Product · 2 MIN READ · GARRETT STEPHENS · APR 22, 2025 · TAGS: Announcement / Integrations / Phishing
TL;DR
- New integrations expand our comprehensive MDR coverage against phishing, business email compromise (BEC), and email-based attacks
- Customers can shift left in identifying threats earlier with new integrations for Proofpoint, Abnormal AI, and Sublime Security
- This unique detection strategy is designed specifically for email security technologies
Email is one of the most persistent and dangerous threat vectors when it comes to cybersecurity. That’s why Expel is launching an innovative MDR expansion to email security tools to proactively defend against these threats and improve your security posture. By leveraging email data to identify threats earlier in the attack lifecycle, Expel continues to evolve with the constant changes of emerging technologies, generative AI, and sophisticated email threats.
“Identity-based incidents, largely originating from emails, made up 68% of all incidents among Expel customers last year. Incorporating email threat data enables us to identify and block attacks as soon as they hit the inbox, and gives customers insight into the threat actors working to gain access to their organization. We’re delivering the most comprehensive MDR solution in the market, and these capabilities further solidify that commitment while providing our customers with unparalleled visibility and protection across critical attack vectors.”
Yonni Shelmerdine, Chief Product Officer, Expel
This expansion of our leading managed detection and response service is built on new integrations with Proofpoint, Abnormal AI, and Sublime Security (coming soon!). Based on data from Expel’s SOC, identity-based incidents—largely originating from email—made up 68% of all incidents investigated in 2024. With the rise of phishing-as-a-service (PhaaS) platforms, infostealing malware, and the advanced capabilities of GenAI, even a small decrease in the prevalence of identity threats can make a huge positive difference in your cybersecurity resilience.
How it works
This expanded coverage of the email attack surface is built on direct API integrations with email security tools to help detect and block email-based threats earlier in the attack lifecycle. It includes expert-written detections, correlation against endpoint and user activity, and the ability to remove malicious emails from users’ inboxes with a corresponding auto remediation.
What’s the difference between MDR for email and phishing services?
Great question! Expel already offers high-quality phishing protection as part of our larger service offering. The difference here is whether an email is user-submitted, or triggered from a third-party email security tool.
With MDR for Email, Expel seamlessly integrates with and injects additional context from industry-leading email security tools, correlating across endpoint, user, and network activity to uncover the full scope of email-based attacks, and then takes action to mitigate those threats. With Expel Phishing, our analysts provide white-glove triage of user-reported phishing emails.
Find us at RSAC to learn more!
Expel will be at RSAC 2025 in South Hall #0535 from April 28-May 1. Stop by to learn more about MDR for Email, and how together, we are a powerful force against today’s biggest security challenges.
Stop by our booth to uncover your inner hero with AI portraits, gear up with acclaimed defender swag, or schedule a meeting. And if you’re an Expel customer looking to recharge from the conference hustle and bustle, check out our private hospitality suite away from the show floor.
