https://community.checkpoint.com/t5/Email-and-Collaboration/Harmony-Protects-against-new-phishing-attack-missed-by-Microsoft/m-p/137896#M374 <P>Avanan’s research team recently discovered a <STRONG>new phishing attack in the wild</STRONG> that involves sending an email with malformed URLs to bypass the URL protection and rewriting features of email security solutions.</P> <UL> <LI><STRONG>Harmony provides complete protection against this attack</STRONG>, while other vendors, namely <STRONG>Microsoft Defender and Proofpoint, expose the end user</STRONG> to the malicious links</LI> <LI>Since the <STRONG>links have not been secured</STRONG>, the user then goes <STRONG>straight to the phishing/malicious site when using MS Office Defender or Proofpoint</STRONG> to secure his mailbox.</LI> <LI>Check Avanan’s blog <A href="https://www.avanan.com/blog/the-slinkify-attack-malformed-links-expose-vulnerability-in-atp-and-proofpoint" target="_blank">HERE</A> for the full write-up</LI> <LI>This provides a specific example of how <STRONG>Harmony provides superior protection against phishing attacks</STRONG>. This is proven with actual data&nbsp;<A href="https://www.avanan.com/hubfs/Content/Collateral/How-Many-Phishing-Emails-Do-Security-Solutions-Miss.pdf" target="_self">research here</A></LI> <LI>See below for a recreation of this exploit, as well as how Harmony protects against it.</LI> </UL> <P>&nbsp;</P> <P><STRONG>Here it is in action</STRONG></P> <P>&nbsp;</P> <P><STRONG><span class="lia-inline-image-display-wrapper lia-image-align-inline" image-alt="slinkify1.png" style="width: 999px;"><img src="https://community.checkpoint.com/t5/image/serverpage/image-id/14809i9CDFC5EAB44E21DB/image-size/large?v=v2&amp;px=999" role="button" title="slinkify1.png" alt="slinkify1.png" /></span><span class="lia-inline-image-display-wrapper lia-image-align-inline" image-alt="slinkify2.png" style="width: 999px;"><img src="https://community.checkpoint.com/t5/image/serverpage/image-id/14810i35CD968EBAD773BC/image-size/large?v=v2&amp;px=999" role="button" title="slinkify2.png" alt="slinkify2.png" /></span><span class="lia-inline-image-display-wrapper lia-image-align-inline" image-alt="slinkify3.png" style="width: 523px;"><img src="https://community.checkpoint.com/t5/image/serverpage/image-id/14811i91B14A6E5924252E/image-dimensions/523x568?v=v2" width="523" height="568" role="button" title="slinkify3.png" alt="slinkify3.png" /></span><BR /></STRONG></P> <DIV id="tinyMceEditorJerrod_Piker_27" class="mceNonEditable lia-copypaste-placeholder">&nbsp;</DIV> <DIV id="tinyMceEditorJerrod_Piker_28" class="mceNonEditable lia-copypaste-placeholder">&nbsp;</DIV> <DIV id="tinyMceEditorJerrod_Piker_11" class="mceNonEditable lia-copypaste-placeholder">&nbsp;</DIV> <P>&nbsp;</P> <P>&nbsp;</P> Tue, 11 Jan 2022 15:17:21 GMT Jerrod_Piker 2022-01-11T15:17:21Z https://community.checkpoint.com/t5/Email-and-Collaboration/Harmony-Protects-against-new-phishing-attack-missed-by-Microsoft/m-p/137896#M374 <P>Avanan’s research team recently discovered a <STRONG>new phishing attack in the wild</STRONG> that involves sending an email with malformed URLs to bypass the URL protection and rewriting features of email security solutions.</P> <UL> <LI><STRONG>Harmony provides complete protection against this attack</STRONG>, while other vendors, namely <STRONG>Microsoft Defender and Proofpoint, expose the end user</STRONG> to the malicious links</LI> <LI>Since the <STRONG>links have not been secured</STRONG>, the user then goes <STRONG>straight to the phishing/malicious site when using MS Office Defender or Proofpoint</STRONG> to secure his mailbox.</LI> <LI>Check Avanan’s blog <A href="https://www.avanan.com/blog/the-slinkify-attack-malformed-links-expose-vulnerability-in-atp-and-proofpoint" target="_blank">HERE</A> for the full write-up</LI> <LI>This provides a specific example of how <STRONG>Harmony provides superior protection against phishing attacks</STRONG>. This is proven with actual data&nbsp;<A href="https://www.avanan.com/hubfs/Content/Collateral/How-Many-Phishing-Emails-Do-Security-Solutions-Miss.pdf" target="_self">research here</A></LI> <LI>See below for a recreation of this exploit, as well as how Harmony protects against it.</LI> </UL> <P>&nbsp;</P> <P><STRONG>Here it is in action</STRONG></P> <P>&nbsp;</P> <P><STRONG><span class="lia-inline-image-display-wrapper lia-image-align-inline" image-alt="slinkify1.png" style="width: 999px;"><img src="https://community.checkpoint.com/t5/image/serverpage/image-id/14809i9CDFC5EAB44E21DB/image-size/large?v=v2&amp;px=999" role="button" title="slinkify1.png" alt="slinkify1.png" /></span><span class="lia-inline-image-display-wrapper lia-image-align-inline" image-alt="slinkify2.png" style="width: 999px;"><img src="https://community.checkpoint.com/t5/image/serverpage/image-id/14810i35CD968EBAD773BC/image-size/large?v=v2&amp;px=999" role="button" title="slinkify2.png" alt="slinkify2.png" /></span><span class="lia-inline-image-display-wrapper lia-image-align-inline" image-alt="slinkify3.png" style="width: 523px;"><img src="https://community.checkpoint.com/t5/image/serverpage/image-id/14811i91B14A6E5924252E/image-dimensions/523x568?v=v2" width="523" height="568" role="button" title="slinkify3.png" alt="slinkify3.png" /></span><BR /></STRONG></P> <DIV id="tinyMceEditorJerrod_Piker_27" class="mceNonEditable lia-copypaste-placeholder">&nbsp;</DIV> <DIV id="tinyMceEditorJerrod_Piker_28" class="mceNonEditable lia-copypaste-placeholder">&nbsp;</DIV> <DIV id="tinyMceEditorJerrod_Piker_11" class="mceNonEditable lia-copypaste-placeholder">&nbsp;</DIV> <P>&nbsp;</P> <P>&nbsp;</P> Tue, 11 Jan 2022 15:17:21 GMT https://community.checkpoint.com/t5/Email-and-Collaboration/Harmony-Protects-against-new-phishing-attack-missed-by-Microsoft/m-p/137896#M374 Jerrod_Piker 2022-01-11T15:17:21Z