Lian Bunny | February 02, 2018

Wombat makes updates to phishing email report button

As seen in the Pittsburgh Business Times...

A Pittsburgh-based security awareness and training software company is aiming to make reporting phishing emails a little easier.

Wombat Security Technologies announced new features to its PhishAlarm suspicious email reporting button Thursday. Phishing emails are messages from a cybercriminal attempting to extract information from the recipient that they otherwise might not want to share.

When a company uses Wombat’s PhishAlarm button, employees can select an email and press the button to report suspicious emails, said Amy Baker, vice president of marketing.

The button is now customizable, giving companies the ability to include labels and names. Baker said many companies they work with create a brand that is associated with their security training or security department. Oftentimes, they want to incorporate a logo with the button so employees recognize what department they are reporting the email to.

“It’s really just a goal to make it recognizable … so the person feels comfortable using it,” she said.

The new features also include “whitelist emails,” which is a patented way to separate trusted internal and external emails from suspicious emails.

Companies that use Wombat can choose to “whitelist” certain organizations or users. Then, if an employee goes to report an email from one of those sources, a pop-up would say the company designated the sender as a trusted user and ask if the employee is sure he or she wants to report it, said Baker.

“Very often an information security team can be overwhelmed if people are reporting emails that are not malicious,” she said. “(Whitelist emails) cuts down on the false reporting that can happen.”

Additional features include advanced attachments for simulated phishing emails, that allow security teams to better track them, and more supported email clients including Gmail email and Outlook Web Access for iPhone, Android and iPad.

The larger list of supported email clients is meant to increase people’s access to PhishAlarm on their phones.

Baker said people are three to five times more likely to click on a phishing email from a phone as compared to a PC.

Read this article in the Pittsburgh Business Times