Proofpoint Targeted Attack Protection (TAP) Reviews & Insights

Score9.1 out of 10

65 Reviews and Ratings

Community insights

TrustRadius Insights for Proofpoint Targeted Attack Protection (TAP) are summaries of user sentiment data from TrustRadius reviews and, when necessary, third party data sources.

Pros

Effective URL Blocking: Several users have praised Proofpoint TAP for its effective URL Blocking feature, which has prevented malicious URLs from infiltrating their systems. This feature not only alerts users about potential compromises but also provides concise threat context, enabling them to understand the nature of the threats they face.

Integration with Proofpoint TRAP: Many reviewers have valued the seamless integration between TAP and Proofpoint TRAP. By combining these two solutions, users are able to streamline their workflow and enhance security measures. The integration detects spam and phishing emails, providing an added layer of protection against cyber threats.

Accurate Attachment Detonation: Users have expressed high satisfaction with TAP's sandbox attachment detonation feature. This functionality effectively vets attachments for threats, allowing users to confidently analyze email attachments without risking system compromise. The ability to detect malicious attachments and boast a false positive rate of less than 0.001% over three years has been particularly impressive to reviewers.

Proofpoint Targeted Attack Protection (TAP) Reviews

43 Reviews

The Ultimate Guardian for Your Email Security.

Rating: 9 out of 10

Incentivized

October 13, 2024

Use Cases and Deployment Scope

We currently utilize Proofpoint Targeted Attack Protection to safeguard our users from inadvertently clicking on malicious phishing links. This advanced security solution not only prevents potential threats but also assists us in conducting thorough investigations whenever users fall victim to phishing attempts, ensuring a comprehensive approach to our cybersecurity operations.

Pros

Notifying of malicious clicks.
Click rate metrics.
Historical searches on user's and their clicks.

Cons

Submitting false positives.
Submitting false negatives.
Better integrations with other tools.

Likelihood to Recommend

Proofpoint Targeted Attack Protection is a great security application for notifying our team about when our users click on malicious links. It provides a good explanation of the attack scenario, including the Sender, Subject, as well as other users that this attack has been sent to. It is also very useful in helping provide metrics on what types of attacks have been sent to the organization historically.

Verified User

Employee in Information Technology (10,001+ employees)

Vetted Review

4 years of experience

Proofpoint TAP - Critical for Email Security

Rating: 9 out of 10

Incentivized

January 16, 2024

Use Cases and Deployment Scope

Proofpoint Targeted Attack Protection (TAP) is very helpful in detecting threats that come through mail. It keeps track of URL accessed by user in mail which is deemed suspicious after delivery of it.

Threat description in sandbox is very helpful for further triaging.

Isolation browser is another good feature which allows you to browse malicious website without risk of infection.

Pros

Sandboxing of threat
Description of rewritten & non-rewritten helps in triaging
Isolation browser
Threat description & tagging

Cons

Detailed description of threat
Mail quarantine option should be introduced like in TRAP
Reduce false positive for impostor alerts & URL defence
Need to focus on integration of TAP with other EDR relation technologies

Likelihood to Recommend

Like the level of details & the co-relation provided by the Proofpoint TAP services. The inbuilt sandboxing capability that is used to capture the behavior on visiting a suspicious link, capturing the current status of the remediation from Email Protection service & TRAP is an added advantage & speeds up the investigation.
The way TAP marks a particular threat identified in an email as False Positive from the sandbox outcome is great. Isolation browser is added advantage which helps to see real-time threat behavior.

Verified User

Team Lead in Information Technology (10,001+ employees)

Vetted Review

7 years of experience

TAP in my own perspective as a user

Rating: 9 out of 10

November 20, 2021

Use Cases and Deployment Scope

Its use as our email protection defense for phishing emails. Another layer of protection is malicious emails are not blocked. When URLs are rewritten and clicked by the user, we get an alert and actioned accordingly. Use in the whole organization. Sometimes it creates a lot of False Positives and too much noise.

Pros

Rewrite URL
Blocked malicious URL
Reporting
Alerted for possible compromise

Cons

Reduce false positive for impostor alerts
I have noticed that if the URL is long, sometimes it's not being rewritten so the layer of protection is not there
More proactive approach rather reactive to avoid possible compromise

Likelihood to Recommend

Proofpoint TAP is well suited for big companies that have more than 5000 employees. Companies that are targeted every day by phishing attacks. It adds a layer of protection even if the employee is not well versed with phishing and recon, when the user clicked a malicious link, it will be blocked and the Security team will be alerted to mitigate depending on the scenario.

Verified User

Analyst in Information Technology (1001-5000 employees)

Vetted Review

5 years of experience

Great product!

Rating: 10 out of 10

Incentivized

November 11, 2021

Use Cases and Deployment Scope

Currently, at my organization, Proofpoint Target Attack Protection, also known as TAP, is used by the SOC and also our Threat Intelligence team. The SOC uses it by researching emails that they get alerted on, and the cyber threat intelligence team uses it to research campaigns that target our organization.

Pros

Details on specific malicious email campaigns
Details on the users that are targeted by those campaigns
Use of API's to be used with other cyber tools your company has
Insight on the types of malware and types of campaigns

Cons

Better user import capabilities
MITRE alignment
Stronger campaign capture

Likelihood to Recommend

I think it is well suited for any organization. It truly gives good insight on the email campaigns that are hitting your company, as well as the people that are being targeted the most and also VIP users such as executives or even other people in IT, cyber, or administrators.

Verified User

Engineer in Information Technology (10,001+ employees)

Vetted Review

2 years of experience

Spam/Phishing emails reduced significantly

Rating: 10 out of 10

September 5, 2021

Use Cases and Deployment Scope

We utilize Proofpoint Targeted Attack Protection for Email as our email security solution for our entire organization. We receive over 96 million emails per year and Proofpoint has blocked over 22 million identified as spam/phishing and over 55 thousand infected attachments.

Pros

Spam/phishing protection
Sandbox attachment detonation

Cons

Better reporting
Screenshot of emails

Likelihood to Recommend

Top email security product hands down. We have received far [fewer] spam/phishing emails since deployment.

Verified User

Engineer in Information Technology (10,001+ employees)

Vetted Review

3 years of experience

Proofpoint TAP a product that just works!

Rating: 9 out of 10

Incentivized

April 1, 2021

Use Cases and Deployment Scope

Proofpoint Targeted Attack Protection is a rock solid application that just works.

Pros

Anti Spam
Anti Malware

Cons

Upgrades on the on-premise version can sometimes fail to install

Likelihood to Recommend

Proofpoint Targeted Attack Protection is an extremely robust solution to secure corporate email. It is extremely effective at eliminating anti-spam messages and allows users to manage a digest to access emails that may have been flagged as false positive. The product also is effective at blocking malware in messages. The user management interface is very intuitive and provides a robust medium to configure and administer the product very easily.

Tim Slater

Manager, Corporate Services and Information Systems in Information Technology at Forest Practices Board (51-200 employees)

Vetted Review

8 years of experience

View profile

TAP away those threats!

Rating: 10 out of 10

Incentivized

November 21, 2020

Use Cases and Deployment Scope

Proofpoint Targeted Attack Protection is used across our entire company covering all email domains.

Pros

URL rewrite feature is extremely useful for finding users at risk
Very attacked people is great for end user awareness targeted training
The dashboard is very intuitive and has useful data for reporting efficacy

Cons

Small issue but it would be great if they got on board with SAML 2.0 authentication for the dashboard
Would be nice to combine PPS and TAP dashboards into one view for reporting

Likelihood to Recommend

TAP is great where you have diverse email solutions and if you have a multi-vendor security strategy. They partner with leading security providers to increase security posture and telemetry.

Mike Kelley

CISO (Chief Information Security Officer) in Information Technology at EW Scripps (5001-10,000 employees)

Vetted Review

3 years of experience

Proofpoint TAP is powerful but expensive

Rating: 8 out of 10

Incentivized

January 23, 2020

Use Cases and Deployment Scope

Proofpoint TAP is used on a shared service mail gateway cluster by our outsourcing services clients. The URL protection prevents users from open websites with malware content. The attachment analyzer is able to detect malware in email content before the mail enters the client's environment and before the standard antispam engine checks the attachment.

Pros

URL protection with a cloud-based Proofpoint database.
Attachment analysis and removal of potentially dangerous content.

Cons

Support for different languages in international environments for URL protection functions.

Likelihood to Recommend

Proofpoint TAP works well on the Proofpoint PPS mail gateways and it cooperates with Proofpoint T.R.A.P.

Frank Haarmann

Senior Consultant in Information Technology at CGI Deutschland B.V.&Co.KG (1001-5000 employees)

Vetted Review

Reseller

2 years of experience

Email threat protection for loosely connected devices

Rating: 10 out of 10

Incentivized

November 29, 2019

Use Cases and Deployment Scope

Proofpoint Targeted Attack Protection is being used across the entire organization for both inbound and outbound email protection. We currently have TAP integrated with PPS and the Threat Response product form Proofpoint. This system has drastically reduced our mean time to detect and respond to email-related attacks. Our previous tool for this effort was O365 ATP. Proofpoint TAP is far superior at detection and response than what O365 ATP provides.

Pros

Detecting post-delivery weaponization of URLs.
Attachment inspection and detection.
Email retrieval once an incident is detected.
Select the treatment of VIP users that allows for enhanced protection.
Proofpoint TAP provides great insight into attack campaigns.
It allows for faster response to zero-day attacks.

Cons

User-interface could use improvement.
Better details on detonation information emails from my own organization. Show me exactly what email and path from the sandbox.

Likelihood to Recommend

Proofpoint TAP provides excellent protection for post weaponization of URL based phishing emails. Its ability to restore a URL and kick off the automation is especially helpful. Proofpoint's integration with other vendors also allows the organization to extend protection across the enterprise both for on-prem devices and loosely connected devices.

Verified User

Engineer in Information Technology (5001-10,000 employees)

Vetted Review

2 years of experience

Proofpoint Targeted Attack Review

Rating: 7 out of 10

Incentivized

November 29, 2019

Use Cases and Deployment Scope

We have Proofpoint Targeted Attack Protection (TAP) deployed across the entire organization. We rolled out Proofpoint TAP to detect malicious email attachments and URLs to malicious websites and websites attempting to steal employee credentials.

Pros

Proofpoint TAP does a good job of tracking malicious campaigns and providing a portal where my team can confirm which employees were targeted by each campaign.
Proofpoint TAP does a good job of detecting malicious attachments.
Proofpoint TAP does a good job of continually updating its threat intelligence so if we were targeted early in a campaign before it had been detected it will send us a notification if there is a match between emails we have already received that threat intelligence now classifies as malicious.

Cons

While Proofpoint TAP does perform URL protection it has room for improvement on how it detects URLs going to credential-stealing websites. Our employees report emails with credential-stealing URLs on a daily basis that were not blocked by Proofpoint TAP.
While Proofpoint TAP does provide basic reports of files it analyzes, the reports do not provide enough information to understand what the malicious file activity was. in contrast, publicly available sandboxes provide that information for free.
While Proofpoint TAP does provide a dashboard that allows us to view the emails associated with threat campaigns, the dashboard views and reports have significant limitations on the timeframe we can search by. Some of the dashboards/views/reports are limited to 14 days. We need to report findings based on monthly and quarterly trends which are not possible with the current timeframe limitations.

Likelihood to Recommend

Proofpoint TAP is well suited for enterprises that are being targeted by attackers sending traditional malicious email attachments and malicious URLs. Its lets suited for enterprises that are being targeted by attackers focused on sending emails without attachments or URLs to 'benign' websites that do not have exploits, but do attempt to convince the employee to log in and provide their username and password.

Verified User

Director in Information Technology (501-1000 employees)

Vetted Review

3 years of experience

Loading Reviews List....

Proofpoint Targeted Attack Review

Rating: 7 out of 10

Incentivized

November 29, 2019

Use Cases and Deployment Scope

Pros

Proofpoint TAP does a good job of tracking malicious campaigns and providing a portal where my team can confirm which employees were targeted by each campaign.
Proofpoint TAP does a good job of detecting malicious attachments.
Proofpoint TAP does a good job of continually updating its threat intelligence so if we were targeted early in a campaign before it had been detected it will send us a notification if there is a match between emails we have already received that threat intelligence now classifies as malicious.

Cons

While Proofpoint TAP does perform URL protection it has room for improvement on how it detects URLs going to credential-stealing websites. Our employees report emails with credential-stealing URLs on a daily basis that were not blocked by Proofpoint TAP.
While Proofpoint TAP does provide basic reports of files it analyzes, the reports do not provide enough information to understand what the malicious file activity was. in contrast, publicly available sandboxes provide that information for free.
While Proofpoint TAP does provide a dashboard that allows us to view the emails associated with threat campaigns, the dashboard views and reports have significant limitations on the timeframe we can search by. Some of the dashboards/views/reports are limited to 14 days. We need to report findings based on monthly and quarterly trends which are not possible with the current timeframe limitations.

Likelihood to Recommend

Verified User

Director in Information Technology (501-1000 employees)

Vetted Review

3 years of experience