Barracuda Backup is a data recovery, restoration, and deduplication product from Barracuda Networks. It features data center backup support for email protection, network & application security, and general data protection.
N/A
Cofense PhishMe
Score 7.4 out of 10
Enterprise companies (1,001+ employees)
Cofense PhishMe is a cyber threat and phishing simulator meant to be of use in training employees to be wary against threats and also to gain information about general employee threat knowledge and preparedness. A free trial is available for small business.
There are few scenarios that it's not well suited for as long as it's either VMware or Agent Based installations. I have not had success with directly backing up a non-Windows file share. I would definitely test the product first if you are not planning to directly backup through an agent.
Cofense PhishMe is an excellent solution for scenarios where it will be sold as a managed service. I believe that PhishMe is too expensive for many clients and instead would benefit from the economies of scale where an MSSP sells it as part of a whole service, which offers the analysts and reporting included. PhishMe is excellent for training and awareness of Phishing, but shouldn't replace mandatory training for new joiners or yearly refreshers, it should only be used as an additional training option.
It gives clear-cut segregation of different parts of an email, header, text and HTML body, URL, attachments, HTML preview and some analytical insight like "similar reports." This distinctive approach actually helps reduce data overload during an analysis.
The URLs captured here pass through an automatic reputation check [in our case VirusTotal] and add a tag of the reputation. If it is a well-known bad URL the tag helps us take the decision fast.
For creating automation rules on the reported emails the "Recipes" section is really helpful. We can create easy recipes [or rules ] to handle a huge flow of reports and also we can create more sophisticated rules depending on the Cyber intelligence feed to catch the really bad currently less known attack attempts by malicious emails.
The "Threat Indicators" section is also useful to use as a threat intelligence source to check the URLs for their maliciousness.
In some of the older version of the software, drilling down to restore a single files was quite the process. It's still a little slow to this day, but improvements have been made.
It would be nice to have the ability to spin up a virtual machine directly on the backup appliance in the event of a failed server. At current time you need a Hyper-v or VMWare environment to restore a failed machine to.
Once you put the device in cloud control mode, some of your options are limited when you log directly into the local appliance. I personally would like to see all the options remain the same so I can administer the device the same remotely and I would sitting in front of it.
Its built with UX in mind and is aimed at non-tech people, to ensure that almost everyone can run the campaign. But if we go deeper - sometimes you will need an HTML editor or support in order to figure out some advanced edits you might want to add in your scenarios.
They are always quick to get you routed to a tech support person and always get follow up after contacting them. Last experience was amazing, she adjusted my boxes and they perform even better. I cannot say enough about the support. We had some trouble with one of the windows servers leaving the volume shadow copy out there and would fail. They worked with us to adjust and get working. After that it has been months since I have had to do anything with the server to keep the backups running.
I have not had to use their support for pretty much anything. The software works well, and is very intuitive. I would imagine their support would be rather basic as there is not too much that can go wrong with a report phishing button, and if it were I would probably consider a different software.
I'm much happier with how Barracuda lays out their console and user interface. Acronis is a great product and you do get what you expect. But to have a the learning curve personally cut by at least 50% is a great thing to have when it comes to training new members to the IT team and getting them up to speed of our procedures.
Cofense PhishMe was the first choice for us as the user interface as well as their bundle package with Cofense Triage and Vision has helped the organisation to alleviate the overall security awareness posture. The other vendors did not provide a vast range of phishing scenarios as compared to Cofense PhishMe platform.
We've had a couple situations where we've had to pull data back down from the BBS cloud and while it can take a while sometimes, we haven't had an issue where we haven't been able to restore something that we needed. Overall it has been very reliable.
We've had to implement two other backup systems in addition to Barracuda Backup and dedicate our BBSs to just mission-critical data because we're size-locked in our appliances. Upgrading to larger models is not financially viable at the moment and we can't expand their internal storage or point them to an iSCSI share or likewise. We brought in other systems to handle non-critical and virtual data because of those storage limitations.
Recipes in the system are capable of handling almost 2x what an analyst does, which cuts down the efforts [of] an analyst and provides more time for accurate strategies.
With roughly 90% false positives coming through, the remaining 10% of true positives need as much attention as they can get for the full investigation and analysis.
1,500 or more phishing messages can come through in a given week and the amount of time/employees required to review this without a tool like Cofense is surely beyond [the] expected/anticipated budget.
