- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
01-25-2023 07:08 AM
Hi there,
as most of phishing mails came through a link inside mails (and also from safe sender e.g. microsoft , gmail etc) my question is - is it possible to replace all links in mails with plain text so that unser are not able to click them directly? . Especially in the body ?
How you experts solve that ? Easy way? Dont want to use quarantines for that - only seek and replace.. if possible.
Thanks
Cyb
Solved! Go to Solution.
- Labels:
-
Email Security
Accepted Solutions
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
01-25-2023 01:06 PM
You can do it by either by reputation or category.. reputation would be easiest, select custom, and pick -10 to 10, check URLS in the body and subject, and set the action to Defang.
That will break the URL.
If you select Redirect to Cisco Security Proxy, that will force them through a URL filtering page that will block malware, but not any specific categories.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
01-25-2023 01:06 PM
You can do it by either by reputation or category.. reputation would be easiest, select custom, and pick -10 to 10, check URLS in the body and subject, and set the action to Defang.
That will break the URL.
If you select Redirect to Cisco Security Proxy, that will force them through a URL filtering page that will block malware, but not any specific categories.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
01-26-2023 02:16 AM
Hello Ken,
thanks for the fast helpful reply first. Just to understand:
attached files are not included and is that for every url? And is it possible to specify only .html ?
Regards
cyb
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
01-26-2023 06:42 AM
It can look at attachments, but it can't modify them.
None of the built in actions allow you to base it on ending .html, they all make the change based on URL reputation or category.
