Email Security Assessment
Cymulate’s email solution helps you to test your corporate email security.
Email is the most frequently used method of attack for exploiting security weaknesses and compromising corporate environments. Research shows that over 75% of cyberattacks worldwide originate from a malicious email, and the number of those targeted attacks keep increasing. As we have seen in the past, both very high-profile cyber campaigns as well as less known ones, are launched with an email containing a malicious attachment or link for infecting the victims with ransomware or opening a direct connection with the Command & Control (C&C) servers of the hackers.
For example, a recurring DHL phishing template is making the rounds, which is sent almost on a monthly basis for the past year spreading different payloads such as Tesla, Panda, etc. One recent example of this method used a DHL themed shipment invoice sent by email notifying its victim that there is a new shipment waiting for him / her. In order to print out the package details, the victim is required to click on a link within the email’s body. That link is actually hiding a malicious Doc file containing a link to the attacker’s C&C. After clicking on that link, a destructive malware is sent from the attacker’s C&C to the victim’s endpoint, thus compromising it, and in some cases even compromising the whole organization.
Major companies, government agencies, and political organizations have been (and will be) the target of such attacks. The more sensitive the information that an organization handles are, the higher the chance of becoming a target. Furthermore, this attack method is also used for direct attacks on specific organizations and even for sporadic global attacks trying to reach as many unaware trusting souls as possible.
Organizations utilize different security controls based on email filters such as SEGs, Sandbox, CDR and others, which are supposed to protect the organization. However, their improper configuration or implementation can lead to the false assumption that the organization is safe.
Cymulate’s email assessment is designed to evaluate your organization’s email security and potential exposure to a number of malicious payloads sent by email. The assessment exposes critical vulnerabilities within the email security framework. By sending such emails containing e.g., ransomwares, worms, Trojans, or links to malicious websites, the assessment shows if these emails could bypass your organizations’ first line of defense and reach your employees. Following such assessment, the next step would be to test the employees’ security awareness regarding receiving socially engineered emails that try to lure the employees into opening malicious attachments, disclosing their credentials or clicking on malicious links (See Phishing Assessment).
The assessment results are presented in an easy-to-understand comprehensive report. Mitigation recommendations are offered for each threat that has been discovered depending on the type of attack and phase it reached in its distribution method. This allows the organization to truly understand its security posture and take action to update and upgrade where necessary.