How does Mimecast classify potential threats in emails?

Mimecast classifies potential threats in emails using a multi-layered approach with threat intelligence, which is essential for effectively identifying and mitigating various forms of cyber threats. This method leverages a combination of advanced technologies, including machine learning and artificial intelligence, to analyze patterns and behaviors associated with malware, phishing attempts, and other security risks. The incorporation of real-time threat intelligence enables Mimecast to continuously update its defenses based on the latest global threat landscape, thus improving the accuracy of its threat detection capabilities.

This approach goes beyond simplistic methodologies such as keyword filtering, which can be easily circumvented by sophisticated attackers. By utilizing comprehensive data from diverse sources, including historical threat data and contextual information about email senders, Mimecast can make more informed decisions about whether to classify an email as a threat or not. Additionally, this strategy incorporates user feedback and assessments, but not as the primary means of classification, making threat intelligence and multi-layered analysis the cornerstone of Mimecast's threat detection strategy.