Email security is no longer as simple as filtering for known malware and blacklisting spam relays. Criminals are now releasing malware variants every three hours and with higher payouts from crime, they can afford to keep buying and burning clean IP addresses to send out phishing scams.

A sophisticated and highly targetted attack like this won’t be detected by a traditional email security gateway; however, modern email security gateway can detect this level of criminal behaviour.

To cope with modern threats, an email security solution should be able to:

• Filter known viruses and spam
• Sandbox all attachments with customisable software versions and anti-sandbox-detection capabilities
• Detect forged ‘from’ addresses, using SPF or similar technologies
• Rewrite URLs to prevent criminals changing content at ‘click time’.
• Use global threat intelligence solutions to improve detection rates
• Include forensic capabilities such as reporting all users who have received the same email
• Rebuild documents into fresh, safe templates removing malformed structures and malicious