Since our first campaign, we have implemented Mimecast as a third-party email security service on top of the standard Office 365 protection. Mimecast includes URL protection, which rewrites URLs in all external email we receive. When a user clicks on that link, it goes through a sandbox environment to determine if it is malicious or spoofed before taking the user to the site. We have found it to be an effective additional layer of protection.
Our initial KnowBe4 campaign and training emphasized hovering over links in email as a quick way to see if they were being spoofed. However with Mimecast rewriting the URLs, the hover no longer is applicable. Do you have an alternate or updated version of your training materials that do not put such heavy emphasis on this practice for the end user?
Please sign in to leave a comment.