Proofpoint, the Californian cybersecurity company, has launched a new Closed-Loop Email Analysis and Response (CLEAR) solution. Proofpoint’s website states that the solution reduces “threat triage time from days to minutes without requiring additional work from human analysts”.
Proofpoint CLEAR utilises a complete closed-loop approach to automatically analyse suspicious emails reported by end users to security teams, identify real threats from false positives, and help security teams remediate threats. It first joint solution developed by Proofpoint and Wombat Security Technologies since the anti-phishing vendor was acquired in early 2018.
“Email fraud and phishing have cost organisations billions of dollars—and our new CLEAR solution empowers end users to stop active attacks with just one click,” said Joe Ferrara, general manager of the Wombat Security product division of Proofpoint. “Cybersecurity is a company-wide initiative, and a cybersecurity-savvy workforce is the last line of defence against targeted phishing attempts when attackers get past the perimeter. Proofpoint CLEAR boosts the visibility of phishing campaigns and automatically processes employee-reported malicious messages, underscoring the positive and direct impact that informed employees could have on improving the security posture of an organisation.”
Even with the most advanced spam filters, the end user’s inbox still receives malicious emails sent from cybercriminals. The onus is then on the end user to recognise suspicious emails and respond appropriately. Companies must provide security awareness training to employees to help them recognise and report email threats to their security teams.
Employees often over-cautious and send harmless emails to the IT security teams along with the dangerous ones. The IT teams are required to sort through all emails reported to them, and finding the real threats among the false positives takes up valuable time and resources. Increasingly, organisations are looking to technological solutions that can automate time-consuming tasks such as phishing threat identification and mitigation to relieve the pressure on IT teams. According to Proofpoint, the CLEAR system reduces the time from reporting threats to remediation from days to minutes.
Employees using Proofpoint CLEAR can use the PhishAlarm email add-on to report emails to their security teams with a single click rather than having to manually forward messages. This ease at which employees can report suspicious emails means that they are more likely to do so, reducing the risk that a threat will go unnoticed.
The solution incorporates Proofpoint’s leading threat intelligence alongside multiple intelligence and reputation systems, which are used to assess the reported emails automatically. The solution removes emails sent from whitelisted email addresses and phishing simulation platforms and automatically determines whether an email poses a real threat. The software reports the remaining threatening emails to the security team. The IT security team can then delete the emails or quarantine them with a single click.
Proofpoint CLEAR keeps a record of which individuals have fallen for simulated phishing emails and includes a history of actions taken during the remediation process to provide a comprehensive review of organisations’ responsiveness to phishing attacks.