Once enabled, all links contained in an incoming email are replaced with an Avanan link. If you configured the Click-Time Protection Policy to replace links inside the attachments, the links get replaced for these file types: File TypeĬlick-Time Protection - End-User Experience Replacing Links Inside Attachments - Supported File Types Note - Avanan recommends using V2 version. Also, the URL is shorter, and the domain is different from the V1 version. In the V2 version, the original URL is surrounded by underscores, making it easier to identify the original (rewritten) URL. While configuring the Click-Time Protection engine, administrators can choose the from The format of the rewritten Avanan URL is _. Under Advanced, select the required URL version (V1 or V2).Under Workflow, select the required option to handle the malicious websites.Minutes for the URL Emulation to start working. Note - If the URL Emulation was disabled, and if the administrator enables it, it could take up to 20 To disable URL Emulation, under Security Tools, clear the URL Emulation checkbox. Choose Click-Time Protection and click Configure.Navigate to Configuration > Security Engines.To configure Click-Time Protection engine: So, Click-Time Protection can be used in addition to ATP, as an additional layer of protection. ATP inspects the URL before Avanan re-writes them. However, as Avanan interacts with Microsoft through API, there is no interference with ATP. When other Secure Email Gateways (SEG) are deployed in front of Office 365 (not via API), Microsoft Advanced Threat Prevention (ATP) will not be able to inspect the URLs as they were re-written. Note - Click-Time Protection is available for Office 365 email and Gmail. Pointing out the users that clicked the malicious URL - Click-Time Protection forensics allows to detect the users that require further education and training to avoid clicking on malicious links.So Phishing websites that are not known to be malicious are also flagged. Click-Time Protection then emulates the website to expose hidden Phishing indicators. Protection against zero-day phishing websites - Inspecting links when the user clicks on the URL allows to follow the user into the website.Most Up-to-Date Intelligence - Inspecting links when the user clicks on the URL allows to inspect the URL based on the latest inspection intelligence and software capabilities.URL Emulation - Emulates the website to detect zero-day phishing websites.URL Reputation - Checks if the URL is known to be malicious or holds any malicious references.The replaced links point to the Avanan inspection services, so that every time a user clicks on a link, the website behind the link is inspected to ensure it is not a phishing website.Ĭlick-Time Protection uses these security engines for inspection. New attacks have become more sophisticated and can generate phishing campaigns such that the phishing website they link to does not have any known bad reputation, sometimes for hours and days after the emails are sent.Ĭlick-Time Protection works by replacing links.
0 Comments
Leave a Reply. |