Welcome to 2021: Comply with the industry security standards or your mail gets bounced.
Believe it or not, that’s the best case scenario: When you actually know your email wasn’t delivered.
Most of the time, though, your sender reputation is scored by internal/proprietary lists and the message is just moved to trash. Worst case scenarios – where hackers are using your domain and email address as impersonations (to launch attacks) or to fool internal employees.
ExchangeDefender has always provided technology and policies to help manage this, but few of our partners have fully adopted it. We have been seeing an escalation in attacks over the past year and it’s only a matter until these security gaps are exploited.
We don’t want to see that happen to you. It is important enough that we are willing to help tighten your security and deploy auth protocols on your behalf, free of charge. Only catch is, it has to be completed by October 31st, 2021.
Too good to be true? Tune into our webinar next Thursday to get the specifics about what needs to be done and how. We will be covering:
– Best practices for email deliverability
– Required DNS records for SPF & DKIM
– Review of domain security policies
– Email delivery troubleshooting
Please register for the webinar:
XD Security Standards Compliance
Thursday, September 16, 2021 (Noon EST)
We cannot overstate the importance of getting this done. ExchangeDefender (and practically everyone else) will no longer relay mail beyond 2021 without valid email authorization DNS records in place. Don’t wait until December and face expensive consulting contracts, we can handle this for free now and it will take less than 10 minutes of your time. That is how committed we are to keeping you secure and your email arriving where you send it, in the Inbox, every time.
P.S. We strongly encourage you to attend the webinar live so you can ask questions. As DNS is not something we host/offer please keep in mind that our support team will not assist or troubleshoot DNS issues for you.
Today’s webinar featured the launch of ExchangeDefender’s next generation LiveArchive, showcased by CEO, Vlad Mazek.
The new Live Archive is now a webmail in its own right not dependent on Exchange, Gmail or other major email providers. You’ll have to watch the video tour to get understand the mega power of the new service but a few highlights are:
– Live Archive offers real-time archiving of all inbound and outbound mail
– The ability to send and receive email during outages and other network disruptions
– The mailbox holds up to one year of mail
– Live Archive offers immediate email failover and disaster recovery and is compatible with all email providers
Live Archive Product Page:
Live Archive Technical Features:
ExchangeDefender is pleased to introduce the next generation of our email solutions.
We have supported and protected Exchange for over two decades and as well as managing security for every mail server solution on the Internet – trust us, we know email sucks. To help fix it – no matter where your email is, no matter if it’s Microsoft or Google or Amazon cloud – we needed to develop an email server that can run side by side. We are happy to show you the beginning of this adventure next Friday, where we will unveil the new product live… and a little surprise 🙂
ExchangeDefender LiveArchive is getting a major upgrade.
New, modern, responsive web interface that will make Gmail jealous. Potential not just to save your business but build a whole suite of solutions for business continuity, hybrid deployment to save licensing, backup offering, use your imagination. ExchangeDefender has built a mail server from the ground up with the focus on security that still enables your productivity. Join us and see it live! Q&A with the CEO to follow.
Join our upcoming Webinar
Friday, May 15, 11 AM
We strongly recommend business decision makers and IT personnel attend this meeting. We will be going over the new service launch, implementation and deployment, user notifications, service changes, and the product roadmap. As always, all of this will be done for you and on your behalf so “if you like the email experience you have now, you’ll get to keep your email experience” so if you just want it taken care of you don’t have to do a thing. If you’d like to understand how things will be deployed, changed, and upgraded then please make sure you attend.
Our team at ExchangeDefender has been putting insane hours to launch massive upgrades to the ExchangeDefender products and services you enjoy today. As mentioned in the previous webinars, big upgrades to all our core products are coming as is the ability to subscribe to them without relying on us for email. Our file sharing platform is getting a massive boost, our business continuity email resilience platform will help you cut Office 365 spending by up to 85%, we have decoupled Email Encryption from ExchangeDefender, and we even have a huge Wrkoo surprise to share as well.
Webinar – ExchangeDefender Solutions Redefined
In case you missed it, the main highlights of the webinar were:
The new responsive UI is live across 85% of our applications to include the Wrkoo model. Compliance Archive will be updated soon.
A-la-carte ExchangeDefender Solutions
We are Offering individual ExchangeDefender apps without email.
Quickly roll out services and add ons – no migrations.
Available individually as Encryption, Compliance Archiving, Web File Server, and LiveArchive.
Professional services and solutions that are in heavy demand: Live Archive, Corporate Encryption, Web File Server, Compliance Archiving
Wrkoo – Small Business Management Platform (B2B)
Wrkoo is free – for now. All new UI makes transition between ExchangeDefender and Wrkoo seamless. Full, rich, responsive interface across desktop & mobile (no apps!)
Introduction to Service Bundle Options
ExchangeDefender introduced our brand new service bundle options to partners that focus on solving the IT challenges that real small businesses face.
The sneak peak showcased the following service bundles for Email Security, Email Compliance, and a full Enterprise Suite.
ExchangeDefender is OPEN from 8am to 6pm, (Monday – Friday) until further notice. We are all working from home, all is well and our response times for service requests are normal.
Our Special Offer to Partners:
Wrkoo PRO – a B2B small business management system is free! Due to the current health crisis, business disruptions are high and we would like to offer our partners the ability to manage their clients, and their employees using our cloud platform. Sign up here: www.wrkoo.com/sign-up
2019 has been a challenging, yet rewarding year for ExchangeDefender with the development, and full release of brand-new UI upgrades (Support and Admin), along with 20+ new features to maximize our profitable service portfolio.
Our CEO Vlad Mazek will be leading an informative discussion about the most successful strategies in 2019. We’ve covered a lot about our strategy and it’s been refreshing to see so much adoption of the new services.
- New ways that our partners are finding a way to win with ExchangeDefender,
- Opportunities to protect and serve clients on Office 365/AWS/Google, and the new services we’re bringing out of beta in 2020.
Join us on Monday, December 23rd at Noon Est for our final webinar of the year. We’d love to share with you what we’ve learned, as our partners have grown their business to larger corporate contracts. 2019 was a year of progress and learning, and we’ve received a ton of experience with direct clients and would love to share our success strategies that you should be taking advantage of as well.
On Wednesday, November 13th, I got the pleasure of introducing our partners and clients to several new services from ExchangeDefender:
– New ExchangeDefender UI for users
– New Wrkoo Calendar and Appointment Booking feature
– New Postmaster support service for Exchange/ExchangeDefender Pro
Our development team has been working like crazy to bring all these features to our clients and we’ve had a ton of beta testers enjoying both solutions for weeks with no major problems (but lot’s of feature requests that we look forward to adding to the product).
ExchangeDefender UI / UX Upgrade
Our current strategy is to make sure the ExchangeDefender service enters 2020 with the brand new UI across all login levels and services. All these new services are coming with improved security, more functionality, and are significantly faster.
Wrkoo Calendar & Appointment Booking
Our strategy of rolling some Wrkoo features to the ExchangeDefender client base continues with our calendar module. In addition to the Password Vault, which is also available free of charge to our ExchangeDefender Pro clients, Calendar and Appointment Booking modules will be available for free as they are key to our strategy of offering a full groupware solution by January 2020.
The calendaring option adds everything you’d expect from a modern calendar and appointment sharing application, but built for groups and businesses. A public appointment setting site is integrated, allowing web site visitors to request an appointment after seeing the available schedule – with Wrkoo handling all the collisions, registering users, setting up meetings and free/busy status.
In terms of scope, this is the largest non-ExchangeDefender to date and a requirement for our new groupware service. In terms of feature set and functionality, it significantly exceeds what is currently available.
ExchangeDefender has spent 2019 improving support and troubleshooting automation which has resulted in savings of thousands of hours and support requests. We’re stepping it up even further with a concierge service to help with message tracking, NDRs, and DNS-related email delivery problems.
The new site will help users automatically detect common problems with their setup or configuration. After collecting basic information, it will then be assigned to a case manager that can effectively work with sender, recipient, and other interested parties to resolve the problem.
Take a moment to watch the webinar. There is so much context and background to our strategy.
As this is our last webinar for 2019, I wanted to personally thank you for all your business and your trust. We have worked like crazy this year to get these features to you before 2020 and in our opinion we are light years ahead of where we were at this time last year. I’m sure you can tell from the excitement in my voice that we believe these new features will be significant game changers for our partners and clients and we’ll continue working on developing solutions to the continuing challenges in security and in productivity.
Over the past year we’ve been introducing enterprise security measures to help protect our clients from an increasing volume of attacks. Email is the single most abused gateway for email threats – with 91% of corporate breaches starting through email – and it’s only getting worse.
If you’ve used Yahoo, MySpace, or hundreds of popular free web sites (go to https://haveibeenpwned.com/ to see how/who exposed your data) your credentials and other information is available on the web. Hackers are using these passwords and personal information to guess their way into other sites that haven’t been breached – so if you use the same or similar password (or only change the site id, or one number or letter to make it different) then you’re making it very simple for hackers to get into your account.
For the details on all the stuff we’ve got coming in September, we’d like to invite you to our webinar:
ExchangeDefender Security Upgrade
Tuesday, September 10th, 2019
In the meantime, we’re going to help our partners and clients not make things “stupid easy” for hackers – by globally resetting ExchangeDefender passwords that are older than 1 year. We’ll do this on September 1st, in a very minimally intrusive way, and for those that don’t use ExchangeDefender on the daily basis (and mainly just release SPAM from quarantines) the password change won’t affect them.
Using an OTP/2FA or VPN services or all the free features that are built into ExchangeDefender to keep you secure is obviously our preferred way but as we’ve noted – the realities of SMB concern for IT security – so we need to try something else. We really hope our partners and clients can take the time to attend the September Webinar, as we believe the stuff we’ve built will help lock down your organization and make security manageable again.
ExchangeDefender is happy to announce the enhancement of it’s Service Provider branding options. ExchangeDefender is primarily distributed and managed by other IT Solution Providers (MSPs, VARs, IT professionals) and we have exposed as much of our infrastructure as possible for white label functionality. Starting this week, we are also encouraging you to brand messages sent by ExchangeDefender:
ExchangeDefender Email Notice Branding is available at https://admin.exchangedefender.com under your Service Provider login. Click on Configuration > Branding and you will see a section that will allow you to provide any content you’d like us to include on messages sent to users automatically.
We encourage all of our Service Providers to provide at least their basic contact information and a note in this section. While we are always concerned with our partners brand, system notices and urgent security issues may at times require us to contact the user directly. In the event that we do that, it’s helpful for the client to see your information at the top of the message instead of the bottom.
We’re also working hard on delivering additional features to ExchangeDefender sites, so if you have any suggestions or wishes, please let us know by hitting the feedback link anywhere in our system.
P.S. This feature was discussed in detail during our webinar on June 6th, 2019. Watch the webinar here: https://www.exchangedefender.com/media/XDNewPhishing.mp4
ExchangeDefender is thrilled to announce the new Phishing Firewall in the cloud, going into full production – Wednesday, June 12th, 2019 for all ExchangeDefender Pro and Enterprise protected clients. The old way of highlighting, underlining, inserting warnings and so on will be removed from the service at the same time because it lacks the ability to protect clients in real-time.
The ExchangeDefender Phishing Firewall (EPF) is a real-time, active pishing protection. As ExchangeDefender processes inbound mail, it will rewrite every link to proxy it through EPF when user clicks on it. If the site is safe, the user will be automatically redirected to it and will not even know that EPF is in the way. If the site is not on the safe list, end users will see this warning:
They will have the option to just click on the link and proceed, add to whitelist (at which point they are automatically allowed through in the future) or add to blacklist.
Because of the way phishing works, and all identity theft or forgery in general, it is impossible to secure email messages in transit without making annoying modifications to the message that often distort the look and feel of it. Majority of those links are in the 95% of the mail that passes through ExchangeDefender as SPAM/SureSPAM, meaning that they would never even be seen by anyone. By moving the Phishing Firewall to the cloud, we can now secure every device and provide additional metrics and advisory on top of it to protect our clients from 0-day exploits.
This feature is provided to our clients free of charge and replaces expensive “security awareness training” solutions that users typically hate and do nothing to adequately secure the client. With Exchange Phishing Firewall we enable our clients to create custom policies, maintain whitelists, blacklists, get enterprise reporting and more. It further allows us to go one step beyond – in the upcoming releases we’ll offer the ability to display a screenshot of the site as well as link intelligence data (How long ago was the domain name registered? Where is the IP you’re about to go to located? Is the domain a close spelling error of a widely recognized site? Is the forged site just a cloud hosted Google, Microsoft or Amazon cloud service instance that is holding or redirecting you to another more dangerous location?)
If you’re currently on ExchangeDefender Essentials, we encourage you to schedule a demo with our team to check this feature out as it’s significantly cheaper than antivirus or “security training” solutions and will do a far better job. If you’re on ExchangeDefender Pro or ExchangeDefender Enterprise, you will get this feature free of charge. On Monday, June 10 we will send an email notification announcing this launch to our partners, MSPs, and Service Providers. On Tuesday, June 11 we will send an email notification to end users. Finally, on Wednesday, June 12th we will go live with the service and hope to minimize the annoyance of phishing once and for all. Email is the single most popular attack vector, with 91% of the compromises starting through a phishing attack, and we look forward to protecting all our users even better.
This Thursday, June 6th, we will be announcing a major overhaul in the way we deal with spear phishing SPAM. No, it’s not a mind-blowing patent-pending stroke-of-genius sort of stuff, it’s much closer to what your parents told you growing up:
Don’t get into a car with strangers don’t click on links or open attachments from strangers.
In a way, ExchangeDefender has had protection from this issue for years. If you had a decent IT Solution Provider implementing ExchangeDefender for you, they would have setup your SPF record and eliminated this issue – but many don’t. Or they would have turned on ExchangeDefender protection where all messages spoofing/forging your domain would automatically get junked – almost none of them do. Which is why ExchangeDefender as a service has become less of an IT tool and more of an end user suite of services to get stuff done.
When features like this are left disabled “because they might become support issues” it becomes really difficult to secure users. But I get it, IT companies have a business to run too, which is why we’ve really stepped up our support efforts and are going to be there to help folks get things done without becoming an additional problem for the IT department. Doing so has really made us rethink how we implement features and how the service behavior needs to speak the same language as the end user. Which brings me to phishing beyond forgeries.
Can you spot a stranger?One of the new phishing protection features in ExchangeDefender will allow you to flag messages that are coming from outside of your organization. You will have two settings – to modify the subject and to modify the header of the message so when you look inside of your mailbox you’ll know what came from a stranger right away. Try it:
Even from the message listing you’ll know which messages shouldn’t even be opened. But suppose you ignored even that – you can set another warning, printed inside of the message, giving the user even more of an instruction of what to do.
Warning: Message was sent from outside of the organization. Do not click on links or open attachments if you don’t recognize the sender.
Far from subtle. And it has to be – because most people check email quickly, between tasks, or are simply interrupted by it. ExchangeDefender has your back, and we’ll make sure we alert you to possible issues before they become problems. Which we hope everyone will be aboard with.
Please join us, June 6th at Noon, for our NEW webinar featuring ExchangeDefender’s Phishing and Spoofing protection, plus see what’s new with Encryption, WFS, and Wrkoo!