IronScales, a leading Israeli cybersecurity firm, has launched a new anti-spoofing email security tool that prevents impersonation attacks using company domains and branding. The new anti-spoofing email security tool, called IronShield™, is an Microsoft Outlook plugin that inspects all company emails at the mailbox level and validates the senders of emails.
The technology helps businesses block phishing emails, Business Email Compromise scams and CEO fraud by validating the identity and reputation of the senders of emails. The anti-spoofing email security tool conducts a deep analysis of all emails, using machine learning to identify anomalies in behavioral patterns by checking new emails against historical respondents for each individual employee. Any email suspected of not being genuine is immediately flagged as suspicious alerting the end user to the threat.
Employees can then report the emails to their security teams using the IronScales button in the Outlook toolbar, allowing rapid mitigation of the threat.
Customers can choose to respond to each reported message manually, or an automated phishing response is possible using the companion product IronTraps. IronTraps will be triggered when a phishing email is reported and it will be subjected to deep analysis. If the email is confirmed as malicious, its signature will be communicated to all endpoints in the organization, the SIEM and email servers and all copies of the email will be removed from the system. The enterprise-wide automatic mitigation response provides the highest level of protection for organisations from phishing attacks, reducing reliance on an organizations’ employees to be able to identify phishing emails.
The solution uses machine learning with its algorithms constantly improving over time. The system is able to learn from previous false positives so the same mistakes are not repeated.
IronScales founder and CEO said IronShield™ acts a “a personal virtual security analyst for every single employee within an organization, significantly reducing the risk of human error in identifying malicious emails.”