June 2021

Today, we are excited to showcase our brand new feature: Bulk Mailer Policy. This new feature was first announced last week as part as the new release of ExchangeDefender Advanced Features and Policies. (It is available to all of our ExchangeDefender PRO clients.) Bulk Mailer Policy simplifies process of blocking or allowing mail from bulk mail operations that are increasingly used by developers and hackers alike to relay mail.

Bulk mail operations, such as AmazonSES and Sendgrid, are large scale SMTP networks designed to enable developers to reliably deliver and manage email subscriptions. As such, bulk mailers generate a new sender email address (envelope-from) that the mail would bounce to if the message could not be delivered for any reason. Every time an email goes out a new sender bounce email address is created by the sender – solely for tracking the delivery and activity of that one message. Long story short, it makes it very frustrating to build a policy against something that is random and changes often.

ExchangeDefender Bulk Mailer Policy simplifies that process by maintaining a list of IP addresses the network is using (as defined by their SPF record) to relay messages. There are three options:

Scan – This is the default policy; every message is scanned by ExchangeDefender for SPAM content and it gets flagged as SPAM/SureSPAM if it looks like SPAM.

Allow – This policy will result in ExchangeDefender not scanning any mail from this network for SPAM content (viruses, malware, etc are still considered) and delivering it automatically.

Block – This policy will result in ExchangeDefender automatically labeling the message as SureSPAM.


The Bad:

Bulk mail sending networks have minimal requirements for subscription/use, and many are actively abused to relay dangerous content.

The Good:

The main benefit of this feature is that ExchangeDefender is actively tracking IP address blocks associated with each network, minimizing the amount of time IT has to spend managing allow/block policy.


ExchangeDefender Advanced Features & Policies are available at https://admin.ExchangeDefender.com and should be setup and managed by a competent IT staff that can manage the entire scope of the policy. The issue with bulk mailer networks is that they are massive, easy to access, and often tied into shared hosting environments that are frequently compromised – what makes them convenient is what makes them dangerous. Unfortunately, if your 2FA/OTP or web site developer uses such networks, you have no choice but to allow the traffic through, and ExchangeDefender makes that easy! We make it just as easy to block them. Whether it should be enabled or disabled, and how, is something that each organization will have to assess and consider along with other cybersecurity policies that need to be in place.

ExchangeDefender is pleased to announce the launch of Advanced Features and Policies, available to all our clients at https://admin.exchangedefender.com. These advanced features are meant to help sophisticated IT personnel establish policies for unique business case scenarios, and better protect their clients from email threats.

Advanced Features & Policies features are available on the Domain Admin section of our administrative portal at https://admin.exchangedefender.com. All features are disabled by default, due to their complexity, and must be enabled by the Domain Admin.

ExchangeDefender Advanced Features & Policies

Note about support: ExchangeDefender technical support is available to assist with these features 24/7/365 at https://support.ExchangeDefender.com. We are always happy to help point our clients in the right direction when considering these features. We do not provide troubleshooting or policy analysis for these features, however, as many of these features will by design enable ExchangeDefender to override established IT security best practices. We don’t recommend them, we do not support them, but as always we will attempt to help out and secure the client.

Features at a glance:

Infected Attachments – This policy enables Domain Administrators to allow users direct access to infected or blocked email attachments.

Charset Blocking – This policy enables Domain Administrators to block emails with specific character sets from reaching the Inbox.

Bulk Mailer Policy – This policy enables Domain Administrators to override ExchangeDefender scanning for top 10 mass mailing networks (AmazonSES, MailChimp, Sendgrid, etc)

Display Name Block – This policy enables Domain Administrators to block messages with specific sender  names from reaching Inbox.

Secure Web Form – This policy enables ExchangeDefender Encryption clients to receive secure/encrypted messages from third parties.

All of these features were developed with the help of our partners and clients who were experiencing unique issues that ExchangeDefender and other cybersecurity solutions/devices do not address. The hackers are advancing faster than IT can cope and we hope some of these features are as helpful to you as they were to other clients of ours that just needed to “make things work” and ExchangeDefender is always easy to reach.

As we continue to build ExchangeDefender we anticipate to introduce more Advanced Settings that would enable Domain Administrators to build a more powerful security wrapper around their email experience. To get more information about these features please watch our last webinar (available at https://support.ExchangeDefender.com) where our CEO explains the motivation and implementation scenarios.

Cyber attacks and the stealing of sensitive data has been big business for hackers and cybercriminals. Especially due to the disruptive covid-19 pandemic that has pushed workers to work from home. The BYOD strategy has caused major concerns for businesses, and to the Managed Service Providers who are hired to protect them. It is not all bad news though, with the introduction of an advanced email encryption software. Today, more security layers are needed to be put in place in order to protect business data and communications.

Email Encryption: A must have

Let’s first talk about the (obvious) reasons as to why SMBs need email encryption. Firstly, to have the ability to securely share sensitive information. When using email, its not as secure as you would think, and offers no real privacy. Of course, we would need encryption in order to avoid data leaks that could ruin a small business. Whether its financial records, client information, or confidential information – all are at risk of being nabbed by hackers. Email compliance is crucial, especially for businesses operating within the EU, or doing business with those that are a part of the European Union due to GDPR regulations. SMBs that are caught violating GDPR requirements when it comes to protecting user information could be subject to major fines. Businesses have to be mindful when selecting an encryption software. The right software should be able to meet all, or most of the requirements set by the organization. It’s not just about price, there are plenty of factors that SMBs will consider when choosing the right service.

Businesses have to be mindful when selecting an encryption software. The right software should be able to meet all, or most of the requirements set by the organization. It’s not just about price, there are plenty of factors that SMBs will consider when choosing the right service.

Top 10: What clients want

We have researched the top 10 features that your clients are looking for when making their decision on encryption solution.

1 – The service must be easy to setup, preferably a cloud application. Also, there should be no real training required.

2 – It must work well with all email service providers and on all devices with wifi access.

3 – The encryption software must meet all compliance requirements set forth by both U.S and EU regulations.

4 – The service must be able to offer zero-step encryption. (The ability to auto-detect sensitive information.)

5 – Granular access controls, particularly the ability to control the expiration of the message, as well as the ability to revoke any individual message to any one specific individual.

6 – Advanced Reporting – they want to know the who, when they opened it, and what they did with it.

7 – Secure web forms templates. Particularly for law firms and medical offices.

8 – Seamless recipient experience – how their clients perceive them and their sensitive data is very important.

9 – Pre-defined policy rules “filters” – available healthcare, financial, state, and education.

10 – Branding : the ability to add custom branding to the secure messages.