NOC STATUS


ExchangeDefender provides real-time alerts and information about our routine and emergency maintenance through our NOC Blog.

ExchangeDefender – ExchangeDefender Blog

Most Popular Products

EMAIL SECURITY

Services that protects your mail from spam, viruses, and malware.

ARCHIVING

Secure long term message storage and ediscovery reporting.

BUSINESS CONTINUITY

Constantly archiving your sent and received mail.

ExchangeDefender, at it’s core, is all about protecting our clients: it should come as no surprise that we are big fans of GDPR. If you haven’t been inundated by GDPR, or by a million “we’ve updated our privacy policy” emails from every web site you’ve ever signed up for, or you’ve landed here simply because the deadline is tomorrow, Friday, May 25th: rest assured we’ve got you covered.

ExchangeDefender is 100% compliant with GDPR. You are covered as are your clients on ExchangeDefender and we have presence across European Union to handle any issues or complaints that come up as a result of GDPR implementation.

What you need to know

GDPR, essentially (and no, this is not legal advice), is a European Union data privacy regulation that turns the tables on marketers and gives residents of EU very specific rights and control over their personal data. The regulation is very broad in terms of scrutinizing everyone that may be holding (controller) or managing/processing (processor) personal data and ExchangeDefender fits both of those roles at times depending on the product or service we’re talking about.

image

If you’d rather do without me talking at you for 6 minutes, we have a ton of other resources that you can share with your clients. I would start with this document available for download here:

image

 

What you need to do now

1. Start by reviewing our new Privacy Policy. I know, I know, you’re done with

2. Contact us if you’re seriously building out a business around GDPR and get our marketing folks to hook you up with branded collateral (minimum client count

3. Review our GDPR collateral, particularly the webinar with the deep dive of the ExchangeDefender implementation. This is the most important thing you could do but it’s 27 minutes long and I know everyone doesn’t have that kind of time or attention span – I get it – but if you’re seriously working with us and need GDPR assistance, you will have to go through the training eventually.

Where to go next

We are very excited about GDPR and have put significant resources to design our products and services around the regulation because we believe it will have a broad impact well beyond Europe. Privacy, data integrity, right to be forgotten, right to withdraw consent, right to find out what sort of information companies have about you – those are fundamental rights in our opinion.

And if you ignore them the penalties are going to be extensive.

What we’re choosing to do at ExchangeDefender is to create a service around protecting people on the Internet – not just from SPAM but really safeguarding all communication you do as a business. Take a look at our GDPR resources and see how we can get you started on the same path – at the very least you can use our reach and resources to comply with GDPR.

Signing up for the Compliance Archiving service is the first step in reaching regulatory compliance when it comes to email retention and eDiscovery. The following five steps will put you on the right path of achieving and maintaining that compliance:

 

1.Understand what you need to keep and for how long.

Your regulatory/oversight body will provide details about how long you are required to hold on to your email. In our experience with Compliance Archiving, you also need to pay attention to the Statue of Limitations that your business may be liable for. Very often the discovery process for lawsuits includes legal hold requests and record requests that are longer than regulatory requirement.

2. Get the right product and implement it correctly.

Your compliance has to be all encompassing – all email must be archived. With ExchangeDefender Compliance Archiving all of your inbound, outbound, and interoffice email is collected, archived and protected in the cloud. You can search for any document at any time and be certain that it has not been tampered with and that no emails have been deleted – something that sets our eDiscovery/archiving apart from backup solutions.

3. Keep an eye on it to make sure it works

Just setting up a compliance archiving solution is not sufficient enough. there is no protection for technical negligence in regulations. You are expected to keep your mail server and everything connected to it secure. Penalties for data loss, compromised credentials, and data leakage are severe and are not a valid excuse for not having compliance.

4. Create Compliance Officer reports frequently.

Compliance Officer within your organization must create reports on a monthly basis to assure no confidential information is allowed to leave the organization. Some industries have an even more specific and severe restriction on the type of communication that can take place over email and what sort of information can be sent – compliance officers run eDiscovery reports to assure nothing confidential is being shared and address problems and exceptions routinely

5. Routinely audit the entire system to maintain compliance.

Organizations grow and change over time and remaining compliant with new regulations is key. ExchangeDefender Compliance Archiving service often sends out advisories, best practices, tips and suggestions to adjust your process because you are always expected to be in full compliance with the latest requirements. Every time you add a new employee or change your mail server configuration or new lines of business – compliance must extend to cover these new records that may be of interest to someone down the road.

“One of the biggest mistakes organizations make with regulatory compliance is thinking that it’s a service, product or a one-time effort: quite the opposite!”

 

Achieving regulatory compliance means implementing the right product, conducting routine audits, complying with changes in regulations and having full control of the environment where messages are stored as employees come and go.

In the event of an audit, you will be asked to produce record and you will be judged on your ability to provide specific records that are requested, not the best effort you made in trying to achieve compliance. Considering the fines and legal complications, it makes sense to revisit the five steps outlined here annually and make adjustments as necessary.

ExchangeDefender is getting a completely new user interface and user experience. We are very excited to get this new UI in front of all of our users and I’m happy to report that the new UI will be live next week! Here is a sneak peak:

user_dashboard_tabsuser_sureSpam_reply

domain_dashboarddomain_configuration_policies

sp_management_accounts_show_userssp_theme_DARK_BLUE

To find out more, please watch the recording of the webinar available here.

In a nutshell: Our business is continuing to evolve into helping organizations communicate smarter and more securely. This is increasingly involving systems other than email and the traditional Exchange+Outlook solution is no longer enough to meet the requirements or regulatory reporting needs of businesses. Not to mention privacy, integration, reporting, audits, legal holds: all something organizations of all sizes come to ExchangeDefender to address.

At the same time, we realize that our partners need help addressing these challenges and we are here to help and augment your existing practice and solution set. Click here to download the webinar and please let me know directly if you see anything you desperately need!

 

-Vlad

CEO, ExchangeDefender

65% of all emails sent are spam, what’s the solution?

At ExchangeDefender we kill SPAM for a living. We spend a ton of time and energy identifying, filtering, and destroying junk mail. If you’ve ever wondered how you could make your email experience better, even without the massive layered security that ExchangeDefender provides, these are the steps you could take today:

1. Configure strict SPF/DKIM DNS records

SPF and DKIM (DMARC) can help you protect your domain name from being used in SPAM mailbombs. Spammers will often use real email addresses and domains to send forged “spoofed” email messages and SPF/DKIM provide a mechanism for identifying which email server/platform you use. By setting up an SPF/DKIM you can tell places that are receiving email from your domain what to do if the message wasn’t actually sent from you. If your inbox is full of email bounces and non-delivery receipts, someone is using your email address to send junk mail and an SPF/DKIM record will practically eliminate bouncebacks.

2. Get rid of generic email aliases
At ExchangeDefender we manually process SPAM complaints from our customers – that’s how we train our system to eliminate messages that otherwise make it through because they are legitimate in every way we can automatically process them. The number one way to get a ton of annoying email that may be on the borderine between legitimate commercial mail and an unsolicited one: generic email aliases. If you get info@, sales@, admin@ or so on, you are painting a giant bullseye on your Inbox and practically begging to be spammed.

3. Unsubscribe from newsletters
I know, I know, everyone that has your email address supports CAN-SPAM , would never send you unsolicited mail, would never sell their client list… and even if you believe all those lies most of the time, people still get hacked. All the time! As do their ISPs and infrastructure along the way. If you want to reduce the amount of junk mail you deal with, simply reduce the number of places that have your email address. Simple!

4. Don’t click on everything in your Inbox
Sometimes SPAM gets through. Sometimes dangerous stuff from your friends and colleagues gets forwarded around. Sometimes your antivirus isn’t up to date. Sometimes the firewall virus protection is misconfigured our expired. Things happen: none are a good excuse for the simplest thing you can do: avoid clicking on anything in messages that look or seem suspicious.

5. Do not blindly whitelist major ISPs
The second biggest source of SPAM complaints at ExchangeDefender is actually completely self-inflicted: people whitelist major email providers and wonder why blatant junk mail keeps on “slipping through” as whitelisted. Go through your whitelist entries in Outlook, etc and make sure you aren’t whitelisting Gmail, Outlook, Yahoo, Verizon, AT&T, Hotmail or any of the widely used and abused email domains. Spammers know your email admin doesn’t want to deal with complaints about messages you’re getting from these platforms so they treat them more leniently – so spammers simply abuse them.

It’s really that simple – following these steps will cut your junk mail pile in half within a day. If you want to reduce it to less than 1%, ExchangeDefender is here for you for less than a buck a month or you can layer it and add more protection if you need it because time is money: but no amount of technology and automation can replace just a little bit of common sense.

Federal Trade Commission
CAN-SPAM Act: A Compliance Guide for Business
The official website of the Federal Trade Commission, protecting America’s consumers for over 100 years.

We are very excited to announce the launch of the new XD Service Manager that will allow our partners and their clients a much friendlier way to manage their Exchange services. This is a complete rewrite of the code – frontend and backend – and we’ve taken all the feedback and made the beast much friendlier both for smaller accounts as well as for enterprise clients with tons of users to manage directly. The goal was to entirely remove the IT department and “the PowerShell guy” from the equation and put power user tools at your disposal to quickly and effectively make changes on the mass scale.

But first, the frontend – full rewrite – with new responsive UI and controls. Previous jQuery UI that has been hacked, tweaked and kicked along for years is being replaced by this UI that will work as well on the desktop as it does on any mobile device:

screenshot1

Navigation is in line with typical modern design you’ve seen in many other web applications with ability to filter, scope, search and quickly apply changes to multiple accounts.

Actions are context-based, meaning you will not be refreshing the entire page in order to get search results or do quick changes on multiple accounts. We’ve fully extended the Exchange feature set in the new UI giving you the ability to centrally manage all aspects of your Exchange service without having to go back and forth between different screens or modules (so in that regard, it’s even easier to deal with than an Exchange management console)

image

Finally, and perhaps most importantly, the new service is very end-user friendly. While 90% of the feature requests for the new service manager came from our power users that expressed a lot of frustration with the speed and accessibility of the portal, we needed to recognize the reality of who manages IT in 2018 – it’s no longer the IT guy or the IT department – users want to be able to take control of their public folders, distribution groups, forwarding, password resets and so on – so our design had to take that into account as well:

screenshot3

As you can tell, the new Service Manager is far friendlier and uses the same wizard approach in the end-user mode that they are likely very familiar with. Because we’ve done very strict implementation on the backend (with all the regulations we are now responsible for), it’s virtually impossible for them to make a mistake. Unfortunately for some of our unskilled IT folks this means no more “Password1” or “NoSPAM” or “Princess1!” as a password going forward but everyone will be experiencing far fewer problems as a result of it.

Better reporting as well – you’ll be able to get the full overview of configuration, who uses what, where they are at and so on.

The new Service Manager goes into Beta next week (last week of March 2018) and will run in parallel with the existing Service Manager (on the same site as https://support.ownwebnow.com) as we get more feedback from our entire user base – so don’t worry about this springing up on you as a surprise. You will see the new link on the Dashboard and will have the ability to access the new infrastructure from there. Both will continue to work for at least a month.

This is also the new UI framework for Shockey Monkey: which we have been working on for a year now. The same infrastructure, MVC, UI and upgraded backend are going to be driving ExchangeDefender, SM, XD and all other services which means that you’ll very soon be managing everything from the same look and feel that will be extended to your site as well. What it ultimately means is that the new UI will follow your branding and your color schemes and no matter where in the ExchangeDefender universe your client ends up, they will be dealing directly with your brand.

And we’ll be there in a live chat to provide support and help them out with every service.

Thereby ultimately managing the entire communications, collaboration and business management platform end-to-end. Very exciting times ahead!

-Vlad

CEO, ExchangeDefender

Attachment download: New Service Manager Partner Guide (pdf).

Hey guys,
Over the past two weeks we’ve been fixing some of the little bugs and initiating some error trapping to improve the overall experience within Exchange Defender. We’ve been focusing on error trapping the account creation stage, making it easier to set up accounts correctly, and other stuff of that nature.

Updates:

• Account creation will now check for aliases before submitting, if an alias for the email address you are trying to create already exists and is tied to another account it will notify you of an issue. We’ve also configured it to check Distribution Groups, External Contacts and everything else to avoid having problems such as those pop up on account creation.

• All columns in the Service Manager are sort-able by their names, email addresses, domains.

• The Distribution Group tab now alphabetizes the list of users to make it easier to search through and search for users that are added or need to be added. The list is divided, the top of the list is email addresses added to the user group and the bottom of the list has External Contacts that have been added to the Distribution Group (each one is organized alphabetically).

• We fixed a bug with the CC Expiration Date for card holders using the year 2020. It would revert the CC Expiration date to show 2018.

• The Spam Quarantine for users now has a few options to make checking, deleting, or approving spam easier. It also has had some visibility tweaks / improvements to the message description format.

• We’ve gone through and fixed some of the errant CSS Style errors that were prevalent on some of our lesser used webpages and fixed some of the branding issues that existed on some of the pages in the admin portal.

Today I’ve published an update for LocalCloud, which addresses a few issues that would result in a failure to upload a file. This issue would only occur under certain conditions and was only prevalent in large files It’s turns out this was a result of a known bug inside the .NET framework and how it handles event notifications for the filing system. In addition to resolving this bug, I’ve also implemented a few performance enhancements that should make the application run smoother.

Download: http://www.exchangedefender.com/software/XDStorage.exe

If you’re running a previous version make sure to uninstall it first. However, we’ve upgraded to a new installation platform and all future updates will be patched automatically.

lc_androidlc_iphone

Several months ago we added the LocalCloud feature set into our ExchangeDefender mobile application for both the iPhone and Android. Now you have the ability to access your files from your desktop, mobile workstation and practically any mobile device!

 

 

If you have never heard of LocalCloud, it’s a cloud based storage solution for documents. It recognizes multiple file types and is 100% compatible with office applications. You can share documents between computers and even allow other individuals access to your files. With multiple access points comes great responsibility, for this we have access control. This feature allows you or another individual to “check-out” files to prevent accidental overwrites while the data is exchanged in the cloud.

lc_desktop

Throughout the day we receive hundreds of requests for new services and  existing account modifications. Luckily we automated this process from a very early stage and this helped to prevent 99% of account provisioning errors. Believe it or not, there was once a time where everything was processed manually!

However on occasion when there is a hiccup, then it’s simple a matter of locating the source of the issue. While issues on our end are rather easy to diagnose and fix, it’s not always as simple  on the partner’s side. There can be a handful of issues that can arise if the account is not properly configured or contains an invalid parameter.

This is why we’ve implemented a well overdue feature integrated directly inside the service manager. If you select the drop down box next to any Hosted Exchange account, you will see a new option called “Check Configuration”.

check_address1

After selecting this option you will be brought directly to the “Check Configuration” page. It will automatically populate the email address from the previous screen and run the initial check. Also keep in mind that you are able to test other accounts without leaving this page.

It will perform several checks including: Syntax, Server Location, Provisioning, MX Record, Autodiscover and validates that the account is protected by ExchangeDefender. In the event an issue arises you have the option to either “Email” or “Open Ticket” which will automatically include the onscreen results.

check_address2check_address3

We believe that solving the issue promptly makes for a better long term relationship. So if there are any features or adjustments we can make to help smooth the transaction between you and your clients, don’t hesitate to let us know! Our support staff eagerly awaits the opportunity to speak with you about how we can continue to improve our process!

Over the years we’ve always had a desire to increase the aspects of reporting in several areas. However due to time restraints and prioritizing our efforts towards ensuring we made our platform completely stable and continuing to provide a rock solid solution, we had to defer until later.

This has been the case for the last few years. We all worked insane hours to ensure that everyone had an awesome product, that they would be proud to call their own! Now we are enjoying the fruits of our labor and focusing on creating more of the eye popping visual features that will really help showcase our product!

As a result, I’m proud to showcase one of our latest ExchangeDefender features.

While signed in as a (Service Provider) account, you can view the licensing page located under: Licensing->Management. Here you could see the total seat count for the desired domain at a glance. We’ve expanded this to also include the ability to list each individual account under the domains. This is a toggle-able option that is off by default to help limit the initial page load for those who don’t want the extra information.

XD Licensing

Not only that, you also have the ability to save and download a PDF of the current view. This has been highly requested by several users as to provide them the ability to keep archived copies of their seat counts each month for financial records. Other users have simply expressed the need to print these reports, which we have also implemented with one click access.

XD - Licensing 2

Lastly we understand that our partner’s clients also like to be kept in the loop about their spam information from time to time. Listed next to every domain is the ability to view and print the current SPAM statistics for that account. All of this information is simply one click away, quick and easy access to the information your clients want to see!

Stay tuned we’re working on even more exciting features to help ease the load of bringing a new client on-board and continuing to manage that account!

Over the past few weeks, we’ve improved some core functionality inside of our Outlook SMTP Security Platform. We’ve reviewed customer feedback on a few issues, features requests and overall usability. In addition to the software improvements, we’ve introduced a new feature available to all ExchangeDefender Pro customers (not available in Essentials).

Flag Robot

This new feature is called the Robot Filter. The feature allows for automatic processing of newsletters into a sub folder within your inbox. Messages that are deemed to match the extensive rule set are quickly processed and sent to this folder.

This works for existing (unread) messages and new messages that arrive after Outlook has been launched. Also if you come across a message that was missed, you can use the “Flag Robot” button to report that sender and catch future messages. Now when you come into work, you don’t have to spend hours going through your daily newsletters. However these messages will still exist perfectly save inside of the Robot Filter folder to be reviewed at your convenience. In the event you locate a message that you don’t want flagged, you may click the button that says “Always Inbox” to have the rules skip the designated sender.

You may also use the “Report Spam” anywhere inside of your inbox to quickly flag a message and submit the headers to us for improved filter results.

Use our product and if your not happy tell us how to improve, that’s all we ask!
Your feedback shapes our future developments, so tell us what you need.

GDPR - GET STARTED

Our readiness kit contains valuable resources designed specifically to help businesses with GDPR requirements.

DOWNLOAD OUR GDPR READINESS KIT

GDPR & WHY IT MATTERS

Download our webinar to find out how we comply with the GDPR requirements.

SEE OUR WEBINAR

CUSTOM GDPR COLLATERAL?

Looking for custom GDPR collateral or have questions for us? Contact us, We are here to help!

MORE INFORMATION