. Standard protocols for authenticating email and preventing spam and email spoofing – SPF (Sender Policy Framework), DKIM (DomainKeys Identified Mail) and DMARC (Domain-based Message Authentication, Reporting, and Conformance) – are available free of charge and relatively easy to implement. These protocols will not eliminate the threat of phishing, but they will make life more difficult for the opposition.
Requiring multi-factor authentication (MFA) can prevent many credential-based attacks. If a phishing attack obtains credentials, requiring additional authentication probably means it won’t go any further.
Cloud messaging solutions like Microsoft 365 and Google G Suite have built-in rules and policies that improve phishing prevention. They also compare your messages to the billions of others they process daily to identify malicious intent. On-premises mail servers such as Microsoft Exchange have tools to prevent malicious emails.
Finally, training is a must for both business users and customers. Phishing attempts can attempt to reach customers through social media or even SMS (smishing) messages, which you are technically unlikely to stop, making customer awareness a defense. key against phishing attacks.
Once these measures are in place, the tools and services listed below will further improve your ability to detect and stop phishing attacks.
1. BrandShield Anti-Phishing
BrandShield Anti-Phishing focuses on brand protection and business confidence. its set of tools monitors social media and other focal points to detect phishing sites or brand identity theft (even looking for your company logo) and respond to takedown requests and add those malicious sites to various anti-phishing blacklists.
2. RSA FraudAction
RSA FraudAction also detects and mitigates phishing sites masquerading as your business. RSA searches for these bogus sites, while leveraging its network of partners to identify and deactivate bogus sites through shutdown and blacklisting. RSA rates FraudAction based on the volume of attacks (purchased in installments of withdrawals).
Avanan is one of the many SaaS platforms that enhance the security of Office 365, G Suite, and others. Since Avanan is cloud-based and connects to your Office 365 or G Suite instance using APIs, it’s efficient to set up and can also protect more than email – for example, monitor configurations users and platform and even monitor changes to files in online storage. Avanan’s anti-phishing suite starts at $ 4 per month per user, which includes email filtering, account hack protection, and setup security.
4. Barracuda Sentinel
Barracuda Sentinel is another SaaS tool that integrates tightly with Office 365 (no G Suite support). Barracuda monitors incoming emails and identifies accounts that may have been compromised, correcting those accounts by detecting and removing malicious emails sent to other internal users, notifying external recipients, locking the account and even by investigating inbox rules that may have been created by the malicious user. Barracuda Sentinel is licensed on the basis of users or active mailboxes.
5. IRON LADDERS
IRON LADDERS increases the security of your existing email by combining AI-based identification and human interaction (via notifications) to quickly respond to potential attacks while simultaneously limiting false positives. Administrators also get information about the nature and extent of the threat, including the number of targeted mailboxes and the number of users who reported the email. IRONSCALES also offers emulation / simulation tools as well as user training. IRONSCALES pricing starts at $ 5 per mailbox, with flexible levels for a range of business sizes.
Mimecast offers an email security platform that includes a full range of services to protect your organization against phishing attacks, including brand protection, as well as anti-phishing protection and backup for your email services to help you maintain continuity of service in the event of a successful attack. Mimecast also offers training solutions for your end users to protect your business against any attack that may pass through your defenses. Mimecast pricing starts at $ 3 per month per user with discounts available based on volume.
7. Advanced Microsoft Office 365 Threat Protection
Office 365 Advanced Threat Protection (ATP) is the go-to email security service for a large percentage of corporate users, in large part because it is included in many Office 365 service levels. While many other solutions on this list tout their AI-based protection, none are able to provide this AI with the same amount of data that Microsoft processes on a daily basis. Office 365 ATP starts at $ 2 per month per user with an annual commitment and increases up to $ 5 per month for features involving advanced investigations, automated response, and attack simulation.
8. Protection against phishing
PhishProtection offers services spanning the full spectrum, including features and capabilities such as email protection for hosted and on-premise email, real-time integration with six trusted databases, analytics attachments and URLs (including URLs contained in attachments and shortened URLs) and phishing attempts that use domain or provider impersonation. PhishProtection even offers training and simulation for an additional fee (starting at $ 500 per year for 25 users).
9. Sophos E-mail
Sophos Email leverages both policy and AI-based detection in their SaaS platform and offers a self-service portal for users to securely manage their quarantines. Sophos can also identify users who exhibit risky behavior and assign them simulation-based training to mitigate additional risks for those users. Sophos Email has a starting cost of $ 22.50 per user per year, with volume and term discounts available.