Barracuda's Security Awareness Training (formerly Barracuda Phishline) provides a suite of applications supporting phishing social engineering simulations with data analytics for evaluation of results as well as targeted training and education to boost readiness. PhishLine was acquired by Barracuda in January 2018, and is now part of Barracuda's security portfolio.
N/A
Microsoft Defender for Endpoint
Score 8.3 out of 10
N/A
Microsoft Defender for Endpoint (formerly Microsoft Defender ATP) is a holistic, cloud delivered endpoint security solution that includes risk-based vulnerability management and assessment, attack surface reduction, behavioral based and cloud-powered next generation protection, endpoint detection and response (EDR), automatic investigation and remediation, managed hunting services, rich APIs, and unified security management.
Barracuda Security Awareness Training is well suited for companies that are looking to automate and schedule phishing simulation, education, and training on a regular basis. It would be less appropriate for companies that already have a security awareness training platform already implemented.
I would say, where it's well suited as certainly any device where you know that either you're potentially running a Kickstarter device as your own personal unit, but maybe you want to try to connect it to some resource like, "Hey, you know what? This is a small community device. Maybe I'll try connecting my email on the go." You're protected from that perspective with the vendor, even if it's something that might be a bit suspicious from a hardware perspective. There's also the case where any device that you know are running Defender for endpoint that you're good to go. You don't really have to worry about all the other solutions out there because Defender has recovered.
The software helps us create emails that look exactly or almost exactly the same as the phishing emails we found in our email gateway.
We already use the ESS gateway from Barracuda Networks, and in the TEP bundle, this software is included, so it's not that much work to also configure this.
In the software, we can see reports on how our users performed. We can make a selection of users that are more prone to click on "false" links, and this way, we can help them individually.
It integrates perfectly with Azure Sentinel. I mean, that's great. We can have a single pane of class with other platforms, like Defender for Cloud, Defender for endpoints, and Defender for servers, which is awesome as well. The ease of deployment is because Microsoft made sure around a year ago that every single workstation with Microsoft Windows came with Defender for Endpoints embedded.
Providing animated templates for custom campaigns would be helpful, potentially a "builder site" where templates could be put together with custom questions/answers.
Reporting through functional could use some work. We typically create phishing tests to help our users learn how to spot concerns, and the reports do not provide who actually "reported" the phish as opposed to who did not. This has been a year-long request to Barracuda, and the same issue is present in our campaigns as well.
We would love to see an annual release of new training topics and campaign ideas.
While it's a very good product for auditing, it has a very hard time to distinguish what is malicious and is an attack, what is not. Very rarely we get indication of a real malicious attack. We got lots of hours for off the shelf malware that it cleans up automatically. So basically we never get to look at it, which is a positive thing, but threats are detected by the third party endpoint, so it will not be enough by itself.
Although cost competitive, we still feel like we are not digging deep enough to train our staff. We have little to no way other than digging through reports that have not proven to be adequately documented (hey you, Barracuda campaign reports) to identify and require users to take more training who have not passed their requirements.
Once you are started it is great. The only issue is to get started. The administrator interface [I feel] is not intuitive enough. It lacks some kind of quick start wizard. The templates are good and fit several regions. So we can do our Belgian campaign and French campaign, each with a different template.
Working with Barracuda PhishLine support is always a good experience. They are very professional, they are attentive and they are courteous. When I first purchased Barracuda PhishLine a few year ago it was new to them as well. At the time, the support staff could been better trained. That said, they worked hard to help and resolve my issues.
The first time I tried to onboard my macOS endpoints to MDE I struggled for quite a bit. I had to reach out to Microsoft's MDE support team. The tech was very helpful in walking me through the steps during a screen share session
365 defender has a tool for user security training, it is much more rudimentary than Barracudas, but the interface is much nicer. Both offer email attack testing, reporting, and training, but barracuda offers additional attack types, like file and SMS testing. Both seem to come free with other software and can be brought as add-ons.
Tenable Security Center was a fantastic exposure detection tool but there was always a lag and servers would hang alot when being scanned causing resource traffic. Microsoft Defender for Endpoint on the other hand does not use up most resources soo there is usually noo lag during scanning and it also provide more detailed insights on the network. Also Microsoft Defender for Endpoint integration power has helped us up our security game by delivering a smooth secure network.
Positive : Microsoft Defender for Endpoint offers sophisticated threat detection and response capabilities, putting it into use helps increase security. Reduced security incidents, data breaches, and related expenses may arise from this.
Positive : A more secure environment means less time and effort spent by IT and security teams on remediation and incident response.
False Positives: Like any security solution, false positives can occur, leading to unnecessary investigations and potential disruptions to business operations. This may require additional resources to manage.
