More than 90 percent of targeted attacks begin with a spear phishing email, which means your mail server security is more important than ever. Unfortunately, most mail server security solutions, including the limited set of built-in protections in Microsoft® Exchange™ 2013 and 2016, rely on pattern file updates, which only detect traditional malware. They don’t include specific protections to detect malicious URLs or document exploits commonly used in targeted attacks or advanced persistent threats (APTs).
ScanMail™ Suite for Microsoft® Exchange™ stops highly targeted email attacks and spear phishing by using document exploit detection, enhanced web reputation, and sandboxing as part of a custom APT defence—protection you don’t get with other solutions. In addition, only ScanMail blocks traditional malware with email, file, and web reputation technology and correlated global threat intelligence from Trend Micro™ Smart Protection Network™ cloud-based security.
Time-saving features like central management, search and destroy, and role-based access have earned ScanMail its reputation as one of the simplest security solutions to setup and operate.
Superior protection against targeted phishing and ransomware attacks
Lowers IT costs, enhances performance
Key benefits
Targeted attacks need a network defence
Trend Micro messaging security solutions provide protection against targeted attacks with enhanced web reputation, a document exploit detection engine, and sandbox execution for in-depth threat analysis. Integration of these components provides a network defence that enables you to detect, analyse, adapt, and respond to targeted attacks.
ScanMail Suite
The ScanMail Suite has been enriched with built-in protections against targeted attacks.
Enhanced URL Protection blocks emails with malicious URLs in the message body or in attachments. URL time-of-click re-analyses websites upon user access. It’s powered by the Trend Micro™ Smart Protection Network™, which correlates threat information with big data analytics and predictive technology.
Advanced Threat Scan Engine detects advanced malware in Adobe® PDF, Microsoft® Office®, and other document formats using predictive machine learning and heuristic logic to detect known and zero-day exploits. It also scans the Exchange mail store for targeted threats that may have entered before protection was available.
When integrated with Deep Discovery Analyser, ScanMail quarantines suspicious attachments and URLs for automatic sandbox execution analysis, which occurs inline—without impacting the delivery of majority of messages.
Deep Discovery Analyser (additional purchase)
Deep Discovery Analyzer is a hardware appliance that provides sandboxing, deep threat analysis, and local security updates in a unified intelligence platform.
Custom Threat Analysis provides automatic in-depth simulation analysis of potentially malicious attachments and URLs in a secure sandbox environment. It allows customers to create and analyse suspicious objects against multiple customised target images that precisely match their host environments.
Custom Threat Intelligence links information on attacks in your environment with extensive Trend Micro threat intelligence to provide in-depth insights for risk-based incident assessment, containment, and remediation.
Adaptive Security Updates issues custom security updates on new command and control (C&C) server locations and malicious download sites found during sandbox analysis for adaptive protection and remediation by ScanMail, Trend Micro endpoint and gateway products, and third-party security layers.
Protection from phishing and targeted attacks
Unlike other email security solutions, ScanMail features enhanced web reputation, document exploit detection, sandbox execution analysis, and custom threat intelligence. Together, these advanced capabilities provide comprehensive security against email threats, including spear phishing attacks associated with targeted threats.
Data loss prevention
Extends your existing security to support compliance and prevent data loss. Integrated DLP simplifies data protection by giving you visibility and control of data in motion and at rest.
Optimised for exchange
ScanMail is tightly integrated with your Microsoft environment to efficiently protect email with the least overhead.
Innovative search-and-destroy capability
Unlike the tools built into Exchange, ScanMail search and destroy can find emails swiftly and accurately.
Processor
x64 architecture-based processor that supports Intel™ 64 architecture (formally known as Intel EM64T)
x64 architecture-based computer with AMD™ 64-bit processor that supports AMD64 platform
Memory
4GB RAM exclusively for ScanMail
Disk Space
5GB free disk space
Operating system
Microsoft® Windows Server® 2019 Standard or Datacenter
Note: For ScanMail deployment on Server Core edition, Trend Micro recommends running the installation package on Windows Server with the Desktop Experience feature and deploy ScanMail remotely.
Mail server
Microsoft Exchange Server 2019
Web server
Microsoft Internet Information Services (IIS) 10.0
Browser
Microsoft® Internet Explorer® 7.0 or later Mozilla Firefox™ 3.0 or later
MSXML
4.0 SP2 or later
.NET Framework
4.7.2
Processor
x64 architecture-based processor that supports Intel™ 64 architecture (formally known as Intel EM64T)
x64 architecture-based computer with AMD™ 64-bit processor that supports AMD64 platform
Memory
4GB RAM exclusively for ScanMail
Disk Space
5GB free disk space
Operating system
Microsoft® Windows Server® 2016 Standard or Datacenter
Microsoft® Windows Server® 2012 R2 Standard or Datacenter
Microsoft® Windows Server® 2012 Standard or Datacenter
Microsoft® Windows Server® 2008 R2 Standard or Enterprise with SP1
Mail server
Microsoft Exchange Server 2016
Microsoft Exchange Server 2013 SP1 or later
Web server
Microsoft Internet Information Services (IIS) 10.0
Microsoft Internet information Services (IIS) 8.5
Microsoft Internet information Services (IIS) 8.0
Microsoft Internet information Services (IIS) 7.5
Browser
Internet Explorer 7.0 or later
Mozilla Firefox™ 3.0 or later
MSXML
4.0 SP2 or later
.NET Framework
4.5 or later
Protection Points
Threat Protection
Virtual appliance hybrid SAAS development
Virtual appliance + cloud security: Trend Micro integrated hybrid SaaS gives you one unified console to manage everything – the cloud pre-filter service, virtual appliance content security, and the add-on Data Protection and Encryption Module.