Symantec improves messaging security with fraud protection


Some of the most common risks businesses face are email fraud attacks, often referred to as commercial messaging compromises.

On February 14, Symantec announced its latest innovation to help organizations fight BEC with its e-mail fraud protection offering. BEC frauds involve assailants usurping the identity of an e-mail system or giving them access to an e-mail system and inciting a victim to pay for what appears to resemble an invoice or a request for payment. legitimate payment.

"Symantec's e-mail fraud protection is a new addition to the platform," said Jane Wong, vice president of engineering and product management at Symantec. eWEEK. "Symantec is committed to extending the built-in cyber-defense platform for e-mail security with both integrated technology and API integrations."

The BEC is a global problem, with the FBI estimating that between October 2013 and May 2018, victims around the world lost $ 12.5 billion.

The new e-mail fraud protection offering works with other services already available in the Symantec product portfolio. Wong said that Symantec Email Fraud Protection is a cloud-based service available as a complement to the Symantec Email Security cloud and Symantec Messaging Gateway. To deploy e-mail fraud protection, she said that clients needed only a quick and punctual change to direct a DNS record from one line to Symantec.

How it works

Symantec Email Security is a platform that helps protect Office 365, G Suite, and local email from email threats. Wong explained that Symantec Email Security protects customers against email attacks by blocking threats such as phishing, malware, spam and CLB; Email Fraud Protection helps customers automate the implementation of shipper authentication standards such as DMARC, DKIM and SPF.

Domain Based Authentication, Reporting and Compliance (DMARC) is a specification that includes the Domain Key Identified Email (DKIM) and Sender Policy Framework (SPF) protocols to help protect authenticity. from a mail domain.

"This prevents attackers from abusing brands, increases shipper confidence, and improves e-mail deliverability rates," she said.

Wong explained that Email Fraud Protection automates the implementation of DMARC standards for customers by cataloging thousands of messaging services as a service (SaaS) and third parties, and dynamically updating changes to configuration that remove the need for administrators to manually configure. and keep the shippers. In addition, companies no longer need email and security teams resources, because adding or removing senders is now a simple process, in one click. Critical privacy standards are respected because Symantec Email Fraud Protection does not use personal identification information (PII).


Although DMARC is a known approach to help improve the authenticity of email, the implementation of DMARC has not always been an easy process for organizations. Among the challenges posed by the correct implementation of DMARC, it is necessary to identify all the places from where emails are sent from a given domain.

"E-mail fraud protection greatly simplifies the application of sender authentication controls such as DMARC, DKIM, and SPF by automatically and accurately identifying third-party senders while keeping this list up-to-date. a dynamic way in case the configuration of an underlying mail service changes "I said. "In addition, customers get full visibility of all email traffic using their domains with detailed reports on email senders."

By implementing DMARC, the goal is to limit the risk that potential attackers will use a mail domain as part of a BEC attack. Wong said that the implementation of DMARC controls prevents unauthorized shippers from masquerading as domains through BEC attacks because emails from these senders are rejected.

"This also increases trust in email senders because only genuine emails from approved senders are allowed in the inbox because users can now trust emails that they receive at the same time." name of their organization, "she said.

And after

Wong noted that many organizations use fragmented security tools provided by several point-to-point vendors to reduce risk. She said Symantec was looking to provide customers with stronger, more unified protection through an integrated cyber defense platform.

"This integrated platform helps customers achieve better security results across multiple checkpoints through enhanced security controls and products that work seamlessly together to defend against the latest threats," he said. she said. "As a result, Symantec is working to tightly integrate the Email Security solution into this broader platform, as well as a broad ecosystem of technology partners, to provide an integrated solution for its customers."

Sean Michael Kerner is Editor-in-Chief at eWEEK and Follow him on Twitter @TechJournalist.