Solved: Re: How to change html links to plain text

cyberurmel · ‎01-25-2023

Hi there,

as most of phishing mails came through a link inside mails (and also from safe sender e.g. microsoft , gmail etc) my question is - is it possible to replace all links in mails with plain text so that unser are not able to click them directly? . Especially in the body ?

How you experts solve that ? Easy way? Dont want to use quarantines for that - only seek and replace.. if possible.

Thanks

Cyb

Ken Stieers · ‎01-25-2023

So the easiest way would be to create a content filter to defang the urls.
You can do it by either by reputation or category.. reputation would be easiest, select custom, and pick -10 to 10, check URLS in the body and subject, and set the action to Defang.
That will break the URL.
If you select Redirect to Cisco Security Proxy, that will force them through a URL filtering page that will block malware, but not any specific categories.

View solution in original post

Ken Stieers · ‎01-25-2023

So the easiest way would be to create a content filter to defang the urls.
You can do it by either by reputation or category.. reputation would be easiest, select custom, and pick -10 to 10, check URLS in the body and subject, and set the action to Defang.
That will break the URL.
If you select Redirect to Cisco Security Proxy, that will force them through a URL filtering page that will block malware, but not any specific categories.

cyberurmel · ‎01-26-2023

Hello Ken,

thanks for the fast helpful reply first. Just to understand:

attached files are not included and is that for every url? And is it possible to specify only .html ?

Regards

cyb

Ken Stieers · ‎01-26-2023

This will break every URL in the body or subject.
It can look at attachments, but it can't modify them.
None of the built in actions allow you to base it on ending .html, they all make the change based on URL reputation or category.