Select Page

Retarus Press Release

Nothing is as it seems: 98 Percent of phishing mails from Russia mask their domain endings

Retarus reveals how companies can protect themselves

Sydney, 07/07/2022 // The security experts at Retarus have issued a warning about the growing number of disguised phishing attacks emanating from Russia. According to a recent analysis published by the enterprise cloud service provider, 98 percent of the emails classified as malicious could not be conclusively attributed to Russia based on their domain endings, rendering the blocking of emails at the domain level futile. Retarus advises companies to take this into consideration as far as their email security solutions are concerned – and to take the appropriate measures.

Unless they have business contacts in Russia, it is generally recommended for companies to identify and automatically block all Russian emails based on the GeoIP, before they even have the chance to enter the company network. This can be achieved with technologies such as Retarus Predelivery Logic. Beyond this, companies should take steps to sensitize their employees regarding Russian phishing attacks.

Directing email traffic into the correct lanes

With Retarus’ Predelivery Logic service, emails are already analyzed and can be blocked, if necessary, based on individual rule sets at the security gateway – before they ever reach the recipient company’s infrastructure and cause damage there. The rule sets in Predelivery Logic allow identification according to “Source IP Country” and the automatic triggering of appropriate measures. Depending on how the service has been configured, this could mean isolating the message in the user quarantine, for instance. The service also gives companies the option of recognizing the language in the message body, in addition to the geographic origin of the message, and using this as the basis for activating automatic rules.

To complement these customer-specific options available in Predelivery Logic, Retarus is also responding to the current state of affairs by keeping an eye on the development of the situation at the infrastructure level and staying in close contact with the competent authorities. If necessary, the experts at Retarus apply immediate measures, such as blocking the offending IPs and domains, without the customer having to take any action. The respective measures are then continuously reviewed and adapted as required.

Beware of Russian third-party providers

Just recently, in connection with Russia’s attack on Ukraine, the German Federal Office of Information Security (BSI) spoke of an “increased non-specific threat situation” and explicitly warned companies against the use of Kaspersky solutions as a result of security concerns. Companies are urged to check whether the email security solutions they are using contain any Russian components.

“After Russia launched its attack on Ukraine, we immediately replaced Kaspersky’s products and solutions with those of another provider to avoid taking on any security risk,” explains Martin Hager, founder and CEO at Retarus. “With our Advanced Threat Protection, Post Delivery Protection, and the infrastructure services offered by the Retarus Secure Email Platform, we provide our customers with optimum protection at all levels against treacherous cyberattacks from Russia.”

About Retarus

Retarus is a global provider of APIs, gateways, and applications for messaging, email management, and the exchange of structured data for business processes – with top performance, security, and data protection, provided from the company's self-operated data centers around the globe. Founded in 1992 and headquartered in Munich, Germany, Retarus is owner-managed and proud of its innovation power. The company employs a staff of around 500 at 20 locations on four continents. Retarus' services are leveraged by the world's leading companies. The services are sold directly by Retarus or in close collaboration with selected partners. Analysts constantly commend Retarus' outstanding quality and reliability. More details: www.retarus.com

Press Contact Form

  • This field is hidden when viewing the form
  • This field is hidden when viewing the form
  • This field is for validation purposes and should be left unchanged.

Press Center

Visit our Press Center to see all Press Releases.

Share this:

Download

Pictures // 1 MB
The materials provided at this Web site are for use solely by the news media in articles or other news reports. You do not obtain any ownership right, title, or other interest in Retarus trademarks or copyrights by downloading, copying, or otherwise using these materials.

Always up-to-date

Retarus provides the latest news, information about events as well as reports on first-hand experiences from our customers and business innovators. Sign up for your free newsletter subscription now.

Contact for journalists

retarus Australia Pty Ltd
Media Relations
c/o Commercial Matters Pty Ltd
Level 1/5 George St
NSW 2137 North Strathfield
Australia
 
+61 2 7908 1271
+61 2 8412 2300
press@au.retarus.com