Eradicating Email Entry

Email is still the most used attack vector for opportunistic and targeted attacks and is typically the starting point for social engineering attacks, the delivery vehicle for a dropper or payload attachment, or the link to an exploit kit or phishing website, according to research firm Gartner. Email threats have become sophisticated to evade detection by technologies that rely only on standard antivirus and reputation.

Gartner said email threats are also being blended, combining social engineering, identity deception, phishing sites, malware and exploits. Technology innovations should be complemented by investments in security awareness training, Gartner said, especially to combat email threats that don’t contain an attachment or a URL.

As part of Cybersecurity Week 2020, CRN spoke with eight cybersecurity vendors and one solution provider about what to look for when selecting an email security service. From detecting snowshoe spam and compromised cloud accounts to providing simulated phishing attacks, sentiment analysis and oversight of east-west traffic, here are 10 things companies benefit most from in an email security service.