Dots Screenshot Compressed Dark

Impersonation Attacks

Stop the advanced impersonation attacks that evade existing email security and lead to security incidents, with Egress Defend and Egress Prevent.

Impersonation attacks are one of the most common phishing threats


of all branded emails companies received are impersonation attacks


of cybersecurity professionals say their senior executives have been spoofed


of organizations have been the victim of a successful phishing attack

Detecting impersonation attempts is essential

Many phishing attacks use sender impersonation to socially engineer their victims by adding credibility.

Cybercriminals have evolved their email impersonation attacks to get through Microsoft 365's native security functionality and secure email gateways (SEGs). This leaves it down to individual employees to determine which emails are legitimate and which are spoofed, with a single mistake exposing organizations to credential theft, data exfiltration, and fraudulent payments.

Stats V2 Impersonation Attacks
Solutions Impersonation 1

Detecting an impersonation attack using trust and domain analysis

  • 1 Sender domain analysis. The domain is used to fool the recipient into thinking this is a genuine email. However, the display name matches that used by an internal user. An internal user with an external domain is treated with suspicion.
  • 2 Real-time alerts highlight impersonation attacks. Based on its analysis, Egress Defend highlights to the user that this an impersonation attack sent from an individual they've had no previous contact with.
Solutions Impersonation 2

Preventing replies to impersonation attacks

  • 3 Egress Prevent provides enhanced security to stop replies to impersonation attacks. Outbound emails, including replies to impersonation attacks, are inspected by Egress Prevent, with alerts that increase intervention to notify the user of the current risk. This further “nudge” will force the user to carefully consider their actions.
Solutions Impersonation 3

Cut through the noise to highlight the risks that matter

Reporting on threats such as impersonation attacks within email flows can be manual and slow. Even worse, systems can throw too much unnecessary information at you, making it harder to make timely and effective decisions.

Egress Defend and Prevent's intelligence platform provides simplified dashboards and critical insights so that administrators can quickly cut through the noise, identify email security risks and, where necessary, remediate.

Solutions Impersonation 4

Actionable intelligence

Data and analytics should not overwhelm you with information. Augmented threat intelligence into attack types, payload, and supply chain health give Security teams what they need to take decisive action that mitigate threats.

Our real-time threat feed offers insights and statistics into email details, type of attack, threat levels, authentication checks, communication history and how your people interacted with the email.

Are you interested in discovering more about Egress Defend and the protection it offers against Impersonation Attacks for your organization?


What our customers say

Hear from companies and organizations who use Egress Defend to prevent against impersonation attacks.

With Egress Defend in place, we’ve seen an immediate return on our investment, and our team is now freed up to deal with other important tasks.

Trusted by global organizations

Related resources

Learn how our full suite of advanced email protection technologies work together to mitigate both inbound and outbound email risks like email impersonation attacks.

Human Risk Summit

12th October 2023 | 10:00 - 12:40 ET/15:00 - 17:40 BST

It's time to adapt.

The next evolution of cloud email security has arrived. Join industry thought leaders at our virtual event for insight into managing human risk and adaptive cloud email security.

Customer webinar: enhancing anti-phishing defenses in Microsoft 365 at Newcastle City Council

Get insight into the types of phishing threats targeting government organizations, how to layer defenses in Microsoft 365 for effective threat detection, and more.

How to Use a Hacker’s Toolkit Against Them

Read insights from our threat researchers about the tools and tactics attackers use in the first three stages of the cyber kill chain.

How to recognise and prevent impersonation attacks

In the first six months of 2020, companies lost £58 million to impersonation scams in the United Kingdom (proving that imitation isn’t always the sincerest form of flattery).