ScanMail Suite for Microsoft Exchange

Superior protection. Less administration

Overview

More than 90% of targeted attacks begin with a spear phishing email, which means your mail server security is more important than ever. Unfortunately, most mail server security solutions, including the limited set of built-in protections in Exchange 2013 and 2016, rely on pattern file updates, which only detect traditional malware. They don’t include specific protections to detect malicious URLs or document exploits commonly used in targeted attacks or advanced persistent threats (APTs).

ScanMail™ Suite for Microsoft® Exchange™ stops highly targeted email attacks and spear phishing by using document exploit detection, enhanced web reputation, and sandboxing as part of a custom APT defense—protection you don’t get with other solutions. In addition, only ScanMail blocks traditional malware with email, file, and web reputation technology and correlated global threat intelligence from Trend Micro™ Smart Protection Network™ cloud-based security.

Time-saving features like central management, template-based Data Loss Prevention (DLP), and role-based access have earned ScanMail the lowest administration overhead and TCO of the five leading security vendors, based on a comparison study by Osterman Research. ScanMail also delivers high performance with native 64-bit support—for the fastest mail throughput speeds.

Software

Protection Points

  • Mail server
  • Internal inspection
  • Inbound and outbound data

Threat and Data Protection

  • Antivirus
  • Web threat protection
  • Antispam
  • Antiphishing
  • Content filtering
  • Data loss prevention
  • Targeted attacks, APTs

Advantages

Protects organizations from APTs and other targeted attacks

  • Minimizes targeted attacks with multiple protection technologies
  • Performs execution analysis on your unique environment and provides custom threat intelligence via Deep Discovery Advisor integration 
  • Issues custom security updates to other security layers to remediate and prevent further attacks from similar malware
     

Blocks more malware, phishing, and spam with reputation technology

  • Detects malware attachments and malicious web links to prevent malware downloads
  • Utilizes correlated email, file, and web reputation to block more messaging threats— the only mail server security to do this
  • Stops more spam than other security solutions based on Opus One independent tests 
     

Lowers IT costs, enhances performance

  • Streamlines email security operations with strong group configuration and management, and centralized logging and reporting
  • Simplifies compliance and data privacy initiatives with centrally managed, template-based DLP
  • Lowers administration overhead and TCO, beating four other leading solutions, based on an Osterman Research study

Key Benefits

  • Protects individuals from targeted attacks, like spear phishing
  • Provides leading cloud-based security to stop threats at the mail server, before they reach end users
  • Provides visibility and control of data to prevent data loss and support compliance
  • Speeds throughput with native 64-bit processing
  • Accelerates throughput, performing 57% faster than MS Forefront
  • Lowers administration and TCO with central management
Targeted attacks need a network defense

Trend Micro messaging security solutions provide protection against targeted attacks with enhanced web reputation, a document exploit detection engine, and sandbox execution for in-depth threat analysis. Integration of these components provides a network defense that enables you to detect, analyze, adapt, and respond to targeted attacks.

ScanMail Suite

ScanMail Suite has been enriched with built-in protections against targeted attacks.

Enhanced Web Reputation blocks emails with malicious URLs in the message body or in attachments. It’s powered by the Trend Micro™ Smart Protection Network™ which correlates threat information with big data analytics and predictive technology

Advanced Threat Scan Engine detects advanced malware in Adobe PDF, MS Office, and other documents formats using static and heuristic logic to detect known and zero-day exploits. It also scans the Exchange mail store for targeted threats that may have entered before protection was available.

When integrated with Trend Micro™ Deep Discovery Analyzer, ScanMail quarantines suspicious attachments and URLs for automatic sandbox execution analysis which occurs in-line without impacting the delivery of majority of messages.

Deep Discovery Analyzer (additional purchase)

Deep Discovery Analyzer is a hardware appliance that provides sandboxing, deep threat analysis, and local security updates in a unified intelligence platform that is the heart of Trend Micro Network Defense.

Custom Threat Analysis provides automatic in-depth simulation analysis of potentially malicious attachments and URLs in a secure sandbox environment. It allows customers to create and analyze suspicious objects against multiple customized target images that precisely match their host environments.

Custom Threat Intelligence links information on attacks in your environment with extensive Trend Micro threat intelligence to provide in-depth insights for risk-based incident assessment, containment and remediation.

Adaptive Security Updates issues custom security updates on new C&C server locations and malicious download sites found during sandbox analysis for adaptive protection and remediation by ScanMail, Trend Micro endpoint and gateway products, and third-party security layers.

Key features

Protection from Spear Phishing and Targeted Attacks

Unlike other email security solutions, ScanMail features enhanced web reputation, document exploit detection, sandbox execution analysis, and custom threat intelligence. Together, these advanced capabilities provide comprehensive security against email threats, including spear phishing attacks associated with APTs and other targeted threats.

  • Detects known and unknown exploits in Adobe PDF, MS Office, and other document formats
  • Performs malware execution analysis, and generates custom threat intelligence and adaptive security updates with optional Deep Discovery Analyzer integration
  • Stops threats from entering your environment with immediate protection based on leading global threat intelligence


Data Loss Prevention Add-on Module

Extends your existing security to support compliance and prevent data loss. Integrated DLP simplifies data protection by giving you visibility and control of data in motion and at rest.

  • Tracks sensitive data flowing through your email system and in the mail store
  • Accelerates setup and improves accuracy with 100+ compliance templates
  • Simplifies deployment with an add-on for immediate data loss prevention, requiring no additional hardware or software, enabling granular Active Directory-based policy enforcement
  • Enables compliance personnel to centrally manage DLP policies and violations across other Trend Micro products from endpoint to gateway with Control Manager™


Optimized for Microsoft® Exchange

ScanMail is tightly integrated with your Microsoft environment to efficiently protect email with the least overhead.

  • Supports Exchange 2016, 2013, 2010 and 2007 servers including mixed environments during migration periods
  • Accelerates throughput—up to 57 percent faster than other solutions
  • Avoids duplicate inspection with AV stamp multi-threaded scanning and CPU throttling
  • Scans efficiently with native 64-bit support
  • Integrates with Microsoft® System Center Operations Manager and Outlook® Junk E-mail Filter
  • Prevents unauthorized policy changes with role-based access control


Innovative Search and Destroy Capability

Unlike the tools built into Exchange, ScanMail Search and Destroy can find emails swiftly and accurately.

  • Performs targeted searches through Exchange using keywords and regular expressions
  • Allows administrators to quickly respond to urgent requests from legal, human resources, or security departments to find, trace, and permanently delete specific emails if necessary

 

Unique Reputation Technology for Blocking

Spam, Phishing, and Malware Uses big data analytics and predictive technology to correlate file, web, and email reputation data in the cloud for immediate protection from emerging threats—before they can reach end users who may be accessing email on laptops or mobile devices.

  • Checks for malicious links within both the email body and attachments to block phishing attacks via enhanced web reputation
  • Drops up to 85 percent of all incoming email using email sender reputation to free network resources
  • Stops more spam than other security solutions according to independent tests
System Requirements

SYSTEM REQUIREMENTS FOR MICROSOFT EXCHANGE

ScanMail with Microsoft Exchange Server 2016
Resource Requirements
Processor
x64 architecture-based processor that supports Intel™ 64 architecture (formally known as Intel EM64T)
x64 architecture-based computer with AMD™ 64-bit processor that supports AMD64 platform
Memory 1GB RAM exclusively for ScanMail (2GB RAM recommended)
Disk Space 5GB free disk space
Operating System Microsoft™ Windows Server™ 2016 Standard or Datacenter (64-bit) 
Microsoft™ Windows Server™ 2012 R2 Standard or Datacenter (64-bit)
Microsoft™ Windows Server™ 2012 Standard or Datacenter (64-bit)
Mail Server Microsoft Exchange Server 2016
Web Server Microsoft Internet Information Services (IIS) 8.5
Microsoft Internet information Services (IIS) 8.0
Microsoft Internet information Services (IIS) 7.5
Browser Microsoft™ Internet Explorer™ 6.0 or above
Mozilla Firefox™ 3.0 or above
MSXML 4.0 Service Pack 2 or above
.NET Framework 4.0 or 4.5
ScanMail with Microsoft Exchange Server 2013
Resource Requirements
Processor x64 architecture-based processor that supports Intel™ 64 architecture (formally known as Intel EM64T)
x64 architecture-based computer with AMD™ 64-bit
Memory 1GB RAM exclusively for ScanMail (2GB RAM recommended)
Disk Space 5GB free disk space
Operating System Microsoft™ Windows Server™ 2012 R2 Standard or Datacenter (64-bit)
Microsoft™ Windows Server™ 2012 Standard or Datacenter (64-bit)
Microsoft™ Windows Server™ 2008 R2 Standard with Service Pack 1 or above (64-bit)
Microsoft™ Windows Server™ 2008 R2 Enterprise with Service Pack 1 or above (64-bit)
Microsoft™ Windows Server™ 2008 R2 Datacenter RTM or above (64-bit)
Mail Server Microsoft Exchange Server 2013 SP1 or above
Web Server Microsoft Internet Information Services (IIS) 8.5
Microsoft Internet Information Services (IIS) 8.0
Microsoft Internet Information Services (IIS) 7.5
Browser Microsoft™ Internet Explorer™ 6.0 or above
Mozilla Firefox™ 3.0 or above
MSXML 4.0 Service Pack 2 or above
.NET Framework 4.0 or 4.5
ScanMail with Microsoft Exchange Server 2010
Resource Requirements
Processor
x64 architecture-based processor that supports Intel™ 64 architecture (formally known as Intel EM64T)
x64 architecture-based computer with AMD™ 64-bit
Memory 1GB RAM exclusively for ScanMail (2GB RAM recommended)
Disk Space 5GB free disk space
Operating System
Microsoft™ Windows Server™ 2012 R2 Standard or Datacenter (64-bit)
Microsoft™ Windows Server™ 2012 Standard or Datacenter (64-bit)
Microsoft Windows Server 2008 R2 or above (64-bit)
Microsoft Windows Server 2008 with Service Pack 2 or above (64-bit)
Microsoft Small Business Server (SBS) 2011*
*Microsoft Small Business Server (SBS) 2011 received limited compatibility testing with version 12 of ScanMail. The installation recommendation is to uninstall Microsoft
ForeFront prior to installing ScanMail from Microsoft Small Business Server (SBS) 2011.
Mail Server Microsoft Exchange Server 2010 SP3 or above
Web Server Microsoft Internet Information Services (IIS) 8.0
Microsoft Internet Information Services (IIS) 7.5
Microsoft Internet Information Services (IIS) 7.0
Browser Microsoft™ Internet Explorer™ 6.0 or above
Mozilla Firefox™ 3.0 or above
MSXML 4.0 Service Pack 2 or above
.NET Framework 3.5 Service Pack 1