Leading Anti-Phishing Provider Launches New Product for Security Analysts and Incident Response Teams to Operationalise Internal Human Intelligence
PhishMe Inc., the leading provider of phishing threat management solutions that empower employees to be a layer of human security sensors against phishing, malware, and drive-by attacks, today introduces PhishMe Triage into the UK market, a new product offering that gives incident responders the analytics and visibility into email-based attacks occurring against their organisations in near real-time.
Triage is currently the only offering that leverages human intelligence inside the organisation and turns conditioned employees, traditionally considered the weakest link, into the strongest detection asset for security operators. The patent-pending technology, Triage, provides Security Operations Center (SOC) analysts and incident responders insight into ongoing spear phishing attacks by automating the analysis and orchestrating the workflow associated with employee reported suspicious emails to reduce detection time and minimise the impact of phishing.
PhishMe has developed their product portfolio to deliver on its mission to provide innovative approaches that address the human element of Cybersecurity. Simulator tells you how good users are at spotting threats and grooms them to be better. Reporter allows them to exercise these skills every day with live email, and Triage adds a platform for incident handlers to act on Reporter’s data in an automated manner that can also integrate with other security product investments within the enterprise.
Targeted phishing remains one of the top threats to organisations as demonstrated by data breaches over the last 12 months. According to Verizon’s 2015 DBIR report, ‘In the 2013 DBIR, phishing was associated with over 95% of incidents attributed to state-sponsored actors, and for two years running, more than two-thirds of incidents that comprise the Cyber-Espionage pattern have featured phishing.’
Establishing a network of human sensors through focused conditioning on the relevant threats to the organisation operationalises their knowledge by motivating employees to be trusted informants of suspicious artifacts in their email inboxes and thus transforms them into a critical part of the security posture – the first line of defence.
“Introduced at the 2015 RSA Conference, we are excited to build off our initial momentum and showcase Triage for the first time in the UK at Infosecurity Europe on Stand D165,” said Aaron Higbee, CTO of PhishMe. “Suspicious email reports from skilled informants – your employees – can now be prioritised and processed by incident responders based on the volume and reputation of the reporting employees, PhishMe intelligence, and indicators of attack that go beyond malware signatures. Organisations now have an opportunity to tap into their own enterprise-sourced phishing intelligence.”
For more information about PhishMe Triage and PhishMe’s unified phishing threat management solution, please visit phishme.com. PhishMe Triage is generally available as a virtual or hardware appliance via a subscription license model.
About PhishMe
PhishMe is the leading provider of threat management for organisations concerned about human susceptibility to advanced targeted attacks. PhishMe’s intelligence-driven platform turns employees into an active line of defence by enabling them to identify, report, and mitigate spear phishing, malware, and drive-by threats. Our open approach ensures that PhishMe integrates easily into the security technology stack, demonstrating measurable results to help inform an organisation’s security decision making process. PhishMe’s customers include the defence industrial base, energy, financial services, healthcare, and manufacturing industries, as well as other Global 1000 entities that understand changing user security behaviour will improve security, aid incident response, and reduce the risk of compromise. For additional information, please visit: www.phishme.com
The opinions expressed in this post belong to the individual contributors and do not necessarily reflect the views of Information Security Buzz.