Paubox has boosted its HIPAA-compliant Paubox Email Suite with new inbound email security. It says that it has added Zero Trust Email with multi-factor authentication (MFA). It believes that this adds protection against ransomware and phishing attacks.
Hoala Greevy, CEO and Founder of Paubox, said, “Ransomware and phishing attacks are at an all-time high at a huge cost to healthcare providers. With our Zero Trust Email feature, our solution offers an additional line of defense in protecting customers against these unwanted attacks on their email.
“For years, our innovative HIPAA compliant encrypted email solution has been making it easy for healthcare providers to send secure email and for patients to easily access and read those messages. Now, this new feature provides additional protection against phishing and ransomware attacks as well.”
Raising the barrier on inbound email
Email is an easy target for attackers. People are easily tricked into clicking on links and suffering cyberattacks. Paubox already delivers several features to protect email and is now raising that bar further. Some of the existing features of the Paubox email suite are:
ExecProtect: Display name spoofing is used to hide who the email really comes from. Paubox detects this attempted obfuscation and blocks those emails. It reduces the risk of users falling for Business Email Compromise (BEC) attacks.
Data Loss Prevention (DLP): This stops employees from sending or receiving unauthorised personal healthcare information (PHI). It is not just about removing employee mistakes. It stops attackers from using a compromised account to exfiltrate protected data.
Blacklist Bot: Automatically creates blacklist rules to help users manage spam.
Paubox has added its Zero Trust Email solution to this list of features. As well as MFA, it also uses an AI algorithm to detect ransomware and phishing attacks. It now requires additional evidence from the sender’s email server before allowing email into user inboxes.
It will be interesting to see what challenges it faces with this. Larger healthcare providers will likely have email setups that can support additional outbound security checks. Smaller organisations might struggle, especially those relying on Managed Service Partners (MSPs). They would have to get their providers to add features they might not want to support.
Enterprise Times: What does this mean?
Anything that raises the bar for inbound email has to be a good thing. That Paubox is targeting a highly regulated environment is good. However, there are many other industries and markets where this would be welcomed.
Healthcare is also an interesting and complex market given the spread of suppliers. It ranges from small surgeries and practices to large insurers and healthcare groups. While people have bought solutions that meet regulatory requirements, that doesn’t mean they are all as good as each other. That raises interoperability as a question.
What will be interesting is to see where Paubox goes next. Will it look to widen its scope of solutions to other regulated industries? If it does, there is a ready market for what it offers.
