Welcome!

News Feed Item

New Mimecast Service Disarms Spear Phishing Threat

Mimecast, a leading cloud email security provider, has announced Targeted Threat Protection, a new service to protect enterprises from the growing risk they face from spear phishing. These are targeted attacks using embedded malicious URLs or links in email that appear to come from a ‘trusted’ or known individual that then compromise an organization’s security when clicked. Mimecast Targeted Threat Protection scans all URLs in inbound email every time they are clicked by the end-user to ensure the linked site is clean and risk free. If the user attempts to visit an ‘at risk’ site, they are warned or automatically barred from viewing it. This protection will be provided on all devices used for their enterprise email account including smartphones and tablets whether they are provided directly by the employer or not. Mimecast Targeted Threat Protection will be available in July.

This new service is easy to manage for IT and security teams, as it’s controlled from a single Administration Console alongside other Mimecast services. They also get full logging and visibility of blocked links and sites to assist them with ongoing threat management, reporting and any end-user education designed to reduce future risky online behavior.

Orlando Scott-Cowley, Director of Technology Marketing, Mimecast commented: “Spear phishing is a new frontline in the battle to protect enterprise systems and data. Mimecast Targeted Threat Protection stops spear phishing in its tracks. The threats to an end-users’ inbox are constantly changing and have moved far beyond the daily barrage of spam and virus content on their work desktop. We have to protect their work and personal desktop, laptop, tablet and smartphone as today each device is used for enterprise email. IT teams know their end-users are one of their weakest security links and can be specifically targeted to get access to critical systems and valuable corporate data.”

He continued: “IT teams work hard to block the majority of external attacks at the email gateway, but an innocent click on a link to an infected webpage can undermine all this work. Even those with traditional web scanning in place may not be safe if the link is accessed from a mobile or personal device. Our service protects end-users on all devices and every time they click a link in email, because you never know if today’s safe site is still safe tomorrow.”

Security scanning or gateway services like Mimecast have made it hard for traditional spam or phishing attacks to target enterprises. As a result, determined attackers are increasingly using sophisticated and targeted spear phishing emails. These emails are often created following social engineering reconnaissance that helps to make them look legitimate. Once a link in the email is clicked, it can take users to malicious webpages that trick them into giving away sensitive credentials or even exposes their systems to malware.

Spear phishing attacks are designed to defeat even the most sophisticated security defenses. These attacks can pass through existing security gateways as the emails and embedded URLs are initially inactive and therefore clean when scanned. Phishing web content is activated later when the attacker knows all gateways have passed the email and link. Several major data breaches and hacking attacks have been initiated through the use of spear phishing or targeted email attacks of this kind.

How Mimecast Targeted Threat Protection works

  • Mimecast rewrites URLs for all inbound emails – when the end-user receives an external email containing a URL, Mimecast rewrites the link at the gateway so when it is clicked, they are directed to the Mimecast cloud where the original link is checked for risks before being opened. If the link is safe, they won’t even notice the check has happened as the site will appear to open as normal.
  • Links are scanned every time they are clicked to ensure they are safe – a check is done every time a link is clicked on, not just the first time. This is done for all links in every email whether the sender is ‘known’ or not. Wholesale protection of this kind is more safe and effective than attempting to detect a single phishing email and recognizes that links can start safe but be compromised at a later date.
  • Links are safe on any device used to access them – Targeted Threat Protection provides the same protection whether the end-user is accessing a link in their enterprise email from their work or personal mobile or desktop device.

Benefits of Mimecast Targeted Threat Protection

For end-users:

  • Peace of mind knowing all links clicked on in email are protected – every email is scanned and every link is protected. If they do click on something malicious they know their data and systems are protected.
  • No interruption to how they work - they will hardly notice the scanning if the link is safe. The site will open as normal in the browser.
  • Automatic blocking, and clear warnings and guidance if a malicious link is clicked– Mimecast will block any bad site and let them know, giving them options on what to do next based on their security profile set by the IT team.

For IT Teams:

  • Simple and comprehensive protection against spear phishing for all end-users without the need for additional infrastructure or staffing on-premise – this is a simple-to-activate service integrated into Mimecast’s extensive cloud email security portfolio. No additional equipment or resources are needed on-premise to manage this service.
  • Central administration and visibility for all email security issues from a single Mimecast Administration Console covering all services including Targeted Threat Protection – administrators can also set different policies by end-user based on their security profile, e.g. block outright any at risk site or offer a warning page to alert more informed users.

About Mimecast

Mimecast (www.mimecast.com) delivers cloud-based email management for Microsoft Exchange and Microsoft Office 365, including archiving, continuity and security. By unifying disparate and fragmented email environments into one holistic solution that is always available from the cloud, Mimecast minimizes risk and reduces cost and complexity, while providing total end-to-end control of email. Founded in the United Kingdom in 2003, Mimecast serves more than 8,000 customers and 2 million users worldwide and has offices in Europe, North America, Africa and Australia.

Mimecast social media resources

More Stories By Business Wire

Copyright © 2009 Business Wire. All rights reserved. Republication or redistribution of Business Wire content is expressly prohibited without the prior written consent of Business Wire. Business Wire shall not be liable for any errors or delays in the content, or for any actions taken in reliance thereon.

Latest Stories
Why do your mobile transformations need to happen today? Mobile is the strategy that enterprise transformation centers on to drive customer engagement. In his general session at @ThingsExpo, Roger Woods, Director, Mobile Product & Strategy – Adobe Marketing Cloud, covered key IoT and mobile trends that are forcing mobile transformation, key components of a solid mobile strategy and explored how brands are effectively driving mobile change throughout the enterprise.
After more than five years of DevOps, definitions are evolving, boundaries are expanding, ‘unicorns’ are no longer rare, enterprises are on board, and pundits are moving on. Can we now look at an evolution of DevOps? Should we? Is the foundation of DevOps ‘done’, or is there still too much left to do? What is mature, and what is still missing? What does the next 5 years of DevOps look like? In this Power Panel at DevOps Summit, moderated by DevOps Summit Conference Chair Andi Mann, panelists l...
My team embarked on building a data lake for our sales and marketing data to better understand customer journeys. This required building a hybrid data pipeline to connect our cloud CRM with the new Hadoop Data Lake. One challenge is that IT was not in a position to provide support until we proved value and marketing did not have the experience, so we embarked on the journey ourselves within the product marketing team for our line of business within Progress. In his session at @BigDataExpo, Sum...
Virtualization over the past years has become a key strategy for IT to acquire multi-tenancy, increase utilization, develop elasticity and improve security. And virtual machines (VMs) are quickly becoming a main vehicle for developing and deploying applications. The introduction of containers seems to be bringing another and perhaps overlapped solution for achieving the same above-mentioned benefits. Are a container and a virtual machine fundamentally the same or different? And how? Is one techn...
Most companies are adopting or evaluating container technology - Docker in particular - to speed up application deployment, drive down cost, ease management and make application delivery more flexible overall. As with most new architectures, this dream takes a lot of work to become a reality. Even when you do get your application componentized enough and packaged properly, there are still challenges for DevOps teams to making the shift to continuous delivery and achieving that reduction in cost ...
MongoDB Atlas leverages VPC peering for AWS, a service that allows multiple VPC networks to interact. This includes VPCs that belong to other AWS account holders. By performing cross account VPC peering, users ensure networks that host and communicate their data are secure. In his session at 20th Cloud Expo, Jay Gordon, a Developer Advocate at MongoDB, will explain how to properly architect your VPC using existing AWS tools and then peer with your MongoDB Atlas cluster. He'll discuss the secur...
Keeping pace with advancements in software delivery processes and tooling is taxing even for the most proficient organizations. Point tools, platforms, open source and the increasing adoption of private and public cloud services requires strong engineering rigor - all in the face of developer demands to use the tools of choice. As Agile has settled in as a mainstream practice, now DevOps has emerged as the next wave to improve software delivery speed and output. To make DevOps work, organization...
Without a clear strategy for cost control and an architecture designed with cloud services in mind, costs and operational performance can quickly get out of control. To avoid multiple architectural redesigns requires extensive thought and planning. Boundary (now part of BMC) launched a new public-facing multi-tenant high resolution monitoring service on Amazon AWS two years ago, facing challenges and learning best practices in the early days of the new service.
Niagara Networks exhibited at the 19th International Cloud Expo, which took place at the Santa Clara Convention Center in Santa Clara, CA, in November 2016. Niagara Networks offers the highest port-density systems, and the most complete Next-Generation Network Visibility systems including Network Packet Brokers, Bypass Switches, and Network TAPs.
SYS-CON Events announced today that MobiDev, a client-oriented software development company, will exhibit at SYS-CON's 20th International Cloud Expo®, which will take place June 6-8, 2017, at the Javits Center in New York City, NY, and the 21st International Cloud Expo®, which will take place October 31-November 2, 2017, at the Santa Clara Convention Center in Santa Clara, CA. MobiDev is a software company that develops and delivers turn-key mobile apps, websites, web services, and complex softw...
DevOps is often described as a combination of technology and culture. Without both, DevOps isn't complete. However, applying the culture to outdated technology is a recipe for disaster; as response times grow and connections between teams are delayed by technology, the culture will die. A Nutanix Enterprise Cloud has many benefits that provide the needed base for a true DevOps paradigm.
What sort of WebRTC based applications can we expect to see over the next year and beyond? One way to predict development trends is to see what sorts of applications startups are building. In his session at @ThingsExpo, Arin Sime, founder of WebRTC.ventures, will discuss the current and likely future trends in WebRTC application development based on real requests for custom applications from real customers, as well as other public sources of information,
DevOps tends to focus on the relationship between Dev and Ops, putting an emphasis on the ops and application infrastructure. But that’s changing with microservices architectures. In her session at DevOps Summit, Lori MacVittie, Evangelist for F5 Networks, will focus on how microservices are changing the underlying architectures needed to scale, secure and deliver applications based on highly distributed (micro) services and why that means an expansion into “the network” for DevOps.
In his session at Cloud Expo, Alan Winters, an entertainment executive/TV producer turned serial entrepreneur, will present a success story of an entrepreneur who has both suffered through and benefited from offshore development across multiple businesses: The smart choice, or how to select the right offshore development partner Warning signs, or how to minimize chances of making the wrong choice Collaboration, or how to establish the most effective work processes Budget control, or how to max...
Interoute has announced the integration of its Global Cloud Infrastructure platform with Rancher Labs’ container management platform, Rancher. This approach enables enterprises to accelerate their digital transformation and infrastructure investments. Matthew Finnie, Interoute CTO commented “Enterprises developing and building apps in the cloud and those on a path to Digital Transformation need Digital ICT Infrastructure that allows them to build, test and deploy faster than ever before. The int...