Valimail Defend™

Protect your inbox from email impersonation attacks

Email security

Valimail Defend benefits:

  • One-click integration for Microsoft Office 365 and Google G Suite customers
  • Provides standalone protection — or can be combined with existing security tools for a layered defense
  • Leverages the Valimail platform to block BEC attacks from fraudulent domain impersonations as well as phishing attacks sent from open-signup systems like Gmail and Yahoo
  • Highly configurable policy controls at the group, individual, and domain levels
Defend Datasheet Homepage screenshot

Real defense insights

Rapid threat intelligence
Quick access to email security insights, including the volume of threats an organization faces from untrusted domains and untrusted contacts.

Review the actions taken against those messages based on policy controls, whether they have been sent to the trash, spam, custom folders, or flagged for review.

Learn more
Defend Datasheet Watchlist dashboard

Protect your most attacked people

Get visibility into the threats targeting specific individuals (or G Suite or Office 365 groups) in your organization. Apply custom policies to keep them safe with enhanced security measures.

With Defend, security teams get visibility into the most attacked groups and individuals and can configure permissive or restrictive settings based on each group’s risk profile.

Policy controls at your fingertips

Defend gives you access to a wide variety of policy controls and configurations. Easily set policies across groups, to direct untrusted messages to be quarantined or deleted. Review existing policies and edit them quickly from a menu of policy options.


Visibility into potentially threatening messages

Defend provides visibility into messages that are targeting your organization from untrusted senders, including who they came from, who was targeted, and when they were sent. Administrators are able to drill down to a specific message, copy the Message ID and link directly to the Office 365 or G Suite admin portal for further investigation into the subject line, sender, email body, links, and attachments.

Learn more
Millions connected through data

Zero-trust approach for incoming email

Valimail Defend protects employees by controlling who is allowed to send email into your organization — so every communication hitting your employees’ inboxes will be safe and legitimate. By default, all email from untrusted senders is blocked. Only senders whose identities can be established as trustworthy (and who are permitted by your policy controls) reach the inbox.

Defend leverages Valimail’s zero-trust sender identity platform for definitive protection, instantly validating every sender that gets past your secure email gateway gateway against our proprietary database of 30 million authenticated domains. Additionally, it automatically synchronizes your organization’s contact list to our trusted senders database.

If the sender is trusted, the email stays in the employee’s inbox. If the sender is untrusted, the email is rejected and moved from the inbox. It’s that simple.

Learn more
Stop the domino effect concept for business solution and intervention

Catches what traditional email security misses

Traditional email security approaches struggle to keep pace with ever-changing attacks. To stop business email compromise (BEC), secure email gateways require ongoing monitoring, configuration, and maintenance. Existing systems, based on AI/ML modeling, attempt to address these mutating attacks by anticipating content and behavioral patterns, but the speed of mutation used by modern attackers means that many phish get through such defenses.

A better approach is to address the common technique used by all phishing attacks: Impersonation. Defend does exactly that, stopping BEC attacks that utilize domain impersonations, such as messages from lookalike and fraudulent domains, as well as impersonations launched from open-signup systems such as Gmail and Yahoo on day one. Why? Because Defend authenticates and authorizes emails at the sender domain level. We focus on permitting only the finite population of good senders, while the infinite variety of bad content is blocked by default. It’s what we call Zero Trust Email Security.

Request your complimentary phishing analysis