Cofense has upgraded its Cofense Vision phishing detection and response solution with an Auto Quarantine feature that ensures malicious emails are identified and removed from recipients' inboxes, according to the company.
Auto Quarantine leverages Cofense Intelligence of similar threats in other customer environments, Phishing Defense Center team of security analysts and millions of people around the world identifying and reporting suspected phishing attacks, the company said. In doing so, Auto Quarantine helps Cofense Vision users detect and address malicious emails before recipients see or have a chance to open them.
How Does Auto Quarantine Work?
With Auto Quarantine, Vision monitors the cyber threat landscape, Cofense noted. Vision uses a global network of over 25 million human sensors identifying and reporting on suspicious emails and security researchers and intelligence analysts to provide real-time insights into cyber threats.
If Vision identifies a cyber threat, Cofense analysts generate an indicator of compromise (IOC) to address it, the company said. An IOC is used to identify malicious emails that have bypassed secure email gateways seconds after they are received.
Next, when a match is found in Vision, an email is auto quarantined, Cofense indicated. The email can then be examined and removed permanently as required.
Vision users can track and address email-borne threats like ransomware, business email compromise (BEC), malware attacks and credential theft, Cofense pointed out. As such, Vision helps these users consistently guard against phishing attacks.
A Closer Look at Cofense
Cofense helps organizations teach employees how to identify, report and respond to phishing attacks, the company said. It offers a phishing detection and response platform that can be used in combination with security information and event management (SIEM), security orchestration, automation and response (SOAR) and other security tools.
In addition to being named a Top 10 Security Awareness Training Firm, Cofense last year launched a partner program that allows MSSPs to address cyberattacks against small and medium-sized businesses (SMBs). The partner program provides MSSPs with access to phishing training, reports and various tools and resources.
