Email Fraud Prevention is an engine that filters emails that are opened in Microsoft Outlook.
1. The emails received in my organization are not being filtered by Email Fraud Prevention
2. Can I open/read emails that are placed in the In Assessment or the Malicious folders?
The emails received in my organization are not being filtered by Email Fraud Prevention
BEHAVIOR: the emails received in my organization are not being filtered by Email Fraud Prevention.
SOLUTION: Email Fraud Prevention filters emails locally, on the endpoint when Microsoft Outlook is opened. If Microsoft Outlook is not running and new emails are opened/read with another Mail Client (or from the browser), Email Fraud Prevention cannot scan any of your emails. You also need to make sure the Heimdal MailSentry service is running (responsible for Email Fraud Prevention).
Can I open/read emails that are placed in the In Assessment or the Malicious folders?
BEHAVIOR: can I open/read emails that are placed in the In Assessment or the Malicious folders?
SOLUTION: the emails that are being analyzed are placed in the In Assessment or the Malicious folders cannot be opened/read. If the email was initially infected (moved to HeimdalInfectedMails), and then it is considered uninfected in the final result, the email will be moved back to the initial folder.
If none of the above help please reach out to the HEIMDAL Security Support Team.