Enterprise cloud adoption has led to a dramatic increase in successful phishing attacks. This is because, in cloud environments, hackers only need one employee’s credentials in order to gain access to the entire corporate environment.
Cloud email providers such as Microsoft’s Office 365 and Google’s G Suite are constantly trying improve their default security offerings to combat these attacks. Unfortunately, hackers also have access to these services and reverse engineer methods to bypass the restrictions.
Avanan implements the traditional email security layers of SPF, DKIM and DMARC checks, as well as URL filtering by leveraging three major data sources for URL blacklists. But these methods are generally already implemented by the default security and only catch about 15% of phishing attacks at the time the email is received. Most phishing attacks that bypass the default security are true zero-day and come from legitimate senders.
In order to catch more advanced attacks, Avanan developed a unique machine learning algorithm that analyzes 300 indicators in each email by looking at each email component: headers, subject and body, links and the content those point to, etc. The API-based integration also allows Avanan to analyze all historical emails to determine the prior trust relations between the sender and receiver.
By combining traditional analysis capabilities from multiple best-of-breed vendors with a proprietary machine learning algorithm that looks at all aspects of the email, Avanan is built to catch the things Office 365 and Gmail miss.
"Is Avanan a CASB?" After joining a recent CASB panel with the Cloud Security Alliance I found myself answering this question over and over again. The answer depends upon whether...
Avanan has been catching multiple attacks against its customers using a new phishing method called Mailsploit. We have observed this attack on both Office 365 and Gmail customers. ...