Email Security

Stop Zero-day Email Attacks

Conventional Email Gateways
MetaDefender Email Gateway Security

Conventional email security gateways cannot manage malware hidden in the macros of documents. When the user enables a macro, the malicious content will execute several steps to set up a communication channel with the C&C (command and control) server. The final goal is to take over control of users’ devices.

MetaDefender Email Gateway Security provides a comprehensive solution to stop these threats. Our zero-day malware prevention disarms not only attachments but also the email body by removing all potentially malicious content and delivering a clean and reconstructed file with full usability. OPSWAT Multiscanning provides advanced threat detection and prevention by combining the results of multiple scanning engines.

Emotet use-case

Emotet is a malware strain and cybercrime operation. It was one of the most prevalent threats in 2019.

In 2020 Emotet was deployed in a Microsoft Office template which simulates the need to be updated to add a new feature that will actually cause the malicious macros to execute.

If you want to learn more about Emotet attack flow, Click-here.

Deep Content Disarm and Reconstruction (CDR)

30x times faster than sandboxes

Deep CDR is on average 30 times faster than sandbox analysis and prevents malware (including zero-day) that has been built to evade sandbox detection.

Challenge with productivity files

94% of malware is delivered through email and the top malware filetypes are still office documents.

Although sandboxing and almost all other techniques depend on detection, instead our Deep CDR protects against exploits and weaponized content that has not been seen before.

Password-protected files? No issue.

The recipient is required to provide a decryption password so that Deep CDR and Multiscanning are applied. When attachments are scanned and sanitized, fully usable files are delivered to an optional isolated storage or the user’s mailbox.

100+ supported file types

Deep CDR can support 100+ common file types, ensuring each file is completely usable with safe content. Supported file types include PDF, Microsoft Office, HTML, and many image files. Language/region-specific file formats like JTD and HWP files are also supported. Check supported file types here.

Here is an example of the impact of Deep CDR:

Different infected files have been scanned with 37 anti-malware engines. According to the image above, our Multiscanning solution found different threats in each file.

The “Before sanitization” column shows how many anti-malware engines found the actual threat in the actual file, while “After sanitization” none of these threats was available.

OPSWAT Multiscanning

Conventional Email Gateways
MetaDefender Email Gateway Security

One misconception is that an email gateway with one single antivirus engine provides adequate protection for email security. According to our research, different anti-malware vendors have relatively long reaction times to malware outbreaks - thus a single anti-malware can detect only 40%-80% of malicious content.

MetaDefender Email Gateway Security offers advanced threat prevention and protection against malware outbreaks, initiated through email. It analyzes each email with 20 anti-malware engines that use signatures, heuristics, and machine learning technologies, resulting in a high-speed Multiscanning.

Heuristic / Machine learning technologies

Advanced threat prevention technology scans emails addressed to Zero-day attacks. The OPSWAT Multiscanning technology protects against malware outbreaks by reducing exposure time.