Why choose GFI MailSecurity™ to protect against email viruses and malware?

Here are just a few of the key reasons why GFI MailSecurity is the ideal choice to protect your small to medium business environment against email viruses, trojans and other malicious software:

• Multiple virus engines guarantee a higher detection rate and faster response
• Unique Trojan & Executable Scanner detects malicious executables without need for virus updates
• Email Exploit Engine and HTML Sanitizer disable email exploits & HTML scripts
• Unbeatable price

Why you need multiple virus engines

Increasingly, studies now reveal a widening gap in virus protection felt by companies taking the single engine approach. Depending on which engine you use, mean time between a new outbreak and updated protection on your network can be nine (9) hours or more!

Of course, no single antivirus engine can fully protect against all possible email threats; each virus scanner has its own strengths and weaknesses. When, for example, the MyDoom virus hit, some companys suffered increased exposure while waiting for their engine to catch the attack and defend against it.

Since no one engine will always be the fastest to respond or be able to provide constant coverage against each new attack, the next logical conclusion is a multiple engine approach. In simple terms, when it comes to virus protection, more is better. Having multiple scanners at mail server decreases average response time, dramatically reducing the chance of virus infection.

Using multiple virus engines also gives you vendor independence, freeing you to choose best of breed as that distinction changes over time.

Why you need an executable and trojan analyzer

The recent Novarg virus sharply illustrates why you need an executable and trojan analyzer. GFI MailSecurity detected this malicious software, because of its characteristics. While virus vendors were busy preparing and deploying updates, our users were already protected. Keep reading to find out why.

The difference between a virus engine and the trojan & executable scanner

Because antivirus software is signature-based, it can only detect malicious software for which there is a signature in the engine's signature file. At GFI Software, we take another approach: rather than relying just on a signature, we uses patented built-in intelligence to rate an executable's risk level. We basically disassemble the executable, detecting in real time what it might do, comparing its actions to a database of malicious actions. This way, GFI MailSecurity can detect unknown viruses and trojans before they enter the network - and before antivirus engine vendors can find and issue signatures against them. Using this technique, GFI MailSecurity can also detect one-off trojans or malware - targeted towards a specific user to obtain particular information. Because these are specifically targeted threats, antivirus software will never find them or defend you against them.

Why you need an email exploit shield

An exploit uses known vulnerabilities in applications or operating systems to attack your system. It exploits some feature of a popular program or the operating system for its own use, such as to execute arbitrary machine code, read or write files on your hard disk, or gain illicit access to your environment. An email exploit is an exploit that is embedded in an email and can be executed on the recipient's machine once the user receives or opens the email. This is how hackers bypass most firewalls and antivirus products.

We give you an Email Exploit Engine that identifies emails containing exploits. GFI SecurityLabs conducts research in the hacker community to identify new exploits and to incorporate them in our exploit engine. Our exploit shield can protect you against new viruses based on an exploit.

Good examples include the Nimda, BadTrans.B and Klez viruses, all of which use the same exploit to propagate. Yet, when the BadTrans.B virus emerged, those who had antivirus protection against Nimda were defenseless, needing a new definition file to block it. When Klez appeared, antivirus vendors again had to issue an update to protect against that. By contrast, an email exploit detection engine recognizes the exploit used and can block all three worms immediately and automatically, without the delay of definition file updates.

To find out more, see why you need an email exploit detection engine: Networks must supplement antivirus protection for maximum security

Why You need an HTML threat engine

All next generation email clients can send and receive HTML email. HTML email can include scripts and Active Content, for example JavaScript and ActiveX controls, which can allow programs or code to be executed on the client machine. GFI Software's patented HTML Sanitizer analyzes HTML email for HTML scripts and Active Content. It disables any detected scripts and forwards the now harmless email to the recipient, without affecting formatting or images. Contrast our approach against other products that simply convert HTML email to text, making it unreadable and rendering the use of an intended security feature unpopular.

Unbeatable pricing

GFI Software's experience in the development of email content security for Exchange Server, has enabled us to create a product that is compact and easy to deploy. We sell thousands of units each month and pass the economy on to you.