• Mimecast Attachment Protect

Mimecast URL Protect

It is estimated that 46K new phishing sites are created every day, with the majority being online and active for only 4 to 8 hours. Attackers often use links in emails to bring unsuspecting users to these phishing sites or in some cases to initiate the downloading of malicious files, such as ransomware, directly to their computer.

Email security systems which only inspect URLs during the initial delivery can be easily bypassed by attackers by using a benign site or file, which only later changes to a malicious one, URL Protect helps to combat this. 

What is Mimecast URL protect?

Mimecast Targeted Threat Protection with URL Protect is an advanced email security service that protects email users from malicious URLs in spear-phishing attacks. Targeted Threat Protection with URL Protect rewrites all links in inbound emails and scans the destination website in real-time when clicked by the user to help ensure malicious websites are blocked, regardless of the client or device in use.

Mimecast URL Protect

How does Mimecast URL protect work?

As email passes through the Mimecast Secure Email Gateway, URL Protect scans and rewrites all URLs in the body of every email

When clicked, these rewritten links point back to Mimecast’s global threat analysis infrastructure which scans the site to determine if the destination website is malicious before delivering the page.

Employees are permitted access to clean sites without delay, while access to malicious sites are blocked

Administrator-controlled dynamic user awareness helps drive a mentality of user caution and greater awareness of the threat environment

For links within attachments, the URLs are scanned on entry into the Mimecast Gateway and if any malicious URLs are found, the attachment is stripped from the email and the receiver is warned that the attachment was malicious. A log entry is also generated for the administrator


  • Real-time, on-click, website scanning protects against currently bad websites, or delayed exploits.

  • Administrators controlled list of Custom Monitored Domains to prevent attackers from typo-squatting domains they work with.

  • URLs within attachments are scanned on the time of entry into the Mimecast Gateway. Attachments containing malicious URLs are stripped from inbound emails.

  • Comprehensive protection leveraging Mimecast’s global threat analysis infrastructure and Messaging Security team

  • Protection on and off the corporate network, including mobile devices – no client software or impact on users

  • Dynamic user awareness helps develop increased employee caution and awareness of the threat environment.

  • Rapid deployment – no software, hardware or added IT overhead.

  • Simple, central administration and control for holistic policy management, monitoring and reporting.

Watch the video

Discover More: