Cofense Acquires Cloud-Native, AI-Based Email Security Provider Cyberfish

Combination of Cofense’s Phishing Intelligence from over 26 million human reporters and Cyberfish’s AI-based protection technology will eliminate the need for legacy email security solutions

Leesburg, Va. – April 6, 2020 – Cofense®, the leading provider of phishing detection and response (PDR) solutions, today announced the acquisition of Cyberfish, provider of next-generation phishing protection powered by Computer Vision and advanced Machine Learning (ML) technology. By integrating innovative machine learning capabilities from Cyberfish with Cofense’s detection and response technology, Cofense will bring to market a holistic, advanced automation solution for email protection, detection, and response.

With the acceleration of digital transformation and migration to cloud email services from Microsoft 365 and Google Workspace, organizations are rethinking their email security architecture and technology stack. For customers investigating a move away from legacy email security providers like Proofpoint, Mimecast, Symantec and Cisco, Cofense will help expedite this transition. Cofense’s unparalleled phishing intelligence, already deployed in thousands of enterprises around the world, will also be used to train and evolve Cyberfish’s machine-learning algorithms to block malicious emails in real-time.

“Together, Cofense and Cyberfish will offer a one-stop shop for an organization’s email security needs, eliminating the need for many expensive and slow-to-deploy legacy solutions,” said Rohyt Belani, Cofense CEO and Co-founder. “With organizations increasingly working to consolidate technology vendors, we are laying the groundwork to support our customers in this endeavor and maintain the high quality they expect in whatever solutions they adopt. This includes our ongoing commitment to the MSP ecosystem Cyberfish has developed. Disrupting the email security market is in Cofense’s DNA, and we look forward to advancing phishing detection and response capabilities for more organizations and MSPs in 2021.”

“Cyberfish is excited to join forces with Cofense to solve the phishing problem and take email security to another level,” said Dima Kagan, Cyberfish CEO and Co-founder. “As we met with the team, it quickly became obvious that we share the same vision for how to revolutionize the email security market, which includes addressing the business requirements of MSPs and enterprises offering advanced email protection beyond Microsoft and Google. We look forward to working together to bring that vision to reality through Advanced AI and automation capabilities.”

Cyberfish’s technology, which can be installed in less than one minute to enable real-time phishing protection, will be immediately deployed as part of the Cofense Managed PDR service and available to global MSP partners.

Learn more about Cofense PDR here.

About Cofense
Cofense® is the leading provider of phishing detection and response solutions. Designed for enterprise organizations, the Cofense Phishing Detection and Response (PDR) platform leverages a global network of over 26 million people actively reporting suspected phish, combined with advanced automation to stop phishing attacks faster and stay ahead of breaches. When deploying the full suite of Cofense solutions, organizations can educate employees on how to identify and report phish, detect phish in their environment and respond quickly to remediate threats. With seamless integration into most major TIPs, SIEMs, and SOARs, Cofense solutions easily align with existing security ecosystems. Across a broad set of Global 1000 enterprise customers, including defense, energy, financial services, healthcare and manufacturing sectors, Cofense understands how to improve security, aid incident response and reduce the risk of compromise. For additional information, please visit www.cofense.com or connect with us on Twitter and LinkedIn.

About Cyberfish

Cyberfish is a zero-second phishing protection solution that combines Computer Vision and AI to stop phishing emails and websites in real-time – before they have been reported and added to the blacklists.

Cyberfish offers employee protection solution with one-click onboarding for Office 365 and G-Suite and low-touch support. Cyberfish is specifically designed for MSPs and MSSPs allowing multi-tenant management, reporting and integration. For more information, visit https://cyberfish.io.

Media Contact

press@cofense.com

Cofense Granted FedRAMP Moderate Authorization

Leesburg, Va. – February 18, 2021 – Cofense®, the leading provider of phishing detection and response (PDR) solutions, today announced that Cofense PhishMe® has achieved a Federal Risk and Authorization Management Program (FedRAMP) Moderate Authorization to Operate (ATO). Cofense’s FedRAMP authorization was sponsored by the U.S. Department of Health and Human Services (HHS) and was also reviewed by the FedRAMP Program Management Office (PMO). The Cofense PhishMe FedRAMP environment is architected on Amazon Web Services (AWS) GovCloud, and is the first FedRAMP Moderate authorized phishing simulation solution.

FedRAMP was created to assess the security of Cloud Service Providers (CSPs), saving time and money for U.S. government agencies that would otherwise conduct their own assessments. A Moderate-Impact Authorization requires significantly stricter security controls compared to Low-Impact Authorization, including stringent operational requirements to protect personally identifiable information, and the safeguarding of information related to phishing simulations and suspicious messages reported by employees. Cofense’s Moderate-Impact Authorization required an independent evaluation of the following:

  • Cofense’s implementation of the 325 FedRAMP Moderate NIST SP 800-53 Controls to protect the confidentiality, integrity and availability of customer data
  • Cofense’s vulnerability management practices by conducting independent vulnerability scans
  • Cofense’s web application security practices by performing independent penetration testing

Spear phishing continues to be one of the most significant concerns among federal agencies, which are challenged today by the need to protect mission critical information while supporting a growing remote workforce,” said Sylvain Lacroix, Cofense Director, Federal & Defense Contractors Sales. “Cofense PhishMe allows federal agencies to securely and proactively defend against cybersecurity threats spread via email, which is the leading cause of data breaches. Cofense is excited to continue serving the needs of highly regulated industries such as the U.S. Federal Government with our Cofense FedRAMP Moderate offering.”

Cofense solutions deliver protection from malware threats, ransomware campaigns and scams that evade Secure Email Gateways (SEGs) every day and provide federal teams the visibility and tools to stop phishing threats in minutes, not hours. With Cofense PhishMe, federal agencies can transform employees into the last line of active defense through education, ongoing simulations and an easy to use reporting tool so organizations can swiftly detect, respond to and stop phishing attacks in their tracks.

Andrew Ledford, FedRAMP Program Manager, added, “Cofense prioritizes providing the highest level of protection to our customers, which is why we made the commitment to pursue a FedRAMP moderate impact level authorization – anything lower was just not sufficient to meet the needs of our customers. Our network of 25 million users combined with advanced automation is what makes Cofense the strongest phishing detection and response solution on the market today, and we are extremely proud of this milestone. We look forward to maintaining our status as a trusted provider of phishing defense for U.S. government agencies.”

View the authorized Cofense PhishMe listing on FedRamp Marketplace. To learn more about how Cofense and its phishing defense solutions, including Cofense PhishMe, can help secure federal networks, please visit https://cofense.com/federal-government.  

About Cofense
Cofense® is the leading provider of phishing detection and response solutions. Designed for enterprise organizations, the Cofense Phishing Detection and Response (PDR) platform leverages a global network of over 25 million people actively reporting suspected phish, combined with advanced automation to stop phishing attacks faster and stay ahead of breaches. When deploying the full suite of Cofense solutions, organizations can educate employees on how to identify and report phish, detect phish in their environment and respond quickly to remediate threats. With seamless integration into most major TIPs, SIEMs, and SOARs, Cofense solutions easily align with existing security ecosystems. Across a broad set of Global 1000 enterprise customers, including defense, energy, financial services, healthcare and manufacturing sectors, Cofense understands how to improve security, aid incident response and reduce the risk of compromise. For additional information, please visit www.cofense.com or connect with us on Twitter and LinkedIn.

Media Contact

press@cofense.com

Cofense WINS Silver 2021 STEVIE® AWARD for Customer Service Department of the Year

LEESBURG, VIRGINIA – February 4, 2021 – Cofense, the leading provider of phishing detection and response (PDR) solutions was presented with a Silver Stevie® Award in the Customer Service Department of the Year (Computer Software) category in the 15th annual Stevie Awards for Sales & Customer Service.

The Stevie Awards for Sales & Customer Service are the world’s top honors for customer service, contact center, business development and sales professionals. The Stevie Awards organizes eight of the world’s leading business awards programs, also including the prestigious American Business Awards® and International Business Awards®. Winners will be recognized during a virtual awards ceremony on April 14.

More than 2,300 nominations from organizations of all sizes and in virtually every industry, in 51 nations, were considered in this year’s competition. Winners were determined by the average scores of more than 160 professionals worldwide on nine specialized judging committees.

“We are honored to receive this Stevie award,” Cofense COO Brandi Moore said. “In 2020 our support team continued to deliver a world class customer experience despite the obstacles of the pandemic. Cofense is excited to have Carolyn Merritt VP, Customer Experience, as the leader of our support team who over the course of 12 months has launched our new online Resource Center, expanded the technical support team to provide coverage for all global time zones, and delivered a customer satisfaction score of 95% in 2020. I am very proud of everyone in the Global Technical Operations Center!”

“In the toughest working environment in memory for most organizations, 2021 Stevie Award winners still found ways to innovate, grow sales, please their customers, and secure new business,” said Stevie Awards president Maggie Gallagher. “The judges have recognized and rewarded this, and we join them in applauding this year’s winners for their continued success. We look forward to recognizing them on April 14.”

Details about the Stevie Awards for Sales & Customer Service and the list of Stevie winners in all categories are available at www.StevieAwards.com/Sales.

About Cofense

Cofense® is the leading provider of phishing detection and response solutions. Designed for enterprise organizations, the Cofense Phishing Detection and Response (PDR) platform leverages a global network of over 25 million people actively reporting suspected phish, combined with advanced automation to stop phishing attacks faster and stay ahead of breaches. When deploying the full suite of Cofense solutions, organizations can educate

employees on how to identify and report phish, detect phish in their environment and respond quickly to remediate threats. With seamless integration into most major TIPs, SIEMs, and SOARs, Cofense solutions easily align with existing security ecosystems. Across a broad set of Global 1000 enterprise customers, including defense, energy, financial services, healthcare and manufacturing sectors, Cofense understands how to improve security, aid incident response and reduce the risk of compromise. For additional information, please visit www.cofense.com or connect with us on Twitter and LinkedIn.

About The Stevie Awards

Stevie Awards are conferred in eight programs: the Asia-Pacific Stevie Awards, the German Stevie Awards, the Middle East & North Africa Stevie Awards, The American Business Awards®, The International Business Awards®, the Stevie Awards for Great Employers, the Stevie Awards for Women in Business, and the Stevie Awards for Sales & Customer Service. Stevie Awards competitions receive more than 12,000 entries each year from organizations in more than 70 nations. Honoring organizations of all types and sizes and the people behind them, the Stevies recognize outstanding performances in the workplace worldwide. Learn more about the Stevie Awards at http://www.StevieAwards.com.

Cofense Unveils Automated Phishing Detection and Response Capability

Leesburg, Va. – Dec. 21, 2020Cofense, the leading provider of phishing detection and response (PDR) solutions, today announced new product innovations to Cofense Vision. Most notably, the addition of an Auto Quarantine feature that identifies and automatically removes malicious emails from recipients’ inboxes – often before users see or have a chance to open them, based on our knowledge of similar threats in other customer environments. This high degree of automation significantly reduces the time to identify and resolve attacks, provides protection from threats that bypass Secure Email Gateways (SEGs) every day, and lessens a security analyst’s time spent hunting malicious email. Auto Quarantine is powered by the Cofense Intelligence™ network of Cofense researchers, the Phishing Defense Center® (PDC) team of analysts, and millions of people around the world identifying and reporting suspected phish. 

How it Works

The Cofense team closely monitors the threat landscape and is able to leverage a global network of over 25 million human sensors identifying and reporting on suspicious emails, and a team of advanced researchers and intelligence analysts to create an unparalleled view of threats happening in real time around the world. The moment a threat is identified, Cofense analysts generate an Indicator of Compromise (IOC) tuned to stopping that threat. With Vision’s Auto Quarantine feature, these IOCs are used to identify malicious emails that have bypassed the SEG seconds after they are received. When a match is found, the email is auto quarantined where it can then be examined and if appropriate, removed permanently. Current Cofense Vision users are observing several such threats as being automatically addressed every day, thus significantly reducing the window of vulnerability to active email-borne threats like ransomware, business email compromise (BEC), malware attacks, and credential theft. 

Cofense Vision with Auto Quarantine Proven Effective in Enterprise Organizations  

Fortune 500 Retail Organization:

A large retail customer was an early adopter of Cofense Vision with Auto Quarantine. The account team provided an email to the customer with a recently identified public malicious phishing link. The email completely bypassed all of the existing email security controls. But within seconds, and before the recipient could open the email, Vision identified the email as a threat and auto quarantined it. This happened without any human intervention.

Large, Full-service Mortgage Provider:

This enterprise organization deployed Vision with the new Auto Quarantine feature across its organization. During the first week, Vision identified six separate phishing campaigns. Each of these campaigns contained approximately 500 phishing emails that had bypassed existing email security technology and made it to recipient inboxes. The Vision Auto Quarantine functionality immediately quarantined the thousands of emails without analyst interaction and before a recipient could open the email, quickly and effectively reducing risk to the organization. Prior to Vision, the team did not have visibility into the extent of phishing campaigns nor any systematic way to identify and remove them.  

Global Construction Company:

When this global construction company enabled Auto Quarantine, they saw an immediate impact. A phishing campaign disguised as a Microsoft Teams invite to a holiday party appeared shortly after Auto Quarantine was configured. The email was immediately identified as a phishing campaign and over 200 emails were auto quarantined. After the initial detection, the company continued to be targeted with the same phishing campaign and the auto quarantine functionality in Vision has continued to detect and remove several dozen more attacks.  

“Phishing threats are human-developed, which is why Cofense is helping organizations ‘out-human’ the phishing threat. By continuously updating our solutions with capabilities to remove real-world threats before anyone in the organization even sees them, Cofense is greatly reducing the risk of a phishing attack,” says Aaron Higbee, Co-Founder and CTO of Cofense. “With the newest version of Cofense Vision, organizations can immediately operationalize Cofense’s indicators of compromise and automatically remove malicious email from an environment even before a team member tags them as suspicious. Customers are quickly adopting Auto Quarantine for its effectiveness in stopping threats that bypass SEGs, and for delivering immense productivity gains for SOC and IR teams.”

To learn more about Cofense’s PDR platform, designed to deploy as an integrated suite of products or delivered as a comprehensive managed PDR service through the Cofense Phishing Defense Center (PDC), please visit www.cofense.com/.

About Cofense
Cofense® is the leading provider of phishing detection and response solutions. Designed for enterprise organizations, the Cofense Phishing Detection and Response (PDR) platform leverages a global network of over 25 million people actively reporting suspected phish, combined with advanced automation to stop phishing attacks faster and stay ahead of breaches. When deploying the full suite of Cofense solutions, organizations can educate employees on how to identify and report phish, detect phish in their environment and respond quickly to remediate threats. With seamless integration into most major TIPs, SIEMs, and SOARs, Cofense solutions easily align with existing security ecosystems. Across a broad set of Global 1000 enterprise customers, including defense, energy, financial services, healthcare and manufacturing sectors, Cofense understands how to improve security, aid incident response and reduce the risk of compromise. For additional information, please visit www.cofense.com or connect with us on Twitter and LinkedIn.

Media Contact

press@cofense.com

PDR Platform: Cofense Introduces Industry Changing Phishing Detection and Response Platform

Leesburg, Va. – Dec. 7, 2020 – Cofense®, the global leader in intelligent phishing defense solutions, today introduced its Phishing Detection and Response (PDR) platform, a solution designed specifically for enterprise organizations. As phishing attacks continue to become more sophisticated, persistent, and adapt to legacy security defenses, demand for end-to-end phishing defense solutions is at an all-time high. The Cofense PDR platform provides a comprehensive approach to stopping phishing attacks through global crowd-sourced phishing intelligence from 25 million people combined with advanced automation.

Cofense’s new PDR platform is designed to deploy as an integrated suite of products or delivered as a comprehensive managed PDR service through the Cofense Phishing Defense Center (PDC). Both options effectively stop phishing attacks and combat the savviness of attackers through a combination of people and automated technology to quickly reduce and remove the risk.

Despite massive investments in secure email gateways (SEGs) and awareness training across industries, phishing attacks continue to reach users. Gartner’s report* “How to Respond to the 2020 Threat Landscape” (17 June 2020; John Watts), mentions:

·       “Phishing is still the No.1 initial access vector for malware attacks”

·       “Phishing and other human-facing social engineering tactics remain the primary vectors of successful attacks”

·       “Spear phishing, as well as whaling using business email compromise (BEC) are becoming more common and, potentially, more destructive. The FBI reported that BEC accounted for more than $26 billion in losses from 2016 through 2019.”

“Cofense is the leading provider of PDR as a result of our approach in combining technical innovations with a network of over 25 million people around the world who identify, report and share suspected phish information. Human Intelligence will always be greater than Artificial Intelligence, and when combined with technology, Cofense delivers unparalleled protection for organizations,” said Rohyt Belani, Co-Founder and CEO, Cofense.

Cofense’s PDR platform is the most holistic solution on the market, and includes:

  • PhishMe: Completely rearchitected to address the needs of enterprise-size organizations, users can more easily and efficiently run phishing simulations and manage their security awareness program; carefully crafted simulations based on real – not theoretical – phish immerse users in the experience of being phished from end to end, improving an organization’s resiliency to attacks.
  • Triage: The first phishing-specific orchestration, automation and response solution that helps identify active phishing attacks in progress; suspected phish are rapidly clustered and analyzed by SOC analysts who queue indicators for remediation.
  • Vision: Driven by automation, Vision quickly identifies all recipients of phishing attacks and automatically quarantines and removes the threat from all mailboxes; enables SOC and IR teams to proactively hunt for unreported threats, IOCs and TTPs, and creates transparent audit and governance of mitigation actions.
  • Intelligence: Proprietary global collection sources provide an extensive real-time view into threat campaigns observed in the wild; delivers high-fidelity, phishing-specific alerts and intelligence, providing accurate and timely assessments of both the current phishing threat landscape and emerging trends. Information from the Intel solution can be easily integrated with existing SOARs, SIEMs and TIPs.

Cofense Managed PDR

  • For enterprise organizations that prefer to seek managed solutions, the Cofense Phishing Defense Center team delivers Managed PDR, managing the entire phishing detection and response process. Security operators gain the expertise, resources and peace of mind needed to proactively defend against current or emerging threats with unparalleled outcomes by engaging Cofense Managed PDR. As recently discussed, the PDC team stopped and removed an attack in less than 10 minutes.

The Gartner Market Guide for Email Security (published September 8, 2020, Mark Harris, Peter Firstbrook, Ravisha Chugh) recommends that “Security and risk management leaders responsible for email security should: Address gaps in the advanced threat defense capabilities of an incumbent secure email gateway (SEG) by either replacing them or supplementing them with complementary capabilities via API integration.”

By integrating all components of the Cofense PDR platform, organizations can detect phish in their environment, educate employees on how to identify and report phish, and respond quickly to remediate the threats before there is harm done to their organization. To learn more about Cofense and PDR, please visit cofense.com/product-overview.

*Gartner, How to Respond to the 2020 Threat Landscape, John Watts, 17 June 2020

 

About Cofense
Cofense® is the leading provider of phishing detection and response solutions. Designed for enterprise organizations, the Cofense Phishing Detection and Response (PDR) platform leverages a global network of over 25 million people actively reporting suspected phish, combined with advanced automation to stop phishing attacks faster and stay ahead of breaches. When deploying the full suite of Cofense solutions, organizations can educate employees on how to identify and report phish, detect phish in their environment and respond quickly to remediate threats. With seamless integration into most major TIPs, SIEMs, and SOARs, Cofense solutions easily align with existing security ecosystems. Across a broad set of Global 1000 enterprise customers, including defense, energy, financial services, healthcare and manufacturing sectors, Cofense understands how to improve security, aid incident response and reduce the risk of compromise. For additional information, please visit www.cofense.com or connect with us on Twitter and LinkedIn.

 

Media Contact

press@cofense.com

Cofense Launches New Community Resource Center to Enhance Customer Experience

Leesburg, Va. – Dec. 1, 2020 – Cofense®, the global leader in intelligent phishing defense solutions, today introduced the new Cofense Resource Center. Formerly known as Community, Cofense has completely transformed their centralized resource hub exclusively for customers with a new interface, an integration with Zendesk ticketing, and new capabilities to enhance the user experience. Within the Resource Center, users can access a robust knowledge base, learn technical best practices, access a repository of product documentation and trainings, and grow existing phishing awareness strategies.

New features built in to the Cofense Resource Center include enhanced search capabilities that make it easier for users to navigate to support resources that will help them achieve their desired security results. A new customer ticket portal allows customers to quickly access all their tickets, and sort by key words or status. Technical support tickets created within the Resource Center are automatically routed to Cofense engineers with the appropriate skills to troubleshoot the issue, resulting in faster resolution times.

“Our customers have shared that they wanted a streamlined and easy-to-navigate resource center where they could find solutions, and submit and track tickets,” said Carolyn Merritt, Cofense VP, Customer Experience. “We are very proud of the new Resource Center and look forward to supporting users of all experience levels, and ultimately helping organizations improve their phishing detection and response programs.”

For more information about Cofense, please visit www.cofense.com. 

About Cofense
Cofense®, the leading provider of intelligent phishing defense solutions worldwide, is uniting humanity against phishing. The Cofense suite of products combines timely attack intelligence on phishing threats that have evaded perimeter controls and were reported by employees, with best-in-class security operations technologies to stop attacks faster and stay ahead of breaches. Cofense customers include Global 1000 organizations in defense, energy, financial services, healthcare and manufacturing sectors that understand how changing user behavior will improve security, aid incident response and reduce the risk of compromise. For additional information, please visit www.cofense.com or connect with us on Twitter and LinkedIn.

Media Contact

press@cofense.com

Cofense Announces Keynote Speakers for Virtual Submerge 2020

Leesburg, Va. – Aug. 20Cofense®, the global leader in intelligent phishing defense solutions, today released its speaker lineup and agenda details for Virtual Submerge 2020, the Global Phishing Defense Event of the Year. Set to take place virtually Sept. 22-23, Submerge will feature on-demand content focused on the latest trends in phishing attacks and phishing defense, specifically developed for individuals with security leadership, incident response, threat intelligence and security awareness responsibilities.

Featured keynote speaker Dmitri Alperovitch, Co-Founder and Chairman of Silverado Policy Accelerator and Co-Founder of Crowdstrike Inc., will join Cofense speakers Rohyt Belani, CEO and Co-Founder, Aaron Higbee, CTO and Co-Founder, and Keith Ibarguen, Chief Product Officer, to deliver thought-provoking keynote sessions. The Virtual Submerge 2020 agenda offers a variety of educational sessions and presentations that will examine the state of the industry’s phishing detection and response.

“On behalf of Cofense, I would like to thank our many speakers who each bring extremely valuable experience to share with our attendees – Virtual Submerge promises deeper, more hands-on content than ever before,” said Belani. “Sessions will arm attendees with the latest insights on how combining technology and human intelligence creates a network effect that can be leveraged to defend against threats and avoid a breach, while raising awareness of the ways malicious actors are actively targeting organizations every day.”

During the two-day event, Virtual Submerge will showcase information that security professionals can use to influence strategic planning and improve security operations. This includes the latest in phishing defense best practices, insights from global thought leaders on the current phishing threat landscape, and regionally focused snapshots into active threats that are targeting global businesses.

The following industry luminaries will also present during Virtual Submerge:

  • Nick Adams, GuideWire
  • Peter Crumpton, NFU Mutual
  • Jason Bohr and Ryan Praskovitch, Nationwide Insurance
  • Tony Fachaux, National Bank of Canada
  • JJ Hodges, Community Health Systems
  • Lisa Plaggemier, Media Pro
  • Susan Rassas, Shell Information Technology
  • Lori Temples & Elizabeth McConnell, GreenSky
  • Peter Vu, NRI Secure
  • Jeff Van Wingerden (CRISC), Sound Transit

“As the global phishing defense event of the year, it is our mission to bring the security community together for two days to emphasize the threat of phishing attacks. Whether you are a security executive, awareness professional or analyst, Virtual Submerge has breakout sessions designed specifically for you,” added Higbee. “Our team is committed to promoting unique perspectives on the evolving phishing threat landscape, and the most effective tools, techniques, and intelligence to stop phishing attacks in their tracks.”

Cofense’s network of over 20 million human sensors around the world empowers organizations with intelligence to rapidly stop phishing attacks, even after they have evaded Secure Email Gateway (SEG) technologies. To learn more about Virtual Submerge and to register, please visit https://cofense.com/submerge/.

About Cofense
Cofense®, the leading provider of intelligent phishing defense solutions worldwide, is uniting humanity against phishing. The Cofense suite of products combines timely attack intelligence on phishing threats that have evaded perimeter controls and were reported by employees, with best-in-class security operations technologies to stop attacks faster and stay ahead of breaches. Cofense customers include Global 1000 organizations in defense, energy, financial services, healthcare and manufacturing sectors that understand how changing user behavior will improve security, aid incident response and reduce the risk of compromise. For additional information, please visit www.cofense.com or connect with us on Twitter and LinkedIn.

Media Contact

press@cofense.com

 

Cofense Expands SOAR Solution Integration Partners to Accelerate Phishing Incident Response

Enhanced integrations between Cofense Triage, Cofense Intelligence and SOAR solutions enable security teams to quickly respond to phishing campaigns that slip past perimeter defenses

LEESBURG, Va., Aug. 3, 2020 – Cofense®, the global leader in intelligent phishing defense solutions, today announced enhanced phishing analysis integrations with Cofense TriageTM and Cofense IntelligenceTM to further complement security orchestration, automation and response (SOAR) solutions from Palo Alto Networks Cortex XSOAR, ServiceNow Security Incident Response and Splunk Phantom.

Before phishing threats become actionable, security operations teams must quickly prioritize and analyze large volumes of suspicious emails to understand what is truly malicious. Cofense Triage automatically inspects employee-reported suspicious emails and turns phishing threat indicators into actionable intelligence to help security operations teams respond in minutes to threats that slip past perimeter defenses such as secure email gateways (SEGs). Cofense Intelligence is human-verified phishing intelligence that provides high-fidelity phishing indicators for security teams to respond with confidence when taking action on a phishing threat. Today’s leading SOAR solutions offer many benefits for security operations teams, and Cofense Triage and Cofense Intelligence continue to augment phishing incident response capabilities SOARs offer.

“Threat actors design their attacks to bypass email security controls and successfully deliver phishing emails directly to employee inboxes – technology alone is not enough to stop or analyze phishing threats. Cofense solutions leverage the intelligence of over 23 million human sensors to identify phishing attacks that technology misses every day,” said Allan Carey, Vice President of Business Development at Cofense. “Cofense Triage and Cofense Intelligence are complementary to SOAR, security information and event management (SIEM) and threat intelligence platform (TIP) tools, seamlessly integrating with existing security operations technologies and processes. We are committed to growing our technology partnerships and integrations, which provide mutual customers with accurate and reliable phishing defense determinations.”

“Cofense Triage integrating with Cortex XSOAR helps our security operations team quickly analyze, automate, and respond to phishing attacks in minutes, not hours,” said Rick DeLoach, Associate Director of Security Architecture and Operations, ADT. “The solutions are complementary to help analysts define and execute an effective workflow.”

Cofense Intelligence is an easy to consume API feed of malware and credential phishing campaigns. The feed supports automated ingestion into an organization’s SOAR, SIEM, TIP and other select technologies so that defenders can take swift action against emerging phishing campaigns. Every piece of Cofense Intelligence published is rigorously vetted by Cofense and includes the context an organization needs to understand the impact of phishing indicators of compromise (IOC) and threat actor tactics, techniques and procedures (TTPs).

Cofense Triage offers comprehensive clustering capabilities to group reported emails by payload fingerprint, which addresses the challenge of understanding threats holistically. This allows analysis at a threat campaign level, rather than an individual email level. Organizations looking for a managed phishing defense solution can turn to Cofense’s Phishing Defense Center® (PDC) and receive analyst-reviewed indicators into their SOAR platform and automate escalation and response.

For a limited time, organizations can also stay on top of the latest threats that are confirmed to have reached employees inboxes with 90 days of free access to Cofense Intelligence. To learn more, visit the Cofense Real Phishing Threats searchable database and SEG Infocenter.

About Cofense
Cofense®, the leading provider of intelligent phishing defense solutions worldwide, is uniting humanity against phishing. The Cofense suite of products combines timely attack intelligence on phishing threats that have evaded perimeter controls and were reported by employees, with best-in-class security operations technologies to stop attacks faster and stay ahead of breaches. Cofense customers include Global 1000 organizations in defense, energy, financial services, healthcare and manufacturing sectors that understand how changing user behavior will improve security, aid incident response and reduce the risk of compromise. For additional information, please visit https://www.cofense.com or connect with us on Twitter and LinkedIn.

Cofense Launches Free Resource Center and Searchable Database Highlighting the Latest Phishing Attacks that Bypass Email Security Technologies

LEESBURG, Va. – June 9, 2020 – Cofense®, the global leader in intelligent phishing defense solutions, today launched a comprehensive resource center and easy-to-use Real Phishing Threats searchable database to help organizations see the phishing threats that slip past their secure email gateways (SEG). In a world where hackers and threat actors constantly innovate and use tried-and-true tactics to stay one step ahead of detection, a multi-layered approach to email security is essential. In 2019, the Cofense Phishing Defense Center® analyzed 1.9 million suspicious emails that landed in employee inboxes across the globe, one in seven of which were found to be malicious.

Built on the world’s largest data lake of phishing threats found by real people, Cofense combines the power of collective human detection and intelligence with automated response, enabling teams to stop phishing attacks rapidly after they have evaded perimeter technologies. To help organizations bolster their defenses, Cofense is revealing the phishing emails that bypass SEGs every single day as well as the steps organizations can take to empower their employees and security teams to detect, report, analyze and quickly neutralize these threats.

In the last 90 days alone, Cofense has found:

  • 31,231 malicious emails in environments protected by Microsoft Office 365
  • 13,610 malicious emails in environments protected by Proofpoint
  • 9,356 malicious emails in environments protected by Mimecast
  • 2,936 malicious emails in environments protected by Symantec

“Several organizations view SEGs as a panacea to their email security woes. These technologies fail to deliver on their promise every day,” said Rohyt Belani, chief executive officer and cofounder, Cofense. “All SEG vendors including Proofpoint, Microsoft, Symantec, Mimecast and Cisco, to name a few, are circumvented every day by even commonplace phishing attacks that use years old malware and credential harvesting tricks. Cofense provides a modern phishing defense and response solution that relies on 23 million humans across the globe for detection, making it impossible for attackers to model their threats. We then leverage machine learning and automation to help our customers rapidly identify the full scope of the attacks and neutralize them before incidents evolve to breaches.”

SEGs are the most common type of perimeter technology used to stop spam and malicious email from landing in user inboxes, but they fall short every day for several reasons. According to the 2020 Verizon Data Breach Investigations Report the top tactic used by adversaries to breach networks, and 92% of all malware is distributed via email according to a recent Cisco report. While SEGs can be tuned to validate senders, they cannot always defend against both tried-and-true and emerging tactics not seen before. Today’s phishing emails tend to use multiple stages of packing and obfuscation, rendering signature-based detection useless. Using real email accounts and legitimate websites, threat actors launch attacks and profit within hours. Not to mention, business email compromise (BEC) relies on email conversation, not URLs or other elements SEGs look for, to scam organizations out of billions every year.

Cofense will continue to regularly update its SEG Infocenter with the latest examples of real phish that have evaded email security technologies along with additional resources and intelligence related to SEG misses. For a limited time, organizations can also stay on top of the latest threats that are confirmed to have reached employees inboxes with 90 days of free access to Cofense Intelligence™, human-vetted, strategic and tactical intelligence that helps organizations inform their phishing defense strategy.

Visit the Cofense Real Phishing Threats searchable database at https://cofense.com/real-phishing-threats and SEG Infocenter at https://cofense.com/what-is-a-seg.

###

About Cofense
Cofense®, the leading provider of intelligent phishing defense solutions worldwide, is uniting humanity against phishing. The Cofense suite of products combines timely attack intelligence on phishing threats that have evaded perimeter controls and were reported by employees, with best-in-class security operations technologies to stop attacks faster and stay ahead of breaches. Cofense customers include Global 1000 organizations in defense, energy, financial services, healthcare and manufacturing sectors that understand how changing user behavior will improve security, aid incident response and reduce the risk of compromise. For additional information, please visit www.cofense.com or connect with us on Twitter and LinkedIn.

 

Media Contact

press@cofense.com