Proofpoint Threat Response Auto-Pull Reviews

10 Ratings
<a href='https://www.trustradius.com/static/about-trustradius-scoring' target='_blank' rel='nofollow noopener noreferrer'>trScore algorithm: Learn more.</a>
Score 9.4 out of 100

Do you work for this company? Manage this listing

Overall Rating

Reviewer's Company Size

Last Updated

By Topic

Industry

Department

Experience

Job Type

Role

Reviews (1-3 of 3)

Fraser Clark | TrustRadius Reviewer
December 03, 2019

Proofpoint TRAP - Pull malicious emails

Score 10 out of 10
Vetted Review
Verified User
Review Source
Proofpoint TRAP is being used across the entire organization currently. It is deployed centrally and in use across 4 countries. As it is an international product we have a Proofpoint trained team looking after it.
We've found Proofpoint TRAP to be very beneficial to the company so far, it helped us immensely during our last security test.
  • Automatically pulling malicious emails from users inboxes.
  • Low admin intervention.
  • Reducing remediation time on malicious emails.
  • Learning curve is steep.
  • Interface can be clunky.
  • Some interface items seem counter-intuitive.
Proofpoint TRAP can benefit any company in most scenarios. When used in conjunction with Proofpoint's main offering it is extremely powerful and reduces malicious email being delivered to almost zero.
And emails that do get delivered it is unsure about are cloned then detonated in a sandbox to see the impact and if it is then found to be malicious it will pull these mails from the user's inbox. With no interaction from administrators.
Read Fraser Clark's full review
Anonymous | TrustRadius Reviewer
December 04, 2019

Excellent last-defense for malicious email

Score 9 out of 10
Vetted Review
Verified User
Review Source
Proofpoint Threat Response Auto-Pull is a lifesaver if all "pro-active" controls fail. It will auto pull messages automatically from users' mailboxes, instructed by the "Targeted Attack Protection" module of Proofpoint. Especially with (spear) phishing, you can prevent a lot of trouble. This is all automatic, although if you really want, you can upload a CSV with the list of messages you want auto pulled.
  • Auto pull works great, even with our hybrid situation with 2 on premise exchange organizations.
  • Reporting is good, nice graphs of all the actions.
  • As threat response auto-pull uses a subset of the full threat response product, the GUI is too bloated.
  • It is still only an on premise VM, still waiting for a cloud version.
It is very well suited for any organization, though the pricing is more for larger organizations. Having auto pull available means you have fewer worries that phishing emails end up in users' mailboxes.
Read this authenticated review
Anonymous | TrustRadius Reviewer
October 23, 2019

TRAP helps me sleep at night

Score 10 out of 10
Vetted Review
Verified User
Review Source
We use TRAP enterprise-wide to help remove malicious messages from users' mailboxes. When a brand new threat sneaks by our email security appliance it's far less of a worry since TRAP will pull messages from mailboxes as soon as it starts detecting them!

Update, 6 months later: Proofpoint TRAP remains the MOST HELPFUL tool I've ever used for security incident response.
  • Finds malicious messages in users mailboxes that were not previously detected.
  • Gives good data about messages post-detection.
  • Integrates with AD.
  • Removing messages from mailboxes manually requires uploading a CSV in a particular format. More flexibility here would be great.
Incident response teams will see the most benefit from TRAP. Exchange teams will love it too because it means fewer exercises in Powershell message removal scripts.
Read this authenticated review

Proofpoint Threat Response Auto-Pull Scorecard Summary

Feature Scorecard Summary

Integration with Other Security Systems (2)
7.5
Attack Chain Visualization (1)
6
Centralized Dashboard (2)
5.0
Machine Learning to Prevent Incidents (1)
9
Live Response for Rapid Remediation (2)
8.5

About Proofpoint Threat Response Auto-Pull

Proofpoint Threat Response Auto-Pull (TRAP) enables messaging and security administrators to automatically retract threats delivered to employee inboxes and emails that turn malicious after delivery to quarantine. It is also a powerful solution to retract messages sent in error as well as inappropriate, malicious, or emails containing compliance violations and also follows forwarded mail and distribution lists and creates an audit-able activity trail.

With Proofpoint Threat Response Auto-Pull, you can protect your people, data, and brand from today’s threats by:

  • Automatically pulling malicious or unwanted messages from an end-users inbox.
  • Enriching each message by checking every domain and IP address against premium intelligence feeds.
  • Including built-in reporting, showing stats like: Email quarantine success or failures, email retraction read status, targeting by active directory attribute
  • Reducing the remediation time needed from hours to minutes.
Categories:  Incident Response

Proofpoint Threat Response Auto-Pull Features

Incident Response Platforms Features
Does not have featureCompany-wide Incident Reporting
Has featureIntegration with Other Security Systems
Has featureAttack Chain Visualization
Has featureCentralized Dashboard
Has featureMachine Learning to Prevent Incidents
Has featureLive Response for Rapid Remediation
Additional Features
Has featureAutomatically pull malicious or unwanted messages from an end-users inbox.
Has featureEnrich each message by checking every domain and IP address against premium intelligence feeds.
Has featureBuilt-in reporting showing things stats like: Email quarantine success or failures, email retraction read status, targeting by active directory attribute
Has featureReduce the remediation time needed from hours to minutes.

Proofpoint Threat Response Auto-Pull Integrations

FireEye Email Security, Splunk Enterprise Security, Okta Adaptive Multi-Factor Authentication (MFA)

Proofpoint Threat Response Auto-Pull Competitors

Demisto, Splunk Phantom, Microsoft Zap

Pricing

  • Has featureFree Trial Available?Yes
  • Does not have featureFree or Freemium Version Available?No
  • Does not have featurePremium Consulting/Integration Services Available?No
  • Entry-level set up fee?No

Proofpoint Threat Response Auto-Pull Support Options

 Paid Version
Phone
Live Chat
Email
Forum/Community
FAQ/Knowledgebase
Social Media
Video Tutorials / Webinar

Proofpoint Threat Response Auto-Pull Technical Details

Deployment Types:On-premise, SaaS
Operating Systems: Windows, Linux, Mac
Mobile Application:No
Supported Countries:United States, Canada, United Kingdom, Germany, France, Italy, Australia, Japan
Supported Languages: English, German, French, Italian, Spanish, Japanese