IT admins can now do an automated assessment of their email security
New Tool Provides IT with an Automated Method to Check Insecure Email Server Configurations
KnowBe4, the world’s largest security awareness training and simulated phishing platform, announced the release of a new security tool for IT admins, the Mailserver Security Assessment (MSA).
It is well-known within the InfoSec community that email is the No. 1 attack vector for social engineering, malware delivery and exploitation. However, IT can run into problems when trying to check their own email server configurations from within the organisation. KnowBe4 has now made it easy for IT pros to test their email server configurations and see what can types of malicious email can penetrate their organisation’s network from the outside.
KnowBe4’s new complimentary security assessment tool, MSA, automates the process of sending dozens of simulated malicious email message that contain a variety of different message types including email with attachments that contain password-protected, macro zipped, and .exe files or have spoofed domains.
MSA helps IT pros assess how their organisation’s email server either blocks or allows each potentially malicious message type through to the employee inbox. By using MSA, they will learn if their current email filters are secure or not and help them determine if any rules should be adjusted for their organisation’s requirements.
Stu Sjouwerman, CEO of KnowBe4 said, “IT admins can now do an automated assessment of their email security. Armed with that data they can see what emails may make it through, and take steps to lower the risk of social engineering attacks making it to their users.”
MSA can deliver over 30 different emails and test how an organisation’s email configuration handles a multitude of message types in as little as an hour such as:
• SPF Testing - Use a domain with an SPF record that has a soft fail or hard fail)
• Domain Spoofing - Spoof customers domain (from only, reply to only, altered top level domain
• Punycode domain - Use puny code domain for the from/reply to
• Microsoft Office Docs - Word, Excel, PowerPoint
• PDF - Attach PDF (normal, w/script, w/script zipped
• HTML - Attach HTML (normal with link, w/redirect scripting, zipped and w/password
• Attachment Exe - Benign, zipped, zipped w/password, EICAR and EICAR zipped
• Attachment Powershell
For more information, or to download the no-charge Mail-Server Assessment Tool, visit www.knowbe4.com/mailserver-security-assessment This is what the website url will end up being:
KnowBe4, the provider of the world’s most popular integrated new-school security awareness training and simulated phishing platform, is used by more than 17,000 organisations worldwide. Founded by data and IT security expert Stu Sjouwerman, KnowBe4 helps organisations address the human element of security by raising awareness of ransomware, CEO fraud and other social engineering tactics through a new-school approach to security awareness training. Kevin Mitnick, internationally recognised computer security expert and KnowBe4’s Chief Hacking Officer, helped design KnowBe4’s training based on his well-documented social engineering tactics. Thousands of organisations trust KnowBe4 to mobilise their end-users as the last line of corporate IT defence.
Number 231 on the 2017 Inc. 500 list, #50 on 2016 Deloitte’s Technology Fast 500 and #6 in Cybersecurity Ventures Cybersecurity 500. KnowBe4 is headquartered in Tampa Bay, Florida with European offices in England and The Netherlands. For more information, visit www.knowbe4.com and follow Stu on Twitter at @StuAllard.
For further information contact:
Tel: 07917 176095
This press release was distributed by ResponseSource Press Release Wire on behalf of Origin Comms Ltd in the following categories: Consumer Technology, Education & Human Resources, Computing & Telecoms, for more information visit https://pressreleasewire.responsesource.com/about.