Prevent Spam & Graymail
Stop spam and unwanted graymail from reaching your end users.
of all emails are spam
1200 minutes / year
spent on spam by each employee
Stopping Spam and Graymail from Reaching End Users
Recognizing Spam and Graymail
This email passed native email security, but it is spam. By examining it further, we can see that:
- it comes from an unknown vendor and never lists their company name
- it is extremely generic, which indicates that it may be sent to thousands of email addresses
- it was sent to every person within the marketing organization, indicating that the sender bought a list or does not know who to contact
While this type of email may not be malicious, it does waste time for those who bother to read it. Abnormal keeps these messages out of inboxes.
Stop Unwanted Email from Reaching Your End Users
Uncover High-Volume Attacks by Understanding Recipient Patterns
This message from Paper Company Partner appears to be sent only to Andy, but further investigation shows that it goes to all Dunder Mifflin employees.
A common tactic for spam emails is a high-volume of sent messages, often without any personalization. While Andy may believe that this email was sent directly to him, it is likely that the spammer bcc’ed hundreds of recipients, or copied and pasted this message thousands of times.
Check For and Authenticate Sender Details
The domain name is a set of random numbers and letters. It does not pass authentication.
Abnormal checks against basic authentication methods including SPF, DKIM, and DMARC. Because this email address does not have email authentication implemented, it indicates that it could be spam.
For those domains that do pass authentication, Abnormal can detect when they were registered. If the domain was registered very recently, it could be a sign of spam or graymail.
Understand Recipients’ Preferences
In this case, this email is sent not only to the sales team, but to all Dunder Mifflin employees.
Even if Andy had signed up for this email, it’s unlikely that everyone at the organization did. For emails that are legitimate, Abnormal understands context to know that employees in Human Resources are unlikely to be interested in messages from sales partners.
Automatically Create Safe and Block Lists for Each End User
While the rest of the organization treats this email as unwanted, Andy finds it valuable. Abnormal knows this and delivers the email to his promotions folder, while blocking it for all other end users.
Abnormal is deeply integrated into end user mailboxes via API, giving it the ability to learn end-user’s preferences by observing how end-users move messages between folders.
This ability allows Abnormal to automatically create and manage individualized safe and block lists on behalf of end-users, and deliver spam and graymail to junk and promotional folders respectively.
End-users no longer have to rely on spam and quarantine digests to salvage missed messages.