The Company Impersonation Attacks setting in Defend is a crucial tool designed to safeguard your organization against email-based brand impersonation attacks while preventing false alarms. This setting is formed of two parts:
- Secondary Domains
- These are legitimate domains that are owned or used by your organization.
- The following examples may have their own domains and will be relevant to listing in this section: subsidiary companies, brand names, product lines, regional offices, acquired entities, and marketing campaign domains.
- Protected Names
- These are names associated with your organization that could be targeted for your impersonation.
- The following examples may be relevant to list in this section: product names, commonly used acronyms, service names, and project names.
To configure the company impersonation setting, follow the steps below:
- Log in to the Defend console.
- Navigate to the Settings page.
- Locate the Company Impersonation Attacks section.
- Add your secondary domains to the Secondary Domains list.
- Add your brand names to the Protected Names list.
- Select Save Changes.
Note: It is recommended that this setting is regularly reviewed to ensure it is accurate and up-to-date.