Cofense Managed Phishing Detection and Response

Additional Info

Company size (employees)500 to 999
Headquarters RegionNorth America
Type of solutionService


Cofense Phishing Detection and Response (PDR) is the only end-to-end email security solution that utilizes a unique combination of intelligence sources to identify, protect, detect and respond to all email security threats. This solution is ideal for organizations who lack the in-house expertise or resources to effectively defend and remediate against any and all email security threats.

Trusted by 25% of the Fortune 1000, Cofense’s PDR Platform leverages the power of 35+ million users worldwide who are actively reporting suspected phish to provide real-time, crowdsourced data to customers around the world. This data makes up our Cofense Global Intelligence Network which powers our PDR suite of products and enables our customers to proactively evolve with the threat landscape. The Network is a combination of unique sources of intelligence that feed powerful IOCs into Cofense PDR. These IOCs are actionable, relevant, reliable, and timely – and comes from human, artificial, and attack intelligence.

This intelligence enables Cofense customers to deploy our powerful AutoQuarantine functionality, which removes phishing attacks impacting organizations, often before attacks are even reported. When activated, customers have a more proactive email security posture as IOCs from Cofense customers are fed into their technology and vice-versa. This means when one customer detects an attack, all other Cofense customers can detect that attack too. The power of the network grows stronger with each IOC detected and shared.

As Cofense continues to develop our PDR solution, we will focus on furthering our data advantage and increasing the proactiveness of our technology. This will continue to enable the PDC to respond to reported emails quicker and more effectively than an in-house SOC while Protect will detect more attacks at the perimeter, even as attackers change their techniques, tactics, and procedures (TTPs).

How we are different

Cofense Global Intelligence Network: Cofense is the only comprehensive email security platform powered by a global network of unique intelligence sources: human intelligence, artificial intelligence and email attack intelligence. Deployed through various products in our platform, these intelligence sources enable organizations to automatically remove attacks first seen by other Cofense customers, block attacks that have never been seen before, and utilize the power of automated technology without the worry of false positives.

Automatically Quarantine Threats: Once a phish is confirmed, Cofense AutoQuarantine removes it from inboxes across an organization without requiring intervention from the customer. We have observed this entire cycle from report to removal to be near instantaneous when configured to quarantine without analyst review. The intelligence is then shared with other Cofense customers so the same attack can be stopped in their environments often before any suspected phish is ever reported. When considering customers leveraging AutoQuarantine, 84% of customers had an attack automatically mitigated that nobody at their organization had reported showing the value of intelligence sharing across the Cofense customer base. A potentially significant risk is reduced to zero without requiring human intervention.

Proactive Protection with Computer Vision: Our phishing detection solution uses Computer Vision to "look" at email after they have passed through existing email security and before they reach the user. Following the same visual perception cues as a human reader would, we use patented AI technology to identify multi-level phishing attacks which escape traditional gateways.