Email Security Setup Guides on SolCyber Knowledgebase

Guide to DMARC, DKIM, and SPF

Mon, 01 Jan 0001 00:00:00 +0000

This article aims to provide a complete guide to implementing SPF, DKIM, and DMARC for your organization, and suggest the best practices for doing so. It is written in hopes that this will clear up confusion about what steps to take to achieve an effective DMARC deployment to secure business email and improve email deliverability.

A quick rundown on benefits of implementing SPF, DKIM, and DMARC:

stops email spoofing/phishing from your domain;
provides important information about the emails you sent, which can be used get all legitimate emails properly authenticated;
improves sender reputation and email deliverability; your legitimate emails are more likely to reach the inbox.

Target audience: marketers, brand owners, domain owners, domain administrators, IT administrators, etc. and anyone who wants to prevent attackers from sending malicious emails using their domains.

O365 Email Security Deployment and Configuration Guide

Mon, 01 Jan 0001 00:00:00 +0000

Phishing is the root cause of 95% of security breaches that lead to financial loss and brand damage. SolCyber uses Cloudflare Email Security (formerly Area1), a cloud based service that stops phishing attacks, the #1 cybersecurity threat, across all traffic vectors - email, web and network.

With globally distributed sensors & comprehensive attack analytics, Cloudflare Email Security proactively identifies phishing campaigns, attacker infrastructure, and attack delivery mechanisms during the earliest stages of a phishing attack cycle. Using flexible enforcement platforms, Cloudflare Email Security allows customers to take preemptive action against these targeted phishing attacks across all vectors - email, web and network; either at the edge or in the cloud.

Google Workspace Email Security Deployment and Configuration Guide

Mon, 01 Jan 0001 00:00:00 +0000

PhishArm Button Deployment: Office365

Mon, 01 Jan 0001 00:00:00 +0000

The PhishArm button (provided by Right-Hand Cybersecurity) is used to report suspicious email directly to the SolCyber SOC. The reported email will be sent as an attachment to the SolCyber SOC. The email will also be moved to the user’s junk folder.

Admin Configuration#

Go to Settings - Click Integrated Apps and Choose Upload Custom apps

Under Deploy New App select Choose how to upload app Upload manifest File(.xml) provided to you by SolCyber.

PhishArm Add-in Deployment: Google Workspace

Mon, 01 Jan 0001 00:00:00 +0000

The PhishArm plug-in (provided by Right-Hand Cybersecurity) is used to report suspicious email directly to the SolCyber SOC. The reported email will be sent as an attachment to the SolCyber SOC. The email will also be moved to the user’s spam folder.

Install Phisharm Plug-in For Entire Domain (or specific OUs)#

Log in to the Google Workspace Admin portal. In the left-hand menu, click Apps > Google Workspace Marketplace Apps > Apps List.

Utilizing the BEC List

Mon, 01 Jan 0001 00:00:00 +0000

Area1’s BEC (Business Email Compromise) list provides an additional layer of security to complement your email protection measures protects against these attacks by adding an attribute to any spoofed email messages matching the email addresses you provide. It serves as a valuable tool in identifying potential attackers attempting to impersonate high-level executives within an organization, with the intention of triggering malicious actions.

What is Business Email Compromise?#

BEC emails are a major concern for most companies, as they employ sophisticated phishing techniques that do not rely on typical indicators of malicious messages such as links or attachments. Instead, these emails exploit the power dynamics within a company by using the names of key individuals, esteemed customers, and even board members to deceive employees into carrying out fraudulent activities, such as unauthorized money transfers.

Text Add-Ons for Spoofs

Mon, 01 Jan 0001 00:00:00 +0000

Sometimes, emails identified as suspicious can be legitimate. This is a common case for emails that are flagged as a SPOOF. SolCyber does not quarantine emails labeled as “SPOOF”, however, we do recommend that customers add an extra layer of protection by enabling an optional add-on.

These text add-ons display in the subject and/or body of an email when a user receives an email that has been determined to be a “classic” SPOOF by Area1.