ExchangeDefender Phishing Firewall is designed to be the last line of defense, to provide additional information about the link user clicked on, and to give them a chance to review the link that was in their email. It enables organizations to setup phishing and web access policies and provide additional guidance and real-time intelligence that can help minimize the possibility that a dangerous link was clicked on accidentally.
How does it work?
Hackers rely on phishing to target busy and distracted office workers that will click on a link without questioning whether it’s legitimate or a scam. By the time the userclicks, it’s too late to protect them – browser is redirected and malware gets deployed (or worse).
Spear Phishing is a problem that ExchangeDefender Phishing Firewall eliminates by rewriting inbound email links and redirecting the browser through it’s security center. We scan every single link in the HTML email and rewrite the hyperlink reference (so www.amazon.com in the message will still show up as www.amazon.com, but when the client clicks on the link they will be redirected to our Security Center.
ExchangeDefender Phishing Firewall will evaluate the link, who it was sent to, and who it was sent from and will apply proper organizational and user policies. If the link is safe, the user will automatically be redirected to the target web site transparently.
If the web site is not safe, or we do not have enough information about it, or it was flagged as dangerous by our proprietary lists, blocked by domain admin or service provider, users will be shown the link with the additional information.
ExchangeDefender Phishing Firewall has significantly more resources to process and scan ahead any link that users click on (that is difficult, resource intensive, and clunky to provide during the process of email scanning) and we can present additional information about the web site to help the user determine if it is a legitimate web site.
The goal of ExchangeDefender Phishing Firewall is to inform the user, secure them, and eliminate “accidental” clicks on dangerous content. For most sites we can provide information about the SSL certificates, registration, ownership, location of the server, mail tracking information, and more.
If the site is safe, the user will never see the security center and will automatically be redirected. If additional consideration is required, ExchangeDefender will provide as much information as possible and give the user full control over whether to proceed or not.
Personalization & Productivity
ExchangeDefender Phishing Firewall is tied into the ExchangeDefender Security Center, ExchangeDefender Admin control panels, and organizational phishing policies – and you can train ExchangeDefender to help you be more productive.
If you’re frequently seeing the ExchangeDefender Security Center info screen, you can authenticate with your ExchangeDefender credentials and whitelist or blacklist the web site so that you don’t have to think about it the next time the same web site comes up. Organizations can designate administrators that can review statistics, provide custom rules for whitelist/blacklist enforcement, and further lock down the experience or make it as unobtrusive as possible by only showing the Security Center if the site is blocked by corporate policy.
Everything is centrally managed through ExchangeDefender Admin site at https://admin.exchangedefender.com . For the sake of convenience and productivity, users can whitelist or blacklist web sites on the fly just by clicking on the button and their choices are saved and enforced in the future.