ExchangeDefender Blog

The new ExchangeDefender LiveArchive has been very popular with our clients as a live email backup service. With backups typically being the last thing organizations want to spend their IT budget on, it’s no surprise that a free backup service that you own and can archive indefinitely would be compelling.


We’re trying to help our partners and clients roll out LiveArchive this summer and we would like to hear from you. We’re organizing our summer webinar series and this 3-minute survey would help us focus the schedule and content to serve you better:

Take a quick survey to help us tailor the content you want to see, click here!

To help as many of you get started as fast as possible, ExchangeDefender is considering several short-form or small-group interactive webinars several times a week during July and August. During these webinars, we’ll cover the basics of the service and help you actually complete the deployment of LiveArchive (it only takes a few minutes with the public cloud)!


What is Live Archive Email Backup?

ExchangeDefender LiveArchive offers secure backup, long-term archiving, and eDiscovery services for Office 365, Gmail, and cloud mail.

Sales Collateral? Yes! We have a Data Sheet, Live Archive Email Backup Advantage sheet, plus case studies!

In the fast-paced world of business, safeguarding your critical communication is non-negotiable. That’s where Live Archive Email Backup steps in, offering a comprehensive solution to address the evolving challenges businesses face today.

1. Security at the Forefront

Value the security of your business data with Live Archive. Safeguard your critical communication from potential threats, ensuring the integrity of your business information is maintained at all times.

2. Fortify Against Ransomware

In the battle against crypto-locking threats, Live Archive becomes your shield. Protect your email backups, ensuring your data remains accessible even in the face of a compromise. It’s the ultimate defense strategy for your digital assets.

3. Long-Term Email Preservation

Ensure the continuity of your business with Live Archive’s long-term email preservation. Back up and archive email data for extended periods, meeting regulatory and business continuity requirements seamlessly.

4. Budget-Friendly IT Solutions

Navigate the complex IT landscape with ease by choosing Live Archive—a cost-effective email backup solution. It provides robust protection without straining your IT budget, making security accessible to businesses of all sizes.

5. Storage Flexibility for Your Needs

Your data, your choice. Live Archive offers storage flexibility, allowing you to store your critical information on the cloud, on-premises, or both. Tailor your backup strategy to suit your business needs effortlessly.


Live Archive Email Backup is the key to unlocking peace of mind in your business operations. Prioritize security, accessibility, and longevity—choose Live Archive for a reliable and comprehensive email backup solution. Your data deserves nothing less.

In today’s digital world, protecting your Social Security Number (SSN) is crucial. Sharing it via email is generally discouraged due to the inherent risks of data breaches and phishing scams. So, can ExchangeDefender, an email security solution, make emailing your SSN safe? Let’s break it down:

The Risks of Emailing Your SSN:

  • Unsecured Connections: Even with basic email services, messages can travel through unencrypted connections, making them vulnerable to interception.
  • Human Error: Accidental mishaps like sending the email to the wrong recipient can expose your SSN.
  • Phishing Attacks: Deceptive emails disguised as legitimate sources can trick you into revealing your SSN.

How ExchangeDefender Helps:

While ExchangeDefender offers robust security features, it can’t guarantee complete safety for emailing your SSN. Here’s why:

  • Encryption Focus: ExchangeDefender primarily focuses on encrypting emails within your organization and with trusted partners.
  • Limited Control over Recipient Security: ExchangeDefender can’t control the security measures of the recipient’s email server.
  • Phishing Vulnerability: ExchangeDefender may not always catch sophisticated phishing attempts that target you specifically.

Alternatives to Emailing Your SSN:

Here are safer ways to share your SSN:

  • Secure Online Portals: Many businesses offer secure online portals where you can upload or enter sensitive information.
  • Encrypted File Transfer Services: Use file-sharing platforms like ExchangeDefender Web File Server, with strong encryption to send your SSN securely.
  • Fax or Certified Mail (if absolutely necessary): These methods offer a paper trail but might be less convenient.

Here are some additional tips:

  • Never share your SSN unless absolutely necessary.
  • Verify the legitimacy of any request for your SSN before responding.
  • Be cautious of emails requesting personal information.
  • Consider using a password manager to create strong, unique passwords for all your online accounts.

Remember, protecting your SSN is your responsibility. By employing a layered approach of security measures and avoiding unnecessary risks, you can keep your personal information safe.

PayPal phishing scams are a type of online fraud where scammers try to trick you into revealing your personal information, such as your login credentials or financial details. Here’s what you need to know:

Common Tactics:

  • Phishing emails: These emails appear to be from PayPal, often claiming urgent issues like account suspension, suspicious activity, or unclaimed funds. They pressure you to click on links that lead to fake websites designed to steal your information.
  • Fake websites: These websites closely resemble the real PayPal website, but have subtle differences in the URL or design. Once you enter your login details, the scammers steal them.
  • Overpayment scams: Scammers might send you an invoice or money request for more than the agreed price, claiming it’s an accident or for additional fees. They then ask you to return the “overpayment,” which is actually your own money.
  • Suspicious texts: Similar to emails, scammers might send text messages urging you to click on links or call fake customer service numbers.

Red Flags:

  • Generic greetings: Phishing messages often use generic greetings like “Dear user” instead of your actual name.
  • Urgency and threats: They create a sense of urgency by claiming your account is at risk or will be suspended if you don’t act immediately.
  • Suspicious links and attachments: Never click on links or open attachments in emails or texts from unknown senders, even if they appear legitimate.
  • Poor grammar and spelling: Phishing attempts often contain typos and grammatical errors.
  • Requests for personal information: PayPal will never ask for your login details or financial information via email, text, or phone.

How to Protect Yourself:

  • Never click on links or open attachments: Always verify the sender and log in to your PayPal account directly to check for any issues.
  • Check the URL carefully: Make sure the website address is the official PayPal website (https://www.paypal.com) before entering any information.
  • Ignore requests for personal information: If an email or message asks for your login details, credit card information, or other sensitive data, it’s a scam.
  • Report suspicious activity: Forward phishing emails to phishing@paypal.com and report fake websites to PayPal directly.

By being aware of these tactics and red flags, you can significantly reduce your risk of falling victim to PayPal phishing scams.


Need Phishing Protection for Your Business? Let us handle it for you, get 30 days free: www.exchangedefender.com

Running a small business is tough enough without worrying about hackers and email threats. That’s where ExchangeDefender comes in! We offer a straightforward solution to keep your email safe and your business running smoothly. We offer a security shield for your company’s email, keeping your information safe and sound.

Here’s how ExchangeDefender protects your small business:

  • Blocks bad stuff: Spam, phishing emails (the ones that try to trick you into clicking bad links), viruses – ExchangeDefender stops them all from reaching your inbox.

  • Keeps your data private: Need to send sensitive information? No problem! ExchangeDefender offers features like encryption to scramble that data so only the intended recipient can see it.

  • Follows the rules: Complying with data regulations can be a headache. ExchangeDefender helps you follow the law for both the US and EU, giving you peace of mind.

But ExchangeDefender isn’t just about security! It can also help your business run smoother:

Stop Wasting Time on Junk: Imagine an inbox free of spam and malware! ExchangeDefender filters them out so you can focus on what matters – real emails from real people.

Never Lose an Email Again: Need to find an old email? No problem! ExchangeDefender keeps all your emails securely archived, so you can access them whenever you need.

Share Files Securely: Collaborate with your team and clients easily with ExchangeDefender’s secure file sharing platform. No more worries about sending sensitive documents through regular email.

And the best part? ExchangeDefender is affordable for small businesses. We offer plans that fit your budget, and you can even try our service for free with a trial to see if it’s right for you.

On top of all that, ExchangeDefender is:

  • Easy to Use: No tech headaches here! Their interface is user-friendly, so you can manage your email and security settings with ease.

  • Always There for You: Need help? ExchangeDefender’s dedicated customer support team is always available to assist you.

ExchangeDefender keeps your email safe, your team productive, and your business running smoothly. What are you waiting for? Try our free trial today!

Last month we announced a major upgrade and expansion of our network to better serve our clients in a more challenging cybersecurity world. I’m sure you’ve seen many stories in the news about cyber attacks and how some groups and nations are expected to attack our critical infrastructure.

We can assure you that those threats are real and are ongoing in a very focused fashion. In order to prepare for a more massive attack, we’ve had to rely on some BGP routing magic to make ExchangeDefender far more resilient.

Make sure you allow inbound SMTP traffic from ExchangeDefender’s 65.99.255.0/24 (255.255.255.0) range.

This range has been in use by ExchangeDefender since 2003 so if you’ve followed our deployment guide correctly you should be all set. If you’ve chosen to deploy ExchangeDefender differently and have other scanning/security active on that range, you might see email delivery delays and failures. Easy fix, just add the whole class C.

What is happening under the hood is that all of our different data centers are routing traffic via the same 65.99.255.x range. Even if half of our data centers disappear due to a telecom or power event, we will be able to continue email delivery.

As you’ve seen over the past year, we’ve focused on Inbox, LiveArchive, and upcoming Replay features to improve security and reliability. Like you, we wake up every day to another Exchange/Gmail event/issue/policy/fubar and nobody likes losing email or the ability to communicate. This is why having ExchangeDefender around your email infrastructure is critical if email is critical to your organization. The new supernet has been routing messages for over a month with no issue and on Wednesday, May 15th we will make it available for everyone.

Protecting your digital world is like building a superhero team! Think of your budget as the resources used to train your team, buy gadgets, and build a strong defense. The better you allocate your budget, the stronger your team and the safer your digital world will be. This way, you can keep the “bad guys” out!

Think of your cybersecurity budget like a superhero team protecting your digital world. Here’s how your resources get allocated:

1. The A-Team: Your Cybersecurity Squad (39%)

These are the real-life heroes, the security analysts, incident responders, and engineers who keep the bad guys at bay. They’re like the Iron Man and Captain America of your digital defense.

2. The Gadget Guru: Security Software (28%)

Firewalls, antivirus programs, intrusion detection systems – these are the high-tech tools that constantly scan for threats, like a super cool Batman utility belt for your computer.

3. The Fortress: Hardware Security (Varies)

Firewalls, and secure routers – these are the physical barriers that keep intruders out, like your digital castle walls. Not the flashiest part of the team, but crucial nonetheless.

4. Training Day: Employee Awareness (5-10%)

Empowering your employees with knowledge about phishing scams and best practices is like giving them all mini Captain America shields. They become part of the defense team!

5. Calling in the Experts: Third-party Services (10%)

Think of third-party specialists as your cybersecurity consultants. They bring specialized skills for complex situations, like penetration testers acting as ethical hackers to uncover vulnerabilities.

Bonus Tips:

  • Industry and Size: Your budget might differ depending on your business type and needs. A small bakery won’t need the same defenses as a giant tech company.
  • Frameworks: Think of cybersecurity frameworks like blueprints for building a strong defense. They help you prioritize spending effectively.
  • Risk Assessment: Regularly check your weak spots and allocate resources accordingly. It’s like having your own superhero strategist!

Remember, a strong cybersecurity posture is an investment, not an expense. By understanding where your budget goes, you can build a powerful defense system and keep the bad guys out! Now go forth and conquer the digital world, with your awesome cybersecurity team by your side!


Looking for a cybersecurity provider for your small business? Let’s chat! Visit us at www.exchangedefender.com

At ExchangeDefender, we’re obsessed with keeping your clients’ emails safe and secure. That’s why we’ve just completed a massive network upgrade, designed to empower you, the IT Managed Service Provider, to offer unparalleled disaster recovery and enhanced security for your M365 clients.

Why the Upgrade? The Cloud Needs Saving Too!

Remember the good ol’ days of on-prem email outages? Well, guess what? The cloud isn’t immune!

  • M365 Outages Happen: We’ve all been there – clients waking up to a down Office 365 tenant. Scary stuff.
  • Data Loss Lurks: Lost emails due to strange glitches or language barriers (seriously, Croatian?) are a real threat.

Building on LiveArchive, we’re massively expanding our disaster recovery businesses due to increased demand for client protection on the Microsoft M365 network.

Our upcoming live mail caching service is here to save the day! We’ll cache copies of your clients’ emails for 24 hours, ensuring no email gets lost due to infrastructure issues. Need a message from the past day? Simply request a redelivery – problem solved!

Network Upgrade? More Like a Network Revolution!

To make Live Mail Caching a reality, here’s how we did it:

  • Open-sourced LiveArchive: This empowers you to deploy massive email archiving solutions for your clients on their own cloud.
  • Infrastructure Overhaul: We’ve upgraded nearly every switch, firewall, core router, and most of our backend to handle the massive data demands of live caching.
  • Network Failover on Autopilot: BGP magic ensures seamless service delivery across multiple data centers, automatically routing around network issues and regional outages. No configuration changes on your end are needed!

In the coming quarter, we’re excited to unveil all these new services.

While email remains a prime target for cyberattacks (not a good thing!), our core focus continues to be protecting traffic and identifying threats. However, our M365 clients are facing a surge of issues and are turning to us for solutions.

For instance, when Microsoft experiences delivery delays or mail latency problems, our ExchangeDefender Inbox service becomes the go-to solution for accessing critical OTP/MFA tokens.

Many clients have also adopted Inbox as their preferred webmail client due to its speed and lightweight design.

As Microsoft prepares to sunset Basic Authentication, many legacy SMTP services and mail-enabled applications will become inoperable. To address this growing demand for reliable and secure email routing and delivery, we’ve significantly upgraded our network and services this past quarter.

Email delivery problems happen.

With ExchangeDefender, however, these problems won’t impact your operations. That’s our unwavering commitment, and we’re thrilled to announce the expanded ExchangeDefender network is here to serve you and ensure the continued security of your email.


P.S. Sounds expensive and boy was it!! We’re in an era where any excuse is used to raise prices, so this might come as a bit of a surprise: There will be no change in pricing as a result of all these upgrades. Thank you for keeping us in business in our 4th decade and thank you for trusting us with your email.

ExchangeDefender has recently enhanced our MFA features (multi-factor authentication) to help you enforce domain-level MFA compliance and to make it easier for users to be enrolled and protected by a layered authentication process automatically.

Simply put, we’re making it easier for you to keep everyone protected.

Today we are announcing ExchangeDefender MFA support for custom authenticator apps. By now everyone is familiar with our typical MFA functionality, available under your Settings at https://admin.exchangedefender.com. Just scan the QR code on your device and you’re set!

BUT WHAT IF YOUR DEVICE DOESN’T HAVE A CAMERA?

ExchangeDefender now supports MFA app enrollment using a QR code. This is great for scenarios in which:

– You don’t have a camera on your device
– The QR code doesn’t seem to scan (problems with the camera or monitor)
– You want to use a text-based MFA app
– You want to integrate PowerShell/no-code with MFA
– You want to share your MFA codes with others

If you’re in one of those scenarios, note the text under the QR code when you start the enrollment:

Click on the Can’t scan? Show code link and you’ll get the TOTP secret (aka secret code, MFA code). Paste it in your solution and paste back the 6 digit code it generates. That’s it, you’re done. MFA is now enforced and ExchangeDefender will rely on the codes generated by your app to validate MFA and grant access to your account.

All our features come from user feedback so if there is something we need to be doing to keep you more secure please let us know!