CS Mar Apr 2022
You also want an ePaper? Increase the reach of your titles
YUMPU automatically turns print PDFs into web optimized ePapers that Google loves.
product review<br />
HORNETSECURITY 365 TOTAL PROTECTION<br />
The concerted move to home and<br />
hybrid working practices has seen<br />
cloud services uptake increase<br />
exponentially and none more so than<br />
Microsoft 365. This popularity brings its<br />
own challenges, though, as Microsoft 365<br />
has become one of the top targets for<br />
cybercriminals and yet its email security<br />
features are comparatively limited.<br />
The safest course of action is to adopt<br />
a multi-layered defence, using a third-party<br />
specialist product to bolster Microsoft's<br />
native security tools, and Hornetsecurity<br />
365 Total Protection looks a great choice.<br />
It delivers a highly affordable solution<br />
that's easy to deploy and its wealth of<br />
email security measures include artificial<br />
intelligence (AI)-based protection.<br />
Three options are available with the<br />
Business package, providing all key threat<br />
defence measures, along with live email<br />
tracking, compliance filtering and content<br />
control. The Enterprise version includes<br />
ATP (advanced threat protection) cloud<br />
sandboxing, 10-year email archiving,<br />
forensics analysis tools, e-discovery and<br />
continuity services, while the Backup<br />
package adds automated backup and<br />
recovery for mailboxes, Teams, OneDrive<br />
plus SharePoint and even Windows<br />
endpoints.<br />
We tested 365 Total Protection in a live<br />
environment and found the 30-second<br />
deployment claim quite achievable. After<br />
changing our MX records, we used the<br />
registration link to authenticate with our<br />
Microsoft 365 account and sat back while<br />
the setup routine created the necessary<br />
connectors for inbound and outbound mail<br />
processing by the Hornetsecurity servers.<br />
Protection is instant, as the default<br />
settings enable full spam and malware<br />
protection, which block suspect emails<br />
before they reach your mailbox. Nuisance<br />
newsletters and mass marketing campaigns<br />
are handled efficiently by the Infomail filter,<br />
which uses over 15,000 heuristics to weed<br />
them out.<br />
We could keep a close eye on the action,<br />
as the cloud portal's live email tracking view<br />
shows logs of all inbound and outbound<br />
email activity. Emails are colour-coded to<br />
clearly show their classification and we<br />
could view all details about each one,<br />
including header information.<br />
The list can be refined with filters and<br />
each message provides a drop-down menu<br />
for adding the sender to deny or allow lists,<br />
reporting it as spam or releasing it with the<br />
Enterprise version, ensuring suspect emails<br />
are passed to the ATP service for further<br />
examination. Self-service features enable<br />
users to review emails in their personal<br />
portal and release them, if permitted,<br />
while regular reports showing spam activity,<br />
quarantined attachments, plus the reasons<br />
for rejection, are sent to each user.<br />
Performance is excellent as, during our<br />
month-long live tests, not a single suspect<br />
message slipped past Hornetsecurity's<br />
defences. The content control service<br />
also worked well, with it removing<br />
encrypted attachments and those<br />
containing executables or Word, Excel<br />
and PowerPoint files with macros.<br />
The compliance filter provides more<br />
granular control of emails by applying<br />
data leak prevention rules to outbound<br />
messages that look for keywords in the<br />
body, subject and attachment and rejects<br />
them, if a match is found. Another valuable<br />
feature is enforcing rule-based encryption for<br />
specific outbound messages, with recipients<br />
receiving a web link to view them securely.<br />
The Enterprise ATP service deals efficiently<br />
with emails containing malicious URLs,<br />
content or attachments and its URL rewrite<br />
feature opens a web session to a secure<br />
proxy to check where the link connects to<br />
and if threats are present. Spear phishing<br />
emails are dealt with by the targeted<br />
forensics filter, which identifies spoofed<br />
addresses, determines the message intent<br />
and sees if it is attempting to fool users into<br />
handing over passwords.<br />
Hornetsecurity 365 Total Protection<br />
impressed us with its swift deployment,<br />
extensive mail security measures and flawless<br />
performance. Furthermore, it's perfect for<br />
small business and enterprises alike, as all<br />
three packages are offered at very attractive<br />
prices.<br />
Product: 365 Total Protection<br />
Supplier: Hornetsecurity<br />
Web site: www.hornetsecurity.com<br />
Contact: +44 2030 869-833<br />
Email: sales@hornetsecurity.com<br />
Price: Business from £1.75 per user per<br />
month (exc VAT)<br />
www.computingsecurity.co.uk @<strong>CS</strong>MagAndAwards <strong>Mar</strong>/<strong>Apr</strong> <strong>2022</strong> computing security<br />
11