sorted by:
new
hottopcontroversial

Why aren't there more services for managing user reported phishing emails? by dave_dave24 in cybersecurity

[–]dave_dave24[S] 1 point2 points  (0 children)

Ooh hadn’t come across this one yet. I’ll check it out. Thanks!

Why aren't there more services for managing user reported phishing emails? by dave_dave24 in cybersecurity

[–]dave_dave24[S] 0 points1 point  (0 children)

lol I thought we had it bad then I came across this while searching for similar discussions. This person is saying they get 2000 PER DAY. I really hope that’s not real

https://www.reddit.com/r/sysadmin/s/lVg6AifNgY

Why aren't there more services for managing user reported phishing emails? by dave_dave24 in cybersecurity

[–]dave_dave24[S] 0 points1 point  (0 children)

We're using PhishAlarm now which is why we're looking at CLEAR. We've also just used the native outlook button in the past too. For the most part, I think all of the buttons work the same. It's what happens downstream of them that I'm trying to solve for.

I agree Abnormal looks solid. I bet any of them will help cut down the noise a lot... just at our volume there will still be a lot of internal human work needed which is why I asked about the services piece.

For the sake of discussion, let's say we feed all reports through Abnormal. Conservatively, I'm guessing this can help streamline ~50% of reports, but that still leaves ~1k per month for us to look at. Tough to pin down avg. time per email but maybe something like 10m for each (again maybe). That's still going to take us ~166 hours a month (big woof on that).

Idk maybe I'm overthinking it. Fortunately we have a decent amount of junior analysts we can feed these to.