EMAIL ADVANCED THREAT PROTECTION
Advanced Malware And URL/Link Protection
IronShield is a cloud-based email protection module that helps defend organizations from zero-day malware and phishing websites in real-time. Using state of the art sandbox and malicious link databases, IronShield adds another layer of advanced phishing security to the IRONSCALES platform by safeguarding users from all inbound emails.
Real time email content scanning of links and attachments
Utilizes multiple best of breed sandbox and multi-AV engines
Increase detection with continuous scanning of links and attachments
Cloud native architecture
Continuous Malware Detection
IronShield’s continuous monitoring algorithm classifies emails and provides a quick verdict about which emails should be scanned.
Using a unique approach of selective scanning, orchestration & integration capabilities, IronShield promotes efficient utilization of Multi AV and sandbox resources, allowing for continuous email protection from more advanced threats.
In total, IronShield detects 2x more malicious links and attachments by incorporating intelligence from other IRONSCALES end-users and technical controls, as well as through continuous rescanning of links and attachments, even after they come back clean.
Advanced Protection Against Business Email Compromise (BEC)
Recommended business email compromise (BEC) protection such as DMARC, is not well adopted since it is very hard to implement and is only effective at email spoofing protection when dealing with a small subset of phishing threats.
Prevent email spoofing and impersonation emails, such as display name and domain look-alikes in real-time.
Reduce risk of financial loss from business email compromise (BEC) attacks.
Assist busy and unsuspecting employees at recognising and reporting phishing attempts through InMail banner alerts.
DMARC is not Enough!
The Need for Advanced Email Authentication
The email protocol was not designed with security in mind, and there is no authentication mechanism in place whatsoever.
However pseudo-authentication is now possible using ‘sender fingerprinting', an advanced machine learning based technology that can identify the true identity of a sender. This technology was designed and built to answer a simple, yet very complicated question:
Who is sending me what?
The “Who” equates to the real identity of the sender
The “What” stands for the content and the context of this communication