Overview
No email defence technology can protect against increasingly advanced email threats 100 percent of the time. Some advanced social engineering attacks like business email compromise will reach users’ mailboxes. And when they do, you need to respond quickly and accurately to minimise the scope and severity of damage.
Barracuda Forensics and Incident Response is a powerful SaaS solution that lets you remediate threats quickly and efficiently, by automating investigative workflows and enabling direct removal of malicious emails.
Reduce the impact and cost of email attacks
When email-borne attacks evade security and land in your users’ inboxes, you need to respond quickly and accurately to prevent damage and to limit the spread of the attack. Responding to attacks manually is time-consuming and inefficient, which allows threats to spread and damages to increase.
Barracuda Forensics and Incident Response automates these processes to ensure that you quickly identify the nature and scope of the attack, immediately eliminate malicious emails, and carry out remediation actions rapidly to halt the attack’s progress and minimise damages.
Respond faster and more effectively with:
Respond immediately to email-borne attacks
When malicious email is reported to IT, Barracuda Forensics and Incident Response lets you immediately search all delivered email, by sender or subject, to identify all internal users who have received it. Automated response lets you then remove all instances of the threat-bearing email. In addition, you can automatically deliver alerts to affected users that warn them about the threat or provide other instructions.
Limiting damage
In addition to identifying who received the malicious email, Forensics and Incident Response lets you identify the users who actually clicked on a malicious link. It can then automatically deliver instructions to update passwords or take other actions to limit the spread of the attack. These users can also be assigned enhanced security awareness training to prevent future incidents.
Gain insights to prevent future attacks
Forensics and Incident Response has powerful analytic capabilities that allow you to use insights gathered from analysis of delivered email to identify anomalies in email that’s already in your users' inboxes. For example, you can review geographies where inbound email is coming from, and proactively identify malicious email from countries you don’t usually do business with. This insight will help your team to identify threats that otherwise go unnoticed.
Integrated domain-based phishing protection
Barracuda Forensics and Incident Response also has content-security capabilities to offer protection across email and web. It detects and automatically blocks malicious domains contained in phishing emails for all users using API integration. DNS phishing protection works seamlessly to provide a unified threat management response against advanced attacks. This feature is available to customers of Forensics and Incident Response and Barracuda Content Shield.
| Identify | |
|---|---|
| Report suspicious messages | |
| Real-time reporting and forensics | |
| Investigate | |
|---|---|
| Identify users who Interacted with suspicious email | |
| Respond | |
|---|---|
| Automated incident response | |
| Send alerts to users | |
| Remove email from users inboxes | |
