Phishing threats have increased 350% since March 2020. It is one of the most potent attack vectors, distributed by any application or medium:
Most Newly Registered Domains used for malicious purposes are very short lived - alive only for a few hours or a couple of days, sometimes even before any security vendor can detect it
Multi factor authentication was compromised a long time ago and cannot protect users' credentials
Threat intelligence platforms don’t always identify malicious URLs
Artificial Intelligence and Machine Learning are now being used to protect users from phishing and spear-phishing however they are still not as effective as they claim in protecting the end user from sophisticated attacks
Phishing is still the #1 unsolved issue in the modern world because of e-mail-only focus.
Phishing links are delivered via email, mobile phone text messages, social media platforms, web pages, or apps. The risk of exposed user credentials continues to grow with far reaching effects including data breaches, system compromises, loss of brand reputation, and financial losses.
DefensX solves phishing attacks at the right place – the endpoint. It protects the user from entering passwords to unknown and risky sites through a whitelist approach.
DefensX mashes up end-user consent, company policies, and threat intelligence to create a personalized cybersecurity posture by leveraging end users’ daily web experience. This unique approach increases cyber awareness, adoption of cyber practices and dramatically reduces the load on cybersecurity professionals.
End-user interaction and company policies provide the flexibility to maintain threat protection posture while enabling productivity. When the user clicks on a phishing link, DefensX checks the URL as per the users’ previous activity. If this is a first-time visit, Isolate blocks the password field and protects the user against credential exposure.
DefensX blocks known phishing sources and risky or uncategorized web pages with read-only mode or blocks them entirely as per policies set by the DefensX policy engine
Prevents phishing links by blocking the password input for the first-time login
Delivers “e-mail click to download” protection
Manages URLs that employees can enter corporate credentials
Keeps track of enterprise’s credential exposure