ExchangeDefender Blog

We have been working on something cool based on the feedback from our clients. It’s a multi-platform app (Windows, Mac, Linux) that reminds you to check your SPAM, and when you do the message is just one click away – making it just as productive as Outlook & Outlook Web App.

It’s also a lot more secure.

Our portal remains the #1 way clients interact with ExchangeDefender at Most people already have it bookmarked. But for those that need a little extra push, a reminder (every 5/15/30/60 minutes) that there is SPAM waiting, a desktop notification, a secure way to access, read/reply/forward/delete the message – for you we have the ExchangeDefender SPAM Manager app:

ExchangeDefender SPAM Manager App

If you have users relying on the legacy ExchangeDefender Quarantine Email Reports, this is it’s new secure version.

We are currently wrapping up beta testing the app across all three platforms, if you’d like to take a look please open a ticket at and we’ll send you the link!

The modern workplace needs a secure file sharing app, try Web File Share for free!

When file sharing via the cloud became the norm, it revolutionized how we collaborated, and how we got business done. File sharing enables numerous people to have access to the same file(s), and be able to read, view, modify, or print it. Storage included, file sharing allows you to share files with anyone, and is the most common way to share large files. The increase ease of collaboration has made it easy for us to forget that the information we share at work must be handled with great care due to its sensitive nature. To make sure you’ve got the essentials to share safely, we asked our file sharing professionals what they think is most important when it comes to sharing via the cloud with others.

#1 – Use a secure file sharing platform

This tip is probably the most important. You’ll want to choose a secure file sharing service that is enterprise-grade had offers end-to-end encryption. This level of security will keep hackers away, and prevent them from stealing or viewing your data. ExchangeDefender’s professional file sharing software allows users to upload, manage, and share files securely using 128bit encryption for data protection. It also offers security settings for users, and advanced security controls for administrators.

#2 – Set permissions on your files and folders

It is crucial for administrators to control access to files and folders that include both important business information, and confidential client information. A good file sharing platform will allow you to apply restrictions or rules to files or groups of people. This will limit the information from being viewed or shared by the wrong individuals. Essentially, admins can control access by creating restrictions as to what a user can do, like the ability to view, download or delete files. ExchangeDefender Web File Server enables you to password protect a library, set automatic expiration dates, and even receive email notifications when new files have been added by coworkers, or downloaded by your clients.

#3 – Always check the file activity

Just like you check your bank account daily, or every few days – you’ll want to check the activity occurring inside of your file sharing software. Make it company policy to run an audit on your files weekly to see who has been accessing company resources. Reviewing your library frequently will allow to stay on top of the permissions you’ve set, and also determine whether certain files are no longer needed. A great file sharing system should give you detailed access to security and activity logs – this way you can instantly know who did what, and when.

#4 – Train employees on how to share

No doubt you’ll want the actual software to be easy to use, and the ability to quickly adopt for the whole organization. The next step after is to train and educate your coworkers on the importance of file sharing sensitive information at work. There are many risks associated with mishandling confidential information that could cause the company, or your client a lot of damage. Be sure to create clear rules on appropriate ways to share information with external parties. A good way to get everyone on board, is once you’ve invested in a secure file sharing software of your choice, have a lunch and learn together and go through the main features and daily functions you’ll be using.

#5 – Keep it in the cloud

At this point, everything that’s new is located in the cloud and its for good reason. The Cloud makes things easy, much easier. A quick implementation is crucial for the office, and a cloud solution is the way to go to make that happen. The right file sharing service will provide your workplace with the perfect setup that is easy to use, manage, and experience growth.  

ExchangerDefender Web File Sharing makes it easy for teams to share documents without having to rely on email, or old file servers. Try for 14 days free!

Law firms are having a hard time adopting new technologies, and it’s causing them to become soft targets for hackers. The legal industry is vulnerable to cyber-attacks more than most other industries for several reasons. To be fair, 7 out of 10 businesses are unprepared to deal with a cyber-attack. For cyber criminals, the legal sector is a very lucrative target – and today, we’re going to explore the main reasons why cyber-attacks are on the rise.

Cybersecurity is not a priority

First, law firms have not really taken cybersecurity that seriously, it is more like an after-thought despite the rise in cyber-attacks. It’s not that lawyers don’t believe in security; it is just that it is not currently a priority. The cyber-attacks that are used the most against law firms are ransomware, malware, phishing scams, data breaches, and hacked email accounts. Hackers know that lawyers make great money, and would pay any ransom to get their data back to save their practice. Phishing scams are rising incredibly this year due to its success rate of stealing login and account information. Data breaches are normally a result of a hacked email which has been accessed (in many cases) by phishing scams, or superficial passwords.

Valuable information is worth stealing

Second, law firms handle a lot of sensitive information, and often information that could be incriminating. Imagine large quantities of valuable and quality documents filled with business strategies, financial information, and health information available at the fingertips of a cybercriminal. For hackers, law firms hold a gold mine of information that can be resold on the black market for high profit. Unfortunately, only a third of lawyers use an encryption software to secure their information. Only 25% of law firms use two-factor authentication to verify user identification.

Their website is not secured

Have you ever gone to a website and realized that it was “unsecured”, and got this uneasy feeling? When a website is not secured, it is not providing a secure connection to its visitors. Unsecured websites are prime targets for hackers because it’s easy to infiltrate or intercept information that is transmitted through the website. Legal firms with websites that are labeled “unsecured” should immediately fix this issue by gaining an SSL certificate, to ensure an encrypted (secure) connection.

Untrained employees

The likelihood of an untrained employee opening a spear-phishing email is about 70%. This staggering majority makes it easier for hackers to gain access to valuable information. In fact, it is one of the biggest threats to any law firm as 90% of all data breaches are caused by an employee mistake. It is critical that the legal industry makes security training a priority, since hackers target a firm’s weakest link – its people.  

Looking to secure your law firm? Discover ExchangeDefender PRO – our advanced email security suite that protects against email-borne threats and advanced attacks.

There are tons of risk factors when owning a business, and one of the least prioritized is that of cybersecurity. Small businesses are the prime target for hackers because they have the least resources, and least awareness for the need for security. About 50% of all cyber-attacks target small businesses specifically because they are deemed as “soft” targets. Whether you land a new client or not, it is important for us as managed service providers to stress the importance of security by sharing tips on how to protect a business – no matter the industry.  

Get protection (Security)

Many small businesses don’t have a dedicated IT person or department to handle the technology aspects of the business. The best advice is to find an affordable cyber security service that can provide protection against cyber threats such as phishing emails, viruses, and malware. Getting an enterprise-grade security suite will combat identity theft by blocking phishing and spoofing, by adding authenticity to your mail messages, and by eliminating worthless traffic from your inbox. A great email protection should be compatible with all major email service providers – including Office 365, on-premise Exchange, and G-Suite for Business. A managed service provider can provide a multi-layer approach to provide the strongest defense to protect your business.

Think before you click (phishing)

In 2020, the FBI named Phishing as the most common type of cybercrime to affect businesses, doubling from the years before. It is not that your employees are haphazardly clicking things in their email. (Although this happens occasionally too!) They are being duped by cleverly made emails presumably sent by reputable companies that we normally trust. What is important to note here is the trust factor – users become victim to phishing scams by emails that appear to be coming from amazon, google pay, and even Microsoft.

To combat Phishing, you’ll want to get Phishing protection – it is normally included in any enterprise-grade email security suite, like ExchangeDefender PRO.

Change your passwords (frequently)

You have heard this a million times, we know – but it is extremely important. We tend to use the same 4 or 5 passwords over and over for our login credentials. These weak passwords can have serious consequences for a small business, and is normally a precursor for a data breach.

The solution for this is simple, a password manager. A password manager is a secure, encrypted app that keeps tracks of your passwords for different websites so that you don’t have to remember them on the spot. A password management solution would allow you to create super strong passwords that are longer than eight characters, making them harder to guess, and even harder to hack.  

Get encryption (keep your data secure)

As a corporate encryption provider, we fully understand that business have a hard time understanding the dire importance of securing their data. The way we pitch it is: would you still have a business if all of your company and client’s information got exposed to the public? We’re talking financial information, health information, business strategies. In most cases, our clients say ‘absolutely not!’. The main reason why businesses don’t use encryption is because they think it would be too hard to actually use, and to implement. The good news is that – this is simply not true! Protect your organization, and protect your customers, get encryption today.

Backup your data (emails, files, documents etc.)

Recent surveys revealed that 51% of businesses questioned had no disaster recovery plan whatsoever to combat the coronavirus. Do you have a backup plan? It is crucial that you Save, and store your data somewhere safe. Most companies without a business continuity plan who suffer a major data disaster go out of business within twelve months. All of your communications, your company emails – should be stored in a long-term, tamper-proof storage for compliance and backup reasons. Company files and word documents should be stored in the cloud, with unlimited storage and 24/7 secure access. You’ll want to sign up for a file sharing software for business that is affordable, and easy to use – we recommend Web File Server.

Try Wrkoo right now for free –

In our fast-pace world full of technology, customers want you to deliver impeccable customer service online. To make things even more pressing, the modern consumer expects immediate response to their support issues or service requests. ExchangeDefender created a client support software called Wrkoo, that helps small businesses manage all of their daily business and support activities in one place. Today, we wanted to share with you the five top reasons why Managed Service Providers are using Wrkoo, over other customer support software on the market.

#1 It’s totally free (save money!)

First, let’s start with the fact that it costs $0 for this software. There are no monthly or yearly costs to using Wrkoo. What’s the catch? There is none, our sole mission is to help other service providers boost their support operations. Customers that are happy with your service, and your support – will be paying customers for a long time.

#2 Solve problems faster

Wrkoo enables you to manage all customer interactions and monitor your team activity in real-time on the dashboard. It is equipped with an intuitive ticketing system, advanced security, and is highly customizable to best reflect your brand. The seamless platform is able to process a high number of support requests without having to increase staffing levels, or the cost of support. Wrkoo offers you the luxury of staying up-to-date of what’s happening with support by using an online dashboard that is accessible from anywhere. Ultimately, it provides all the right tools to quickly resolve your support inquiries, while being budget friendly.

#3 24/7 Access from anywhere

Manage your employees, and get work done together from anywhere. Wrkoo consistently keeps pace with the increasingly ever-changing environment. Our mission is to help organizations communicate safely, securely and get their work done, quicker. Full access to the support portal empowers businesses to minimize communication hiccups, one agent at a time. 

#4 Promotes Easy Communication

Wrkoo enables the ability to communicate company information with individual clients, and employees all at one time. For example, the Announcements tool manages company communication in seconds. It promotes interactions between your company and customers. Everyone is up-to-date on service announcements. Its’ super easy to create an announcement while inside the portal. Simply select the ‘Announcements’ tab in your sidebar, then click on the ‘create new’ button.

#5 Real-time, real reporting

Like a Big Brother, Wrkoo tracks every action from every employee every day.  Reporting equals transparency and accountability – two critical components of every successful business. For every support request submitted, each employee gets an email and desktop notification. All interactions between your company and your client reside within the portal are automatically saved. Ticket activity logs are available to view every agent and system activity. Wrkoo’s time-tracking feature keeps track of the time spent by agents per ticket. Even more, the Punch Clock feature logs when employees’ clock in and out for work by using the punch clock tool.

Wrkoo aims to empower managed service providers by creating a secure, central location to manage business and support activities. More importantly, we want to save MSPs money by offering a support software absolutely free of charge.

Sign up for Wrkoo now!

Boost your service offerings with ExchangeDefender!

You’ve established your business and the services you are offering, now comes the process of selling.  You may be asking yourself how I can boost my service offerings.  Well, here are a few things to consider:

— Announcing your service portfolio in a way that emphasizes the benefits to increase the interest of the potential customer base.

— Building your brand perception will enable your business to generate awareness and promote the product or service simultaneously. 

— Presenting XD products/ services electronically can be achieved effortlessly.

ExchangeDefender has a new exclusive offer to boost your cloud technology stack within minutes! Simply download product sheets on each XD product page. The information included spells out products that you can easily share with prospective clients. You can also submit a marketing request to get those product sheets branded with your company logo. All for Free!

ExchangeDefender has recently launched an “Official Partner’ logo, designed exclusively for our current partners to display as they wish. You can also use the partner logo when making posts on your MSP social media. This could be attached to product specific offerings or showcasing the third-party vendors that you currently are in partnership.  A partnership with ExchangeDefender means you can offer the best services to your clients and grow your business at the same time.  

To increase your sales opportunities, it is important to explore new services that you can introduce to expand your MSP business. Currently, partnering with ExchangeDefender means that you can offer the following IT solutions:

Email Security

ExchangeDefender PRO provides a multi-layered defense against email-borne threats like SPAM, viruses, malware, spoofing, phishing, and more.


Enterprise-grade encryption services that enable users to send and receive encrypted messages by email, url, or sms.

Email Compliance (HIPAA /GDPR)

ExchangeDefender Compliance Archiving assures full archiving of all inbound, outbound, and internal email for regulatory compliance.

Email Continuity

Live Archive, our email outage protection solution lets you resume work after a service interruption, or other technical malfunction.

Secure File Sharing & Storage

ExchangeDefender Web File Server is a professional file-sharing software that offers secure sharing, and management of business and client information.

SMS Text Forwarding

ExchangeDefender SMS Proxy is a virtual number that delivers SMS/TXT messages to your phone, email, Slack, or Teams.

Interested? Let’s take your business to the next level together, by making higher profits, reap monthly proceeds, and enjoy easy setup and service management.

Become a Partner today! or Request a quote!

Today, we are excited to showcase our brand new feature: Bulk Mailer Policy. This new feature was first announced last week as part as the new release of ExchangeDefender Advanced Features and Policies. (It is available to all of our ExchangeDefender PRO clients.) Bulk Mailer Policy simplifies process of blocking or allowing mail from bulk mail operations that are increasingly used by developers and hackers alike to relay mail.

Bulk mail operations, such as AmazonSES and Sendgrid, are large scale SMTP networks designed to enable developers to reliably deliver and manage email subscriptions. As such, bulk mailers generate a new sender email address (envelope-from) that the mail would bounce to if the message could not be delivered for any reason. Every time an email goes out a new sender bounce email address is created by the sender – solely for tracking the delivery and activity of that one message. Long story short, it makes it very frustrating to build a policy against something that is random and changes often.

ExchangeDefender Bulk Mailer Policy simplifies that process by maintaining a list of IP addresses the network is using (as defined by their SPF record) to relay messages. There are three options:

Scan – This is the default policy; every message is scanned by ExchangeDefender for SPAM content and it gets flagged as SPAM/SureSPAM if it looks like SPAM.

Allow – This policy will result in ExchangeDefender not scanning any mail from this network for SPAM content (viruses, malware, etc are still considered) and delivering it automatically.

Block – This policy will result in ExchangeDefender automatically labeling the message as SureSPAM.

The Bad:

Bulk mail sending networks have minimal requirements for subscription/use, and many are actively abused to relay dangerous content.

The Good:

The main benefit of this feature is that ExchangeDefender is actively tracking IP address blocks associated with each network, minimizing the amount of time IT has to spend managing allow/block policy.

ExchangeDefender Advanced Features & Policies are available at and should be setup and managed by a competent IT staff that can manage the entire scope of the policy. The issue with bulk mailer networks is that they are massive, easy to access, and often tied into shared hosting environments that are frequently compromised – what makes them convenient is what makes them dangerous. Unfortunately, if your 2FA/OTP or web site developer uses such networks, you have no choice but to allow the traffic through, and ExchangeDefender makes that easy! We make it just as easy to block them. Whether it should be enabled or disabled, and how, is something that each organization will have to assess and consider along with other cybersecurity policies that need to be in place.

ExchangeDefender is pleased to announce the launch of Advanced Features and Policies, available to all our clients at These advanced features are meant to help sophisticated IT personnel establish policies for unique business case scenarios, and better protect their clients from email threats.

Advanced Features & Policies features are available on the Domain Admin section of our administrative portal at All features are disabled by default, due to their complexity, and must be enabled by the Domain Admin.

ExchangeDefender Advanced Features & Policies

Note about support: ExchangeDefender technical support is available to assist with these features 24/7/365 at We are always happy to help point our clients in the right direction when considering these features. We do not provide troubleshooting or policy analysis for these features, however, as many of these features will by design enable ExchangeDefender to override established IT security best practices. We don’t recommend them, we do not support them, but as always we will attempt to help out and secure the client.

Features at a glance:

Infected Attachments – This policy enables Domain Administrators to allow users direct access to infected or blocked email attachments.

Charset Blocking – This policy enables Domain Administrators to block emails with specific character sets from reaching the Inbox.

Bulk Mailer Policy – This policy enables Domain Administrators to override ExchangeDefender scanning for top 10 mass mailing networks (AmazonSES, MailChimp, Sendgrid, etc)

Display Name Block – This policy enables Domain Administrators to block messages with specific sender  names from reaching Inbox.

Secure Web Form – This policy enables ExchangeDefender Encryption clients to receive secure/encrypted messages from third parties.

All of these features were developed with the help of our partners and clients who were experiencing unique issues that ExchangeDefender and other cybersecurity solutions/devices do not address. The hackers are advancing faster than IT can cope and we hope some of these features are as helpful to you as they were to other clients of ours that just needed to “make things work” and ExchangeDefender is always easy to reach.

As we continue to build ExchangeDefender we anticipate to introduce more Advanced Settings that would enable Domain Administrators to build a more powerful security wrapper around their email experience. To get more information about these features please watch our last webinar (available at where our CEO explains the motivation and implementation scenarios.

Cyber attacks and the stealing of sensitive data has been big business for hackers and cybercriminals. Especially due to the disruptive covid-19 pandemic that has pushed workers to work from home. The BYOD strategy has caused major concerns for businesses, and to the Managed Service Providers who are hired to protect them. It is not all bad news though, with the introduction of an advanced email encryption software. Today, more security layers are needed to be put in place in order to protect business data and communications.

Email Encryption: A must have

Let’s first talk about the (obvious) reasons as to why SMBs need email encryption. Firstly, to have the ability to securely share sensitive information. When using email, its not as secure as you would think, and offers no real privacy. Of course, we would need encryption in order to avoid data leaks that could ruin a small business. Whether its financial records, client information, or confidential information – all are at risk of being nabbed by hackers. Email compliance is crucial, especially for businesses operating within the EU, or doing business with those that are a part of the European Union due to GDPR regulations. SMBs that are caught violating GDPR requirements when it comes to protecting user information could be subject to major fines. Businesses have to be mindful when selecting an encryption software. The right software should be able to meet all, or most of the requirements set by the organization. It’s not just about price, there are plenty of factors that SMBs will consider when choosing the right service.

Businesses have to be mindful when selecting an encryption software. The right software should be able to meet all, or most of the requirements set by the organization. It’s not just about price, there are plenty of factors that SMBs will consider when choosing the right service.

Top 10: What clients want

We have researched the top 10 features that your clients are looking for when making their decision on encryption solution.

1 – The service must be easy to setup, preferably a cloud application. Also, there should be no real training required.

2 – It must work well with all email service providers and on all devices with wifi access.

3 – The encryption software must meet all compliance requirements set forth by both U.S and EU regulations.

4 – The service must be able to offer zero-step encryption. (The ability to auto-detect sensitive information.)

5 – Granular access controls, particularly the ability to control the expiration of the message, as well as the ability to revoke any individual message to any one specific individual.

6 – Advanced Reporting – they want to know the who, when they opened it, and what they did with it.

7 – Secure web forms templates. Particularly for law firms and medical offices.

8 – Seamless recipient experience – how their clients perceive them and their sensitive data is very important.

9 – Pre-defined policy rules “filters” – available healthcare, financial, state, and education.

10 – Branding : the ability to add custom branding to the secure messages.

We’ve accepted more partner program applications this year than in 2020 – which is great news! Let’s be real though, 2020 was our apocalyptic year with the rush of Covid-19 sweeping the U.S like an invisible tsunami. It was normal to see our new partner requests diminish to double digits given the way business had come to a complete halt. However, we are happy to announce that our numbers are rising in 2021 – and should be returning to “normal” within the year. Side note: Our consulting services has seen a 40% increase due to the nature of remote-working with businesses needing help setting up, and securing their offices from home.

Today, we wanted to focus on the core solutions that ExchangeDefender currently offers for business in 2021. This will include any new features or upgrades that have occurred within the past year.

Let’s talk about Email.

ExchangeDefender offers Hosted Exchange, a full-service email for business that is hosted, monitored, and managed by our email experts. The enterprise-grade email features 50GB storage, advanced search, and data loss prevention. Hosted Exchange 2019 means more security and reliability for email. It is now easier than ever to provide users with the right email, to stay productive. Thousands of organizations around the world trust in ExchangeDefender daily for their business email and security needs. Why? It’s affordable, offers real-time monitoring and technical support, and meets requirements for email compliance. For Hosted Exchange pricing, please see your 2021 partner guide, or submit a ticket for update prices.

Email security is our bread and butter.

We love speaking our Advanced Email Security solution, ExchangeDefender PRO. Simply because it is the gem of all of our solutions, and is the reason why we service thousands of clients. ExchangeDefender Advanced Email Security provides a multi-layered defense against email-borne threats like SPAM, viruses, malware, spoofing, phishing and more. ExchangeDefender protects your email from viruses, trojans, malware and spyware in four major ways: first, by providing multithreaded protection using six different commercial antivirus engines. Second, by stopping identity theft by blocking phishing, third by adding authenticity to your mail messages, and fourth by eliminating worthless traffic from your inbox. Yes, it is compatible with all major email service providers – including Office 365, on-premise Exchange, and G-Suite for Business. Learn more about ExchangeDefender PRO, there are plenty of more features to explore.

Email Archiving is for long-term storage.

Our Compliance Archive solution enables organizations to keep business emails secure and compliant with tamper-proof email archiving. Compliance Archive provides secure, long-term storage, recovery and eDiscovery system that assures compliance with regulatory requirements established by IRS, FINRA, HIPAA, SOX and SEC. The solution holds up to 10 years’ worth of email for regulatory compliance, and messages are always accessible. ExchangeDefender offers unlimited storage in the cloud which reduces the need for more storage, and also drastically reduces the risk of data loss. ExchangeDefender helps organizations achieve email compliance using the latest technologies to archive, index and replicate company messages safely and securely. See more benefits of our email archiving solution.

Data Encryption, our rising star.

ExchangeDefender Corporate Encryption software lets you easily send and receive encrypted messages by email, url, or sms text message. It is easy to use, can auto-detect sensitive data, and offers real-time reporting. Our Pattern-based encryption can detect credit card numbers, social security numbers, dates of birth, and other account-specific data. It also prevents data leaks by letting organizations configure their own lexicon dictionaries with specific words and word patterns that can trigger encryption mechanisms and protect from data leakage. ExchangeDefender email encryption integrates easily with our email hosting solution, and is compatible with all major email service providers – including Office 365, on-premise Exchange, and G-Suite for Business.

File sharing plus unlimited storage, can’t beat it.

Web File Server or “WebShare” is our file sharing solution that is built for modern workplace sharing and file storage. It is perfect for businesses that are still working remotely as it offers secure sharing, and management of business and client information. Imagine a central location to securely sync, store, and share files located in the cloud and accessible (securely) from anywhere. The service features unlimited file uploads, and recipients along with unlimited storage – which is unheard of for this price. You can also control access to files and libraries by enabling user permissions. Web file sharing makes it easy for teams to share documents without having to rely on email, or old file servers. Check out all the features here.

Email outage protection. Yes, its a real thing.

Introducing Live Archive, our most coveted email continuity solution that provides organizations with email outage protection, the ability to send and receive email during a service outage. Outages bring modern offices to a halt – especially the mobile workforce. With Live Archive, resuming operations is easy; just open a browser and resume where you left off. Most importantly, you have access to all your recent email, and the system works in real time allowing you to continue sending, replying to and forwarding any new email while your infrastructure is down. Say goodbye to email outages, see all the benefits that Live Archive has to offer!

Looking to offer our solutions? Click here to see our ExchangeDefender partner program.