Blog

The State of Email Security is Failing – How Can You Protect Your Organization?

Today’s email security is not where it should be. Several reports show that numerous threats are still getting through email, and that current email security systems and user training are not enough to protect against these threats. 

In April, SE Labs, a UK research firm, published the results of their Email Security test which shows that leading email security solutions are far from accurate, including Microsoft Office 365 Advanced Threat Protection, which scored only a 30% total accuracy rating.

In July, Email security company GreatHorn published results of their survey, showing that among 295 IT professionals, 85% of respondents saw email threats bypass email security controls and make it into the inbox; 40% saw weekly threats; and 20% had to take significant remediation action on a weekly basis.

Last month, Mimecast released the results of their quarterly Email Security Risk Assessment (ESRA) report which shows that widely used email security systems are still letting numerous threats bypass their filters, including impersonation attacks, malicious links, dangerous file types, and malware attachments.

All these findings highlight the fact that email security systems can catch many threats, but not 100%. While email continues to be the #1 attack vector for cyber criminals (Verizon Data Breach Investigations Report (DBIR) 2018), it is important that organizations deploy additional security layers on top of their email security systems to stop any threats that can pass through undetected.


How to Stop Unknown Threats Without Relying on Detection

Many email security systems rely on only one or two anti-malware engines and use sandboxing technologies to detect unknown malware threats. The problem is that these methods rely on detection. While this can be effective in many cases, cyber criminals are continually developing new ways to avoid detection, enabling them to bypass traditional defenses. 

Data sanitization, also known as Content Disarm and Reconstruction (CDR), is an advanced threat prevention technology that does not rely on detection. Instead, it assumes that all files can potentially be malicious and sanitizes and rebuilds each file ensuring safe content. The technology is highly effective for preventing known and unknown threats, including zero-day targeted attacks and threats that are equipped with any type of malware evasion.

MetaDefender Email Security utilizes data sanitization to remove any possible embedded threats in the email body and attachments, preventing unknown malware threats while leaving documents fully usable. In addition, MetaDefender Email Security scans emails and attachments with up to 30 anti-malware engines and replaces embedded hyperlinks in emails to display actual URLs, reducing the chance of a user clicking on a malicious link. By deploying MetaDefender Email Security together with your email security solution, it can function as an additional layer of defense, preventing threats that may bypass your email gateway.

To read more about how MetaDefender Email Security can complement your email security gateway, consult our email comparison guide where we compare a number of leading email security solutions, and show how MetaDefender Email Security can fill the gaps.