Views:

Multiple Scan Filters

Feature
Benefits
Attachment Blocking
  • Block named attachments or block attachments by true file type, file extension, or file name.
  • Active Directory integrated exception rules
Content Filtering
  • Use rule-based filters to screen out message content deemed to be offensive or otherwise objectionable.
  • Active Directory integrated policies
  • Content Filtering Logs
    This version of ScanMail displays the keyword in content filtering logs when there is a match.
    Note
    Note
    If the keyword or regular expression is too long to display, logs display truncated information.
Data Loss Prevention
  • Use rule-based filters to detect, filter, and mask sensitive data before it transmits out of the network.
  • Select from over 100 predefined templates and data identifiers, or create customized expressions and keyword lists to meet company-specific mandates.
  • Create customized rules to block, mask, log, and delete sensitive data transmitting across the network.
  • Create Data Loss Prevention policies and deploy to ScanMail servers from Apex Central to ensure that company-wide policies remain consistent across all servers.
Spam Prevention Rules
  • Use spam prevention filters with adjustable sensitivity levels to screen out spam while reducing falsely identified messages.
  • End User Quarantine (EUQ) with Spam Confidence Level (SCL)
    This version of ScanMail provides "Integrate with Outlook Junk E-mail" and "Integrate with End User Quarantine" solutions. You can select either solution during installation.
  • Junk E-Mail folder
    In this version of ScanMail, you can select to send detected Spam messages to the standard Outlook folder. The creation of a separate Spam folder is no longer necessary.
Advanced Spam Prevention
The Advanced Spam Prevention includes Business Email Compromise (BEC) technology that detects a probable scam or attack using email messages that appear to be from a high profile user, such as, a corporate user from the executive team.
Web Reputation
  • This version of ScanMail leverages Web Reputation technology, which evaluates the integrity of all requested web pages.
  • Web Reputation features help ensure that the pages that users access are safe and free from web threats, such as malware, spyware, and phishing scams that are designed to trick users into providing personal information.
  • Web Reputation blocks web pages based on their reputation ratings. It queries Trend Micro servers for these ratings, which are correlated from multiple sources, including web page links, domain and IP address relationships, spam sources, and links in spam messages. By obtaining ratings online, Web Reputation uses the latest available information to block harmful pages.
  • Web Reputation helps deter users from following malicious URLs when the feature is enabled. Web reputation queries Trend Micro servers for the reputation rating when an email message with a URL in the message body or message attachment is received. Depending on the configuration, Web Reputation can quarantine, delete, or tag the email message with URLs.
URL Time-of-Click Protection
The URL Time-of-Click Protection rewrites the URLs in the email message body during scanning the message, and analyze these URLs only when the message recipient clicks on these URLs.
Search & Destroy
Search & Destroy provides administrators the ability to search and remove mailbox components (for example, email messages, meetings, tasks) containing undesirable content from Exchange mailbox servers.
Note
Note
The Search & Destroy menu only appears after configuring the Search & Destroy Administrator or Search & Destroy Operator roles.
Virtual Analyzer integration
Administrators can leverage the Virtual Analyzer in Deep Discovery Advisor or Deep Discovery Analyzer to evaluate files and URLs. ScanMail sends the suspect files or URLs to Virtual Analyzer which then performs content simulation and analysis in an isolated virtual environment to identify characteristics commonly associated with many types of malware.
After Virtual Analyzer completes the analyses, ScanMail receives a report indicating the risk level of the file or URL. Administrators can configure ScanMail to perform specific actions on analyzed files or URLs based on the company’s security level policy.

Email Message Flow Protection

Feature
Inbound Email
Outbound Email
Internal Email
Details
Security Risk Scan
Yes
Yes
Yes
Enabled by default on both inbound and outbound messages.
Attachment Blocking
Yes
Yes
Yes
Supports specific sender(s)/recipient(s) configuration.
Content Filtering
Yes
Yes
Yes
Supports specific sender(s)/recipient(s) configuration.
Data Loss Prevention
Yes
Yes
Yes
Configurable, and enabled for outbound messages by default. Supports specific sender(s)/recipient(s) configuration.
Spam Prevention
Yes
Yes
Yes
  
Advanced Spam Prevention
Yes
Yes
Yes
Protection against Business Email Compromise (BEC) by Writing Style feature works only for Inbound messages.
Web Reputation
Yes
Yes
Yes
  
URL Time-of-Click Protection
Yes
    
Supports configuring feature for specific recipient(s).
External Disclaimer
Yes
      
Virtual Analyzer integration
Yes
Yes
Yes
Configurable, and enabled for inbound messages by default.