#1: Keep a Second Copy of Emails When Using Non-Gmail Clients

Turn on the Comprehensive mail storage setting to ensure that a copy of all sent or received messages in your domain (including users using non-Gmail services) is stored in the associated users' Gmail mailboxes.

Lead Magnet 1_Keep a second copy of emails (1)

 

#2: Stop Clever Attackers with Access to Compromised Accounts

Disable the ‘Bypass Spam filter’ option to scan all your emails, including internal senders, for spam. 

Lead Magnet 2_How to stop clever attackers

 

#3: Use Cryptographic Authentication to Verify Email Authenticity

Configure DKIM for domain(s) by adding a digital signature to outgoing message headers using DomainKeys Identified Mail (DKIM) standard. 

Lead Magnet 3_DKIM_FULL_HD

 

#4: Call out Legitimate Mail Servers Allowed to Send Emails from Your Domain

Enforce Sender Policy Framework (SPF) to prevent your users from getting spoofed. With SPF enforced, only designated mail servers will be authorized to send an email on behalf of your users.

Lead Magnet 4_SPF_FULL_HD

 

#5: Leverage the Third Protocol to Give DKIM and SPF a Boost

Configuring DMARC helps email senders and receivers verify incoming messages by authenticating the sender's domain. 

Lead magnet 5_Set DMARC to handle suspicious emails

 

#6: Enable Email Attachment Scans to Block Sophisticated Phishing Attacks

With additional Gmail attachment safety settings enabled, reduce the risk of malware infection by protecting against encrypted attachments and scripts from suspicious senders. You can also choose what action is to be taken based on the type of threat.

Lead Magnet 6_enable email attachment scan

 

#7: Stay One Step Ahead of Domain and Name Spoofing Attacks

Enable additional Gmail spoofing safety settings to reduce your risk of spoofing based on similar domain names or employee names.

Lead Magnet 7_ Stay _FULL_HD

 

#8: Sanitize Harmful Attachments

Enable the Security Sandbox option for Gmail to scan or run attachments in a virtual environment before delivering it to the user’s inbox.

Lead Magnet 8_ Sanit_FULL_HD

 

#9: Turn on Guaranteed End-To-End Email Encryption

Configure SMTP MTA Strict Transport Security (SMTP MTA-STS in short ) protocol to provide an extra layer of security for all your outbound communication by enforcing end-end email encryption. 

Lead Magnet - Settin_FULL_HD

 

#10: Add Spam Headers Setting to All Default Routing Rules

Enable the spam header settings to safeguard your organization from spam attacks and to ensure maximized spam filtering capacity in all default routing rules. 

Lead Magnet 10_Add Spam Headers

 

#11: Think Beyond the Basic Two-Factor Authentication

Use a physical security key to verify user identity and to strengthen the password recovery process thus protecting you from phishing attacks. 

Lead Magnet 11_Two s_FULL_HD

 

Need help in fast-tracking your defense against ransomware?

Contact Us

 

SysCloud protects businesses and educational institutions from data loss and cyber threats when using office collaboration suites like Google G Suite and Microsoft Office 365. Some of our customers include Yahoo!, Travelodge, Gerber Technologies, Global Logic, Fair Portal, Quintstreet, and educational institutions like Palo Alto Unified School Districts, Frisco Independent School District, and Alabama State University to name a few. 

Google for education partnerMicrosoft education partnerAICPA SOCSSAE certifiedAWS partner