Cofense PhishMe is a cyber threat and phishing simulator meant to be of use in training employees to be wary against threats and also to gain information about general employee threat knowledge and preparedness. A free trial is available for small business.
N/A
Watchguard Endpoint Security
Score 8.8 out of 10
N/A
WatchGuard EPDR (formerly Panda Adaptive Defense 360) combines next-generation antivirus protection, endpoint detection and response (EDR), patch management, content filtering, email security, full disk encryption, and more, into one package. The platform touts a unique zero-trust security service that certifies the legitimacy and safety of all running applications thanks to a combination of automated, AI-driven processes and investigation services provided by a team of malware analysts.
Cofense PhishMe is an excellent solution for scenarios where it will be sold as a managed service. I believe that PhishMe is too expensive for many clients and instead would benefit from the economies of scale where an MSSP sells it as part of a whole service, which offers the analysts and reporting included. PhishMe is excellent for training and awareness of Phishing, but shouldn't replace mandatory training for new joiners or yearly refreshers, it should only be used as an additional training option.
I would absolutely recommend Watchguard Endpoint Security to a colleague - as there's only four of us on the team in the entire district. The additional client insights have been invaluable to us. We had, historically, been doing Windows updates A. whenever a device was turned in with issues, or B. each Summer during device turn in. We can now control those updates with this software - pushing Windows patches to necessarily clients with the push of a button. This has saved us COUNTLESS hours of driving or directing staff to update themselves (and then ignoring us). We do have a remote desktop client that we have utilized in the past, but updating during the day is cumbersome for teachers. Watchguard Endpoint Security has now given us more control over our devices - as well as better protection from threats as well.
It gives clear-cut segregation of different parts of an email, header, text and HTML body, URL, attachments, HTML preview and some analytical insight like "similar reports." This distinctive approach actually helps reduce data overload during an analysis.
The URLs captured here pass through an automatic reputation check [in our case VirusTotal] and add a tag of the reputation. If it is a well-known bad URL the tag helps us take the decision fast.
For creating automation rules on the reported emails the "Recipes" section is really helpful. We can create easy recipes [or rules ] to handle a huge flow of reports and also we can create more sophisticated rules depending on the Cyber intelligence feed to catch the really bad currently less known attack attempts by malicious emails.
The "Threat Indicators" section is also useful to use as a threat intelligence source to check the URLs for their maliciousness.
EndPoint has an optional feature for automatic and remote software updates on endpoints, a handy option for keeping computers up-to-date and secure. However, it is not used to install new software but only to update it. We believe that this part is instrumental, but it is somewhat incomplete.
Another drawback is that some complementary functions to the antivirus, such as the one above, are optional and require a separate subscription.
The implementation of EndPoint requires some planning, especially the time required to harden and learn the system. This is not critical and is typical for this type of system, but it is necessary to plan it well.
The ease of use, pricing, support, reliability, and quality of the product. Panda / WatchGuard products are highly rated, priced right and easy to maintain. All of this make it very easy to renew and purchase new licenses for us and our clients.
Its built with UX in mind and is aimed at non-tech people, to ensure that almost everyone can run the campaign. But if we go deeper - sometimes you will need an HTML editor or support in order to figure out some advanced edits you might want to add in your scenarios.
Easy and intuitive MSP management portal to manage all of your clients from a single pane of glass. Policies can be pushed down globally or individually based on needs. The client portal allows access to their tenant information and installs only which is nice if you are working with clients who might have an internal person or an IT team that also wants access to things to manage themself.
The software is 100% managed on a cloud platform that can be managed via an account even if they are not present within the company network where the software is installed, I even always opened the control panel on the browser of my smartphone to monitor the situation.I have never experienced any abnormal software crashes
The only annoyance I complain, if we want to be picky, is the fact of the constant disconnections from the control panel.Every about 4 hours the account logs out even if I set the "remember this device" flag; having said that I have not noticed neither slowdowns nor conflicts with other software
I have not had to use their support for pretty much anything. The software works well, and is very intuitive. I would imagine their support would be rather basic as there is not too much that can go wrong with a report phishing button, and if it were I would probably consider a different software.
I gave it a 10 because I compare it to air conditioning. I need it to work every day, 24/7. I need it to be reliable and not something that requires a ton of interaction from staff to make sure it works every day. In addition, I should be able to run other things at my house when the AC is on. Panda fits that description.
The training was very helpful. It demonstrated how to configure the service for initial install, items to monitor, and how to set up for ongoing protection. Hands on training is more helpful but this is a good starting point
Implementation shouldn't present any problems in standard office environments. In environments with development teams, however, caution is needed. If zero trust is enabled, mechanisms must be in place to ensure that internal software isn't classified as a false positive (software certificate, exception folder, etc.)
Cofense PhishMe was the first choice for us as the user interface as well as their bundle package with Cofense Triage and Vision has helped the organisation to alleviate the overall security awareness posture. The other vendors did not provide a vast range of phishing scenarios as compared to Cofense PhishMe platform.
We prefer to maintain loyalty with a brand that really delivers what it promises. Our focus is to bring customers who have other solutions to Watchguard's base, however some companies have their own IT department and already work with other tools. Preferimos Fidelizar com uma marca que realmente entreg o que promente. Nosso foco é trazer os clientes que possuem outras soluções para base da Watchguard, contudo algumas empresas possuem departamento de TI próprio e já atuam com outras ferramentas.
With the implementation of watchguard (at the beginning Panda Endpoint, but it is the same) I was able to insert in the control panel all the unauthorized software previously installed by colleagues without any authorization from the various department heads.Now any licensed software goes into lockdown and can be unlocked from the control panel
Recipes in the system are capable of handling almost 2x what an analyst does, which cuts down the efforts [of] an analyst and provides more time for accurate strategies.
With roughly 90% false positives coming through, the remaining 10% of true positives need as much attention as they can get for the full investigation and analysis.
1,500 or more phishing messages can come through in a given week and the amount of time/employees required to review this without a tool like Cofense is surely beyond [the] expected/anticipated budget.
By committing to go all in on Watchguard Advanced EPDR across our whole client base, we maximized our price position - enabling us to offer the best endpoint security at a price better than what lesser competitive products cost.
Leveraging Watchguard Endpoint Security as part of our unified platform strategy provides better integrated security, managed through Watchguard's cloud architecture. This significantly reduces our cost to deploy, manage, and support our client's. Our improved security offering, better delivery, and stronger price position has helped us achieve 56% growth in our managed services business over the past 18-months.
Organizations that have disparate cyber security products often require specialists for each solution in their stack. Watchguard provides outstanding training resources that equip our entire technical staff - significantly improving our service delivery while lowering our overall cost of business.
