Inbound Email Security
Barracuda’s Advanced Threat Protection (ATP) combines behavioral, heuristic, and sandboxing technologies to protect against zero hour and targeted attacks. ATP automatically scans email attachments in real-time; suspicious attachments are detonated in a sandbox environment to observe behavior. In addition to blocking the attachment, the results are integrated into the Barracuda Real Time System providing protection for all other customers.
The Barracuda Essentials combats phishing attempts by combining anti-fraud intelligence, behavioral and heuristic detection, protection against sender spoofing (i.e., spammers spoofing valid email addresses), along with domain name validation to detect and block phishing attempts
As a complement to Barracuda Essentials, Barracuda Sentinel is the leading comprehensive AI solution for real-time spear phishing and cyber fraud defense. Delivered as a cloud service, Barracuda Sentinel combines a powerful artificial intelligence engine, account takeover protection and domain fraud visibility using DMARC into a comprehensive solution that protects people, businesses, and brands from spear phishing, impersonation attempts, business email compromise (BEC), and cyber fraud.
The Barracuda Essentials leverages the cloud for dynamic, real time threat analysis, attachment sandboxing and URL protection to prevent malware from affecting email users.
Anti-phishing also includes Link Protection. A popular method that attackers use to deliver malware relies on URLs that contain malicious code, which can be invisibly downloaded and can trigger a much larger attack. Link Protection automatically rewrites these URLs so that the Barracuda Essentials for Email Security can sandbox the request at click time to block malicious links.
More sophisticated attackers make clever modifications to URLs so they look genuine, but are not. The most common technique is omitting letters or using convincing “typos” that even users who check URLs before clicking often miss. Barracuda’s Link Protection includes typosquatting detection, which automatically identifies and redirects these URLs to our sandbox at click time to block malicious activity.
With a long-standing heritage in spam protection, Barracuda Networks remains the leader in identifying and blocking spam. A comprehensive set of security layers ensures that organizations remain productive in the face of evolving threats.
The Barracuda Essentials for Email Security leverages Barracuda Central to identify email from known spammers and determine whether domains embedded in email lead to known spam or malware domains. It leverages many of the same industry-leading techniques found in the Barracuda Spam Firewall that protect against attempts to embed text inside images with the intent of hiding content from traditional spam filters.
As virus attacks become more sophisticated and complex, email infrastructure requires advanced virus protection. The potential for the destruction and release of information or the disruption of a network severely impacts productivity and can lead to financial loss.
The Barracuda Essentials for Email Security scans email and incoming files using three powerful layers of polymorphic virus scanning technologies. It also decompresses archives for complete protection. Powerful virus definitions are automatically updated to maintain the most up-to-date protection against email-borne viruses.
Not every attack is focused on planting a virus, or getting users to send their credit card number or to click on a malicious link. Often, the objective of the attack is focused on disabling a network or mitigating its effectiveness. As a cloud-based service, the Barracuda Essentials for Email Security is positioned to stop spammers before they overload an email server.
Outbound Email Security
Outbound filtering prevents organizations from being put on spam block lists and prevents outbound attacks originating from inside the network. Employees can inadvertently cause internal systems to become a source for botnet spam. Using a subset of its defense layers, the Barracuda Essentials for Email Security’s outbound filtering stops outbound spam and viruses.
Your emails can travel through many different servers before they reach the intended mailbox. Barracuda Essentials secures your mail by encrypting it during transport to the Barracuda Message Center, encrypting it at rest for storage in the cloud, and providing secure retrieval by your recipients through HTTPS Web access. Data in motion is secured via Transport Layer Security (TLS), and data at rest is secured via AES 256-bit encryption.
If you are sending a sensitive email, you can manually mark it for encryption. However, you can also create a policy to automatically encrypt emails based on their sender, content and other criteria. Encryption policies ensure that your organization complies with regulations designed to protect customer data, such as HIPAA.
Outbound filtering keeps sensitive data from leaving your organization while simultaneously ensuring that legitimate emails are delivered. At the same time, outbound filtering also blocks outbound spam and viruses, preventing your employees or other infected clients from inadvertently sending malicious email, as well as keeping your mail server IP addresses and domains from being listed on spam block lists.
Employees can inadvertently allow their email to be used for botnet spam. The outbound filter stops outbound spam and the spread of viruses.
Administrators can also create and enforce content policies to prevent sensitive data such as credit card numbers, social security numbers, HIPAA data, customer lists, and other private information from being sent by email. Policies can automatically encrypt, quarantine, or even block certain outbound emails based on their content, sender, or recipient.
Simplified Email Management
Barracuda Essentials is integrated with the Barracuda Cloud Control web-based management portal, which leverages Barracuda’s global cloud infrastructure and provides a global view to centrally manage all of their Barracuda devices and services through a “single pane of glass” interface. Barracuda Cloud Control also allows administrators to centrally manage policies and configuration. The simple interface makes it easy for organizations to implement and manage the service with minimal IT overhead.
By integrating end-user security education and training exercises into the Barracuda Email Security technology, users that click on malicious links are taken to a landing page where they can take training exercises to understand what they did wrong and how to avoid repeating this mistake moving forward. The exercises run about five minutes and take the user through a course to understand who is behind these attacks, what to look for and a test to ensure they can apply what they’ve just learned.
Our email protection leverages Barracuda Central to identify email from known spammers and determine whether domains embedded in email lead to known spam or malware domains and is continually updated with intelligence on the latest threats across all threat vectors. Barracuda Central is our 24×7 centralized threat intelligence gathering organization, where the latest threats across all vectors are analyzed and added to our extensive databases. Over 170,000 organizations worldwide provide intelligence to Barracuda Central, and our email security is updated on a continuous basis.
Office 365 makes email management simpler than on-premises solutions, but you first have to get your legacy emails to enjoy the benefits of cloud-based email access. For most organizations, this means a cumbersome process locating countless emails in disparate PST files and migrating them to the cloud.
Barracuda PST Enterprise is available as an option to automate this process. PST Enterprise will automatically discover PST files on network servers and end-user systems and migrate this data to an archive or to Office 365. This gives IT administrators control over email data scattered across their organization. With all of your emails migrated to a single database, you minimize the risk of losing important emails and reduce the ongoing costs and support IT requirements for Compliance and e-discovery.