Click to go to that section.
Abnormal Security’s cloud-native architecture integrates directly into Microsoft Office 365 EOP and ATP, as well as G Suite, via APIs and requires no configuration or ongoing maintenance. Protect your organization from most advanced types of BEC attacks including:
Abnormal evaluates thousands of signals for each message received by your organization to determine if and why the message is suspicious. If a message is suspicious, Abnormal provides detailed insights into the attack. Examples include:
Abnormal will automatically detect and move malicious emails to designated folders (junk folder, hidden folder, deleted folder, etc).
Abnormal automatically alerts on end users’ unsafe engagement activities. Engagement means the attack recipient has:
Unsafe engagement activities appear in customer’s Portal, and via email notifications to Abnormal’s internal mailing lists.
Abnormal detects and classifies key terms and language found in email communications to determine when a BEC attack is taking place, such as urgent financial requests or credential access.
Automatically correlates abnormal behavior including identifying suspicious invoice details, mail filter rule changes, IP tracking for too-fast-to-travel logins to identify compromises. Additionally, Abnormal maps organizations and business processes in your supply chain for continuous behavioral analysis to prevent social engineering-based account compromise and fraud. Learn more
Abnormal identifies the presence of VIPs in email communications (email headers, as well as sign-off signatures) and protects these highly targeted members of an organization.
Abnormal will be able to inject awareness banners into malicious emails that arrive in individual end user’s email inbox. Customer’s security team would be able to educate their end users to recognize malicious emails via these additional threat awareness content.
Using computer vision analysis, Abnormal can detect suspicious links used for credential phishing, as well as detect links that contain downloadable malware.
Abnormal analyzes attachments for malware, and provides previews of attachments for deeper insights.
Visibility into all of the people involved, both inside and out of your organization, involved in a BEC and account compromise attacks including recipients, senders as well as departments and groups affected.
Detects anomalies within invoice attachments including never-seen-before vendor names and bank account information, as well as unusual invoice amounts.
Abnormal analyzes suspicious signals such as never-seen-before geolocations, IP address, and email authentication alignment (SPF, DKIM, DMARC records) to aid in the assessment if the sender has been compromised.
Abnormal can determine if a prior relationship between the sender and the recipient, the recipient department and company have previously existed, and flag suspicious relational activity from never-seen-before communication patterns.
Manage and analyze suspicious emails reported by employees into a central repository and take action on the emails by remediating them or moving them to a folder.
Abnormal’s global, federated database of vendors and supply chain customers. VendorBase automatically maps all partners your organization communicates with over email, and assesses which vendors are high-risk to the organization. Provides detailed visibility into supply chain partner employees that interact with your organization’s employees, as well as visibility into vendor email accounts that may be compromised and related suspicious activities. Learn more
Seamless integration into your existing security stack: SIEM, SOAR, detection tools and ticketing systems. Connect into Microsoft Outlook, Microsoft Teams, G Suite, Slack, Splunk, Proofpoint TAP and others. Learn more
Abnormal Security’s cloud-native architecture seamlessly integrates into dozens of enterprise platforms: Microsoft Office 365, G Suite, Slack and more. Integration takes seconds to complete and has no risk to mail flow, with no MX record, SMTP or mail routing changes required. Does not interfere with existing security tools.
Abnornal’s AI-powered decision engine provides organizations with unparalleled effectiveness in stopping BEC attacks. As a result, SecOps gains valuable time back from not having to manually evaluate and remediate threats on a case-by-case basis. Learn more
Abnormal protects against reconnaissance emails that include short snippets of text that targets employees for future attacks. Similar to cold-calls, these emails are often difficult to track. With Abnormal, organizations can automatically remediate them to the junk folder, so employees can verify whether the email is a recon email or not.
Organizations have the ability to review sample graymail messages to understand graymail attack definitions, remediation controls and detection details. This added control lowers the risk of graymail messages clogging employee’s inboxes.
Abnormal gives organizations the ability to assign global admins, tenant admins, or tenant readers that have various privileges access options to the portal. This feature helps enterprises gain added control over user-role assignments and data-sharing.
Abnormal has launched a centralized customer report dashboard that handles false negative reports submitted by an organization to Abnormal. SecOps can learn about the report status, investigation details, and improvements made from each report.
Abnormal is the email security company that stands for trust.
© 2020 Abnormal Security Corporation.
All rights reserved.