The core of Graphus’ protection is a patented AI technology that analyzes historical and real-time communication patterns to protect you against highly sophisticated social engineering and zero-day attacks. Graphus applies this protection in three layers — it automatically quarantines malicious emails, warns recipients of suspicious emails via dynamic banners and allows recipients to report questionable emails to the IT administrator for investigation.
Graphus protects against the following threats:
- Phishing and spear phishing
- Business email compromise
- Account takeovers
- Identity spoofing
- Credential theft
- Malware, including ransomware, hidden in attachments
- Malicious URLs to harmful sites
An SEG sits between your emails and your email host, which can cause email delivery delays. In addition, SEGs are challenging to set up and require email traffic rerouting and MX record changes. Graphus is an API-based solution that integrates with Microsoft 365 and Google Workspace cloud email and protects mailboxes in real time without redirecting or delaying messages. Another crucial difference is that SEG- provided protection is based on threat filtering. Threat filters protect only against already known threats and need to be constantly updated to remain effective. Graphus uses artificial intelligence and communication pattern analysis to identify malicious and suspicious emails. This protection mechanism is always up to date and protects against zero-day attacks.
Yes. You can receive real-time or daily alerts via email and ticketing system integrations as well as monthly emailed reports.
Graphus protects Google Workspace email (Gmail) but does not provide security functionality for Google Drive. Graphus does, however, protect against attacks that are hosted on Google Drive and delivered via email.
Yes. Graphus protects all your licensed email inboxes in Microsoft 365.
No. Once your administrator activates Graphus for your organization, it is automatically activated for all active user accounts for which you purchased Graphus licenses. Only IT/security personnel need access to the Graphus Portal.
No, it does not. Graphus integrates with your cloud email platform via API; thus, all interactions are monitored and protected independently of the client or device used to access emails by your employees.
Graphus subscriptions are priced per mailbox protected. So, for example, if your subscription to Microsoft 365 (or Google Workspace) is for 250 user accounts, you only need to pay for a 250-mailbox subscription to Graphus, regardless of how many aliases or group email addresses you use.
Graphus personnel does not have access to your email or your Graphus Portal. Graphus processes emails in memory to identify threats to your business. It does not store emails outside your cloud email platform (i.e., Microsoft 365 and Google Workspace). Graphus extracts and stores meta attributes in the Graphus Cloud. These attributes are accessible only by your authorized personnel and are used for investigating suspicious messages and in incident response to detected threats.
The Graphus Cloud uses an Amazon Relational Database Service (RDS) for encrypting and storing customer data (customer emails are not stored in the Graphus Cloud). Amazon RDS uses cutting-edge security and encryption technology. Two-factor authentication is supported for customers utilizing a username and password. Passwords are secured using PBKDF2 for hashing that employs salted passwords for each user with 1,000 iterations of hashing. The Graphus Portal uses Secure Transport Layer (HTTPS) for securing data in motion when accessed by customers using web browsers.
For Graphus Enterprise subscriptions, only Microsoft 365 or Google Workspace administrators of your domain and/or other persons for whom they have created a user account have access to the Graphus Portal. For Graphus MSP subscriptions, an MSP has the option to add external admins/analysts to a particular customer organization if they wish to do so.