LEESBURG, Va.--(BUSINESS WIRE)--PhishMe, a global provider of phishing-defense and intelligence solutions for the enterprise, has today confirmed it has bolstered its phishing threat management and incident response platform – PhishMe Triage. Enhancements include further integrations with third parties including PhishMe Intelligence and improved collaboration with a crowdsourced YARA Rule Exchange and PhishMe Community to help save analyst time and improve response efficiency.
“Even with all the processes and technology in place within organizations, phishing attacks containing ransomware and other malware continue to penetrate defenses. Over 91% of all network attacks begin with a successful phishing attempt, meaning organizations need an efficient and effective phishing incident response plan,” explains Aaron Higbee, CTO and Co-Founder of PhishMe. “PhishMe Triage allows organizations to quickly identify and remediate attacks in progress and reduce phishing threat analysis from hours to minutes. By utilizing human-led intelligence, from both within your organization and combined with the wider PhishMe Community, Triage frees up the manual resources previously needed to process the thousands of emails reported by employees, so time and effort is focused on the actual threats that can cause damage.”
In order to optimize phishing incident response, PhishMe Triage integrates with a host of security technologies like sandboxes, SIEMs, URL analysis solutions, and more.
The latest enhancements to Triage include features for better collaboration and integrations:
- YARA Rule Exchange – All Triage customers are encouraged to share YARA rules through the Triage Community Exchange, which are verified by PhishMe’s own research team. This combined intelligence provides a robust library of battle-tested rules that improves the readiness of all Triage customers, helping identify new threats in their environment and protect organizations from sophisticated phishing campaigns.
- PhishMe Community – This centralized hub for PhishMe customers helps build a collaborative knowledge base, offering technical tips and tricks, and the ability to engage with peers to share new ideas. This threat attack information and attack prevention strategy extends an organization's internal resources, leveraging the experience and intelligence from a larger group of people.
- In-platform OpenDNS Integration – This allows Triage to list domains that are known to be malicious, suspicious or benign, warning customers of potential dangerous sites.
- Integration with PhishMe Intelligence – The PhishMe Intelligence team create human-verified, high fidelity YARA rules for Triage that encapsulate indicators from confirmed, in the wild, phishing attacks to stay on top of new threats.
- Attachment Viewer – Attachments are rendered as images, permitting the operator to safely preview the content and analyze the risk factors of a file without triggering any active content, nor wasting time opening an attachment in a separate sandbox environment to preview its content. When used with YARA rules that can identify potentially dangerous attachments, the Attachment Viewer provides enhanced analysis capabilities to Triage operators.
Aaron concludes, “Phishing attacks often target groups of people across an enterprise, so employees quickly become the front line of defense and organizations owe it to their workforce to ensure they’re properly prepared. PhishMe Triage helps by providing a mechanism to collect reports from the front line humans in the organization, combining this with intelligence from PhishMe’s research team and the wider PhishMe community, which together identify the phishing emails that made it in. Every suspicious email reported helps prevent others from being caught in a malware trap."
Join PhishMe experts on July 12th at 1:00pm E.S.T. to learn more about PhishMe Triage and the need for phishing incident response. Register here for the webcast.
Connect with PhishMe Online
- Follow PhishMe on Twitter: https://twitter.com/phishme
- Follow PhishMe's Blog: http://phishme.com/blog/
- Follow PhishMe on LinkedIn: https://www.linkedin.com/company/phishme-inc-
About PhishMe
PhishMe is the leading provider of human-focused phishing defense solutions for organizations concerned about their susceptibility to today's top attack vector -- spear phishing. PhishMe's intelligence-driven platform turns employees into an active line of defense by enabling them to identify, report, and mitigate spear phishing, malware, and drive-by threats. Our open approach ensures that PhishMe integrates easily into the security technology stack, demonstrating measurable results to help inform an organization's security decision-making process. PhishMe's customers include the defense industrial base, energy, financial services, healthcare, and manufacturing industries, as well as other Global 1000 entities that understand changing user security behavior will improve security, aid incident response, and reduce the risk of compromise.