Overview of Managed Phishing Response

Managed Phishing Response is Red Canary's solution to investigate and respond to phishing emails. This solution integrates with your organization’s inbox reporting button to efficiently address user-reported emails. When a user reports a suspicious email, Red Canary’s team reviews it, notifies your security team of confirmed phishing attempts, and provides tailored feedback to the reporting user. The solution aims to reduce the operational overhead associated with phishing review while accelerating response times for genuine threats and enhancing your organization’s overall security posture.

How Managed Phishing Response Works

Here’s a breakdown of the process:

1. A user in your organization receives a suspicious email and clicks a “report phishing" button.

2. The email is immediately forwarded to Red Canary, where our Phishing Triage Agent intelligently flags specific risks like spoofing or unexpected attachments.

3. Every reported email is reviewed by a Red Canary Expert, regardless of the Triage Agent’s findings. While the agent provides context, human analysts ultimately determine whether the email is a phishing attempt or not. They officially mark the email as Phish or Not a Phish and provide a detailed summary of the findings.

4. Your security team is notified of confirmed phishing attempts.

5. The user who reported the email is given tailored feedback.

Supported Tools and Environments

To integrate this solution into your environment, ensure you have:

• A Microsoft 365 and/or Google Workspace email setup.

• A supported, third-party reporting tool installed:

  • KnowBe4 PhishAlert

  • Proofpoint PhishAlarm

Get Started

Follow the steps on Getting Started with Managed Phishing Response.

Frequently Asked Questions

Need help with something? Visit our FAQs.