• Skip to primary navigation
  • Skip to content
  • Skip to primary sidebar

Red Sift Blog

Democratizing technology essential for cybersecurity.

Red Sift Blog
  • redsift.com
  • Featured
  • About
  • Get in touch
You are here: Home / Email / How to make the most of Google’s new anti-phishing and malware capabilities

How to make the most of Google’s new anti-phishing and malware capabilities

by jay
April 10, 2018July 25, 2018Filed under:
  • Email

Updates include added phishing protection and better defence against malware injection attempts.

If you’re a G Suite customer in Australia then these new features will automatically be enabled within your account, so you may want to ensure you’re happy with the settings, and if you’re not located in Australia, you’ll have to go in your settings to enable the new features.

This blog is written to help you assess the options available to you and help you make the most of them.

So what are your options?

If you’re one of your organisation’s G Suite Admins, you’ll now be able to navigate to a new area within your Admin console called “Safety”. The image below shows how to get here. You’ll be able to view these security features at an organisational level so your users will not have to worry about configuring anything.

Inside the Safety tab, you will have the options to edit 3 aspects of your email protection. I’m going to talk about each one and then explain how all these changes impact your organisation.

1. Attachments

This option allows you to set policies for email attachments. Google scans email attachments to see if they are encrypted or contain scripts from untrusted senders.

You can choose to enable all settings which will automatically put the strongest level of security into play and send all emails that contain a suspicious attachment into the spam folder. Or you can choose to customize your settings and define whether emails with encrypted attachments and/or emails that contain scripts from untrusted senders should be sent to spam or delivered to the inbox with a warning.

2. Links and external images

The second option is designed to protect your users against malicious links contained in emails. You have the option to:

  • Identify the full URL of shortened links so your users can establish if the link is valid or not,
  • Scan images for any hidden malicious links,
  • Highlight any links that Google thinks might be malicious.

3. Spoofing and authentication

The final section allows you to define how you want to treat emails that fail email authentication and appear to be spoof. In the customization section you have 4 fields that you can define actions for.

  • Lookalike domain spoofing protection This setting tells Google to send any emails that appear to come from a lookalike domain to either spam or, if you chose, your inbox. For example if you receive an email from app1e.com instead of apple.com, then the email from app1e.com could either end up in spam or have a warning displayed in the inbox (depending on the action you choose).
  • Protection against spoofing employee names This setting lets you add a warning to emails, or send emails to spam, that use someone in your organisations name. This means if you get an email from an “Anna Smith” <Ann4.Sm1th@gmail.com> and you have someone called Anna Smith in your organisation, your users will see a warning of this or the email will be sent to spam.
  • Inbound protection against emails that fail authentication This allows you to decide what you do with emails that fail SPF and DKIM authentication. This will protect your users from receiving emails from sources that are pretending to be your domain.
  • Protection against any unauthenticated emails This is similar to the last option except it not only protects against spoofing attempts from your domain, but also against attempts from other organisations’ domains.

Do I need to do anything else?

Yes! Now that Google is helping its users to actively block unauthenticated emails you need to make sure you in turn are authenticating your own emails with SPF and DKIM. If you don’t then your emails will end up in the Gmail spam boxes of your recipients.

This means you’re going to need to authenticate G Suite as well as any other sending sources that you use to send email, this might include marketing software like Mailchimp or CRM software like Salesforce.

In order to make sure your organisation’s emails are being properly authenticated, I would recommend using the DMARC protocol to gain visibility into how your domain is being used and if your emails are passing SPF and DKIM validation. You can use products like OnDMARC to do all the heavy lifting for you and to make sure all your emails are being properly authenticated. The bonus of implementing DMARC will be a drastic improvement in the deliverability of your emails, as well as guaranteed protection of your domain against phishing and spoofing attacks. All of this in return will protect your domain’s reputation.

I hope you have found this useful and if you have any questions you can comment below and I will answer them.

Share this:

  • Click to share on Twitter (Opens in new window)
  • Click to share on Facebook (Opens in new window)
  • Click to share on LinkedIn (Opens in new window)

Related

Tagged:
  • Authentication
  • Email
  • G Suite
  • Google
  • Security

Post navigation

Previous Post Are you the only you out there?
Next Post Featured: £13.5 million cyber-innovation centre to be built at London Olympic Park

Primary Sidebar

Recent Posts

  • 2021 The Threat Landscape: Brand protection and BEC attacks lead the charge
  • OnDMARC Wins “Best-Of DMARC” Award On Review Platform Expert Insights
  • The case for embracing DORA
  • Red Sift – Closing the Net on the Phishing Problem
  • Beware of this common NHS Covid-19 Vaccine email scam

Archives

  • February 2021
  • January 2021
  • December 2020
  • November 2020
  • October 2020
  • September 2020
  • July 2020
  • June 2020
  • May 2020
  • April 2020
  • March 2020
  • February 2020
  • January 2020
  • December 2019
  • November 2019
  • October 2019
  • September 2019
  • August 2019
  • July 2019
  • June 2019
  • May 2019
  • April 2019
  • March 2019
  • February 2019
  • January 2019
  • December 2018
  • November 2018
  • October 2018
  • September 2018
  • August 2018
  • July 2018
  • June 2018
  • May 2018
  • April 2018
  • March 2018
  • February 2018
  • January 2018
  • December 2017
  • November 2017
  • October 2017
  • September 2017
  • July 2017
  • June 2017
  • May 2017
  • April 2017
  • March 2017
  • November 2016
  • October 2016
  • February 2016

Categories

  • AI
  • BEC
  • Coronavirus
  • Cybersecurity
  • Deliverability
  • DMARC
  • Email
  • Finance
  • Labs
  • News
  • OnINBOX
  • Partner Program
  • Red Sift Tools
  • Uncategorized
  • Work @ Red Sift

Copyright © 2021 · Milan Pro on Genesis Framework · WordPress · Log in