Introducing ExchangeDefender Security Audit Logs
ExchangeDefender launches New Security Logs
I have some great news – ExchangeDefender security logs are now available for all users of ExchangeDefender. This move is a part of our larger security ambition for 2019 to introduce Enterprise features of ExchangeDefender across our lower MSP, SMB and retail tiers in order to improve service security.
One of the biggest things in 2019 is the end of the era for plain text passwords. People love them, MSPs rely on them, they are super convenient for everyone including… the hackers that are looking to break in. But more on that in a minute.
The single simplest way to stay on top of account security… is identifying break-in attempts. ExchangeDefender Enterprise logs every event, login, escalation (and so, when you as the enterprise administrator or organization owner choose to automatically login as the user for support purposes) attempt.
We’re happy to bring this feature in across both the service provider, domain and user login. Free of charge.
As the admin or service provider you also have the ability to search the account log for specific user or address that is causing problems. In the Enterprise version you have the ability to further lock things down based on IP, location, charset, and more. But if/when there is an issue, you can clearly see if the account has been compromised. At all other times, you can see login failures that are a good indication that there is a problem.
This feature, and a whole lot more, is coming down to the ExchangeDefender SMB land. While all these features were a premium in the past, the extent to which everything from your PC and the network devices that surround you are susceptible to compromise – we have to treat these features as what they are – essential to your security. As a matter of fact, we’ll be discussing this next Wednesday in our webinar:
When:
Noon, Wednesday, February 6th
Where:
https://attendee.gotowebinar.com/register/4562047862967330307
Hope to see you there.
Sincerely,
Vlad Mazek
CEO
ExchangeDefender
ExchangeDefender Introduces Friendly Display Names
Friendly Names, Finally.
You’ve only been waiting 20 years for this feature and we’re happy to finally deliver it: ExchangeDefender will now show friendly display names and email addresses, giving you a better idea of who the email sender is.
This is a slightly technical pragraph that we encourage you to skip. Every email you receive has two From: addresses. One is a “friendly from” or “header from” address that prints the name of the sender as the user configured it inside their mail software such as Outlook or Gmail. The other is an “envelope from” or “mail from / return path from” address that is used for mailer/postmaster reasons to bounce and process messages. As an email security solution, ExchangeDefender only looks at and reports envelope addressing as the friendly from can easily be spoofed and faked and generally has no impact on the underlying SPAM filtering technology, message routing, SPF/DKIM, and a myriad of other technical reasons. Two decades ago, when ExchangeDefender was first and foremost meant to be a front line defense on the edge/perimeter before allowing traffic to get to the firewall, envelope from was what I went with.
What made sense two decades ago, which is centuries in IT terms, doesn’t make sense in 2018. Today ExchangeDefender is no longer primarily an edge security service, it is prime real estate in which end users and business employees spend a considerable amount of their time managing their mail, sending documents, sending encrypted attachments, assuring compliance, collaborating, and as such the design and the content needs to show something relevant to the user (not the IT administrator power user that is likely managing things through our powerful Domain Administrator section).
Oh, and by the way, it’s also going to show up like this in our updated SPAM Reports starting in October for our ExchangeDefender Pro subscribers:
P.S. Please tune into our new feature webinar on Wednesday, October 17th, 2018 at noon EST. Lot’s of new features are coming in ExchangeDefender as we transform the product to better serve the compliance and security needs of our clients. Register Now!
Partner to Retail: Automating the Service Transfer Process
Partner to Retail Transfers
After nearly 21 years in business, we have seen just about everything, from partners dying to companies disappearing overnight. More often than not, they leave businesses they served stranded and ExchangeDefender has to pick up the pieces. As each case is different, we’ve always handled every issue delicately with great care from a dedicated employee at ExchangeDefender to handle the issue.
While that sounds nice on the surface, it’s actually a horrific mess with a point person playing coordinator, negotiator, project manager, liason, unofficial legal advisor and more often than not wasting more time than neccessary.
As a result, there is now a 3 month initiative at ExchangeDefender to streamline and automate most of our processes that involve external parties. The honor of the first such automated process is the “Transfer of Services”:
Transfer of Service
ExchangeDefender is exclusively sold through our IT Solution Partners. However, when one partner disappears (death, bankruptcy, laziness, poor customer service) we do not have the means to refer them to a new partner. Often, even if we can find someone local, partner may not have an incentive or business case to sell them ExchangeDefender if the client will not sign up for other support services that are required by our partners to deliver XD. Sometimes, clients get bought/sold, hire their own IT staff, or move to a new provider and want to keep ExchangeDefender. All of these scenarios create a massive mess for ExchangeDefender, for the client, and ultimately for the partner.
The site is designed to create a process-oriented survey that ties in all the parties involved in service delivery – the client requesting the transfer, the existing partner, and if applicable the new IT Solution Provider. This way we have the contact information about everyone, we have set milestones in the process, we have everyone moving along the project and we have deadlines so nobody is left stuck or forgotten. The same ExchangeDefender SLA for support applies to the transfer process but it makes ExchangeDefender handle it.
That is the key part and perhaps the most valuable one for our existing partners that may be worried about account transfers. From our experience, when a client decides they want to leave the service (be it ours, or our partners) there is little that will stand in their way of either moving to another ExchangeDefender partner or another service. This can be painful, awkward, and at times emotional as a loss of business can be stressful. This is where ExchangeDefender can help as well – instead of having to deal with asset control, configuration, transferring credentials and doing support and the work of the new IT Service Provider, our partner can just sign a waiver and from that point on anything regarding the old client and ExchangeDefender will be handled by our team. This way the current partner that is losing the service isn’t stuck with an uncomfortable process of dealing with a client that fired them or training their competitor how to manage the service – it’s simply all on us.
We had to do something. All our future transfers will happen through the “Partner To Retail” web site at https://exchangedefender.com/transfer
Our mantra remains the same, we are still very much a partner-channel based organization. These process automation projects are meant to give our partners and clients a more predictable, measurable, and accountable system backed by an SLA rather than a single point person. If there are processes that you’ve found frustrating, unpredictable, difficult, or frustrating please let us know by contacting your account manager and we’ll put some priority on those. Otherwise, we look forward to serving you better.
How to Market Email Security Solutions
We’ve had the opportunity to spend quite a bit of time with our top small business partners over the summer as they hold meet & greets / lunch & learns while kids are out of school and staff takes vacations. We got to see firsthand how the features and the problems are both the same as they have always been (budget, buy-in) and completely different in a way that technology solves business problems – cloud compliance, vendor/mobility management. One of the businesses that moved to ExchangeDefender was able to get rid of 7 (seven!!) different vendors involved in email & mobility solutions alone.
It’s all about the Story.
ExchangeDefender is increasingly becoming the modular security solution that can help service your mobile & security needs end to end. From email hosting to support for everything that entails, from managing mobile devices to assuring their compliance, archiving, business continuity and data management – ExchangeDefender does it all from a single pane of glass. All you have to do is change the way you tell the story.
Product vs. Service
Typically, small business partners follow the same “vendor” approach to positioning ExchangeDefender “we kill SPAM for a living” and then mention the other nice “bonus” features we offer. While that may work on larger companies with CIOs where a point solution is necessary (or required for redundancy), in small business you need more finesse as you introduce our solution as the Swiss knife for typical SMB problems. Small business decision makers typically aren’t that interested in technology specs, even if they are familiar with the problems, they are looking at the price and at the time this the solution is going to take away.
So here is what works for us:
We position ExchangeDefender as a service (not even mentioning the cloud) that takes care of keeping junk out of the mailbox, keeping people productive and safe, making sure any outages have a workaround and as needed we also do encryption to protect data automatically and compliance archiving to help meet regulatory requirements and keep fines away – and we build, manage and support 100% of it end to end. In a way, we’re the last security product you need to look at and the only one you need to contact when there is a problem.
Give it a shot – this is fully compliant with the Elevator Pitch™ guerrilla marketing and truly disarms the most common objection in SMB which is “we already have something” – everyone has something, they just don’t know where it is, who does it, how it’s used and what it does – and that’s the biggest selling point of ExchangeDefender. You don’t have a dozen vendors for email, mobile, security, archiving, compliance, encryption, DDoS protection, business continuity, mobile device wipes, etc, etc you get the picture. Instead of going in and trying to sell yourself, you’re going in and looking at ways to save them money “Well, you won’t need to renew this product, or this service, your old firewall won’t have to be upgraded, you now get all the additional features, etc”
In a way, our go to market has been the same as it’s always been – but with the cloud you’re dealing with small businesses with data all over the place and providing security to a mobile organization with decentralized storage is no longer a “security” pitch, it’s a management pitch that gives them back their time.