Why CISOs Need to Invest in Email Threat Intelligence
In today’s ever-evolving threat landscape, security professionals have invested in an array of cyber threat intelligence services to bolster internal security controls. However these intelligence sources focus largely on protecting the enterprise network and internal data assets. In the age of the customer, CISOs need to look to new threat intelligence sources that point to attacks targeting customers, the business’s ultimate revenue source.
Email threats targeting customers are a large potential risk with huge implications on the business’s ability to engage with customers and drive revenue. CISOs need a complete view into how cybercriminals are spoofing their company’s brand and where the attacks are coming from in real time. Email threat intelligence is the only solution that exposes the strategies and targets of cyber criminals in the consumer email channel. Here’s why CISOs need to invest in it:
Email Authentication Isn’t Enough
Email authentication standards like Domain-based Message Authentication, Reporting, and Conformance (DMARC) have been revolutionary in fighting phishing attacks. DMARC ensures that fraudulent activity appearing to come from domains under the organization’s control (active sending domains, non-sending domains, and defensively registered domains) is blocked.
But as email authentication protocols get more advanced, so too do fraudsters. There’s no doubt that implementing DMARC is a great first step. But it’s not a complete solution, protecting your brand from only 30% of email threats, according to research previously conducted by Return Path.
Defending against the other 70% requires a comprehensive understanding of the tactics fraudsters use to bypass email authentication. CISOs can gain that understanding with advanced email threat intelligence data.
Protecting the Email Channel Means Protecting the Business
Brands targeted by phishing face increased cyber insurance premiums and expensive investigations and remediation costs. In addition to the hard costs, phishing has negative implications on brand reputation. Customers are 42% less likely to interact with a brand after being phished or spoofed.
As CISOs work to align more closely with the business, they cannot afford to remain reactive when it comes to email fraud. To learn more about the tactics fraudsters use to evade authentication filters and how to expose them, download our latest Email Threat Intelligence Report.
About Adenike Cosgrove
Adenike (Nikki) Cosgrove is Senior Product Marketing Manager for Return Path's Email Fraud Protection solution. Before joining Return Path, Adenike was the lead EMEA Senior Advisor to security and risk professionals at Forrester Research, helping clients with their information and cyber security strategies. Prior to her role at Forrester, she was Service Head for Canalys's Enterprise Security services, producing analytical reports on a wide range of topics within enterprise security and vendor channel management.