CVE-2024-3400: PAN-OS Command Injection Vulnerability in GlobalProtect Gateway. Learn More

CVE-2024-3400: PAN-OS Command Injection Vulnerability in GlobalProtect Gateway. Learn More

Services
Capture
Managed Detection & Response

Eliminate active threats with 24/7 threat detection, investigation, and response.

twi-managed-portal-color
Co-Managed SOC (SIEM)

Maximize your SIEM investment, stop alert fatigue, and enhance your team with hybrid security operations support.

twi-briefcase-color-svg
Advisory & Diagnostics

Advance your cybersecurity program and get expert guidance where you need it most.

tw-laptop-data
Penetration Testing

Test your physical locations and IT infrastructure to shore up weaknesses before exploitation.

twi-database-color-svg
Database Security

Prevent unauthorized access and exceed compliance requirements.

twi-email-color-svg
Email Security

Stop email threats others miss and secure your organization against the #1 ransomware attack vector.

tw-officer
Digital Forensics & Incident Response

Prepare for the inevitable with 24/7 global breach response in-region and available on-site.

tw-network
Firewall & Technology Management

Mitigate risk of a cyberattack with 24/7 incident and health monitoring and the latest threat intelligence.

Solutions
BY TOPIC
Offensive Security
Solutions to maximize your security ROI
Microsoft Exchange Server Attacks
Stay protected against emerging threats
Rapidly Secure New Environments
Security for rapid response situations
Securing the Cloud
Safely navigate and stay protected
Securing the IoT Landscape
Test, monitor and secure network objects
Why Trustwave
About Us
Awards and Accolades
Trustwave SpiderLabs Team
Trustwave Fusion Security Operations Platform
Trustwave Security Colony
Partners
Technology Alliance Partners
Key alliances who align and support our ecosystem of security offerings
Trustwave PartnerOne Program
Join forces with Trustwave to protect against the most advance cybersecurity threats

Trustwave MailMarshal Unveils Major Upgrades to Combat New Email Security Threats

Trustwave MailMarshal will receive a massive upgrade on March 28 that will add four new levels of functionality, including an improved dashboard interface, the ability to detect and halt malicious QR codes, the ability to scan and divert potentially damaging images, and DNS-based Authentication of Named Entities (DANE).

Trustwave will add these improvements to MailMarshal's already impressive ability to protect against ransomware attacks, detect Business Email Compromise (BEC) and phishing scams, capture malware, and find Zero-Days. MailMarshal's success can be measured in the fact that no clients have reported ransomware infection in 20+ years of operation; it has a 99.99% malware and exploits capture rate with < 0.001% spam false positives reported.

 

New and Improved Dashboarding

The new dashboards will give users better visibility into the threats being faced and intercepted. MailMarshal will spot and transmit which employees threat actors are most often targeted and from where the attacks originate. MailMarshal will also create and provide an email security score letting the client know their level of vulnerability and send recommendations to reduce their threat exposure going forward.

 

Countering Malicious QR Codes

Malicious QR codes have become one of the biggest emerging threats for clients over the last six months to a year. Recently, threat actors include a malicious QR code in an email that acts in the same manner as a malicious URL or attachment. MailMarshal engines have been updated to better detect QR code threats. These engines are powered by AI to identify and recognize patterns to detect quishing attacks and eliminate the threat before it hits our customers inbox.

 

Smarter Visual Threat Intelligence

The third update centers on our new Image Analyzer that scans an email to see what type of graphics are embedded and removing those that a client deems inappropriate. The upgrade will add 23 new categories, including weapons, gore, extremism, etc., and the client will have the option to pick and choose which categories to enable.

This functionality will help businesses re-enforce email usage policy and adhere to their code of conduct.

 

DANE

The final change is focused on the implementation of DNS-based Authentication of Named Entities (DANE) for SMTP addresses. DANE allows for a more secure method of mail transport and is used to ensure reliable encryption for email transport. This functionality provides the means of validating the authenticity of the other mail server's certificate. It’s a crucial step towards safeguarding email communications against potential threats.

The March 28 update will make MailMarshal easier for clients to use, and effective against the most modern threat actor attack methods.

Trustwave MailMarshal

Begin your journey to improved email security by clicking the image above.  

Latest Trustwave Blogs

Unlocking the Power of Offensive Security: Trustwave's Proactive Approach to Cyber Defense

Clients often conflate Offensive Security with penetration testing, yet they serve distinct purposes within cybersecurity. Offensive Security is a broad term encompassing strategies to protect...

Read More

Behind the Scenes of the Change Healthcare Ransomware Attack Cyber Gang Dispute

Editor’s Note – The situation with the Change Healthcare cyberattack is changing frequently. The information in this blog is current as of April 16. We will update the blog as needed. April 16, 2024:...

Read More

Law Enforcement Must Keep up the Pressure on Cybergangs

The (apparent) takedown of major ransomware players like Blackcat/ALPHV and LockBit and the threat groups’ (apparent) revival is a prime example of the Whack-a-Mole nature of combating ransomware...

Read More