Please reach us at info@gdsvc.com if you cannot find an answer to your question.
Gamma DeRisk is a cybersecurity company that provides various services such as email protection, security assessments, policies & procedures, training, incident management, and remediation.
Were are also known as GDSVC (Gamma Derisk Services)
Every organization needs to protect their assets regardless of their size or value. Cyber criminals don't care if you have a little, or a lot of money, they are opportunists, and they'll happily take everything that you have. The sad part is, that once they have the money, there is zero chance of getting it back, so prevention is always the best policy.
We can help protect against most threats - external or internal. It's not always the guy wearing a back hoodie hunched over a laptop in a darkened room that you have to worry about.
Our speciality is email security - this is often overlooked in most businesses, often with disastrous consequences.
Email was invented alongside the internet, and both have grown to become the core of today’s online world. Unfortunately, email’s evolution has been slowed by a lack of built-in identity. By default, anyone can send email pretending to be someone else, leading to email’s identity crisis:
90%+ of all cyber attacks involve fake email.
When email domains can easily be hijacked to send malicious email, reputations suffer, people lose trust, and fraud is allowed to spread.
Our view of email security goes far deeper than most of our competitors, who mostly provide point (incomplete) solutions.
We protect your organization by:
As part of the onboarding process for Mail Aegis, we assist our customers to easily configure SPF, DKIM, DMARC, and MTA-STS. We take care of all the required certificates, server configuration, and hosting of policies. All our customers have to do is create some DNS records.
Most of our competitors don't offer MTA-STS because they consider it too difficult. We consider it essential.
Protection such as DMARC and MTA-STS can't be very effective unless their performance/conformance is measured. Reporting is a key component of DMARC, and for MTA-STS, there is the TLS-RPT standard, so we partner with Dmarcian who process the DMARC and TLS-RPT reports, and present the reports so that you can see at a glance how the solution is working, and if desired, drill down to view details. Because Dmarcian are a separate company, they are agnostic in their reporting - if our configuration isn't working, you'll be able to see that in the data that they present to you.
Yes, of course. Please get in contact and we can discuss your requirement. In the majority of cases we will have you up & running quickly and easily.
Two reasons:
We don't currently offer DANE for three main reasons:
By default, we provide encryption of the communications channel between mail servers (data in motion), however we can't provide encryption of data at rest (your email server, or the other party's email server. That is up to you and the entities that you communicate with to implement something like S/MIME or GPG.
We can't absolutely guarantee that every message will be encrypted in motion and still be compliant with IETF standards, so we do everything that we can while remaining compliant.
From the TLS-RPT report in the Dmarcian portal, you can see which entities that you communicate with don't support TLS encryption, and work with them directly to encourage them to support encryption. Of course, we can help with that part if you let us know, and we can offer you service credits for any successful referral :-)
Zero impact on user experience - only positive improvements.
Yes by default, however, we can discuss private instances in the location of your choice.
Yes. Both are designed to accept mail from 3rd party mail filters such as Mail Aegis. The integration is very simple.
Yes - absolutely. Mail Aegis is a great way to keep your on premises mail servers from being directly visible from the internet. We can even sign your outbound mail with your DKIM key so that it's fully compliant (and you don't have to set it up yourself).
Google & Microsoft both provide some protection, They will check DMARC, MTA-STS etc, but if you haven't configured your records, there is nothing for them to check, leaving you wide open to email spoofing etc.
They also carry out some basic anti-malware and phishing checks, but these are not comprehensive, and let a lot of messages through that you really don't want to receive. This is why they have designed their platforms to integrate with 3rd party security platforms such as Mail Aegis, because two sets of eyes is always better than one.
Mail Aegis doesn't replace anything, it is designed to provide additional layers of protection. You should definitely be using Anti Malware software everywhere (yes - even on Mac or Linux machines).
Mail Aegis requires that mail servers connecting to it handshake properly. Unfortunately, not only spammers & scammers have poorly configured mail servers - sometimes these belong to our customers, suppliers, and even banks. We are here to help though. We can help you tell them what is wrong with their mail server so that they can fix it, or if that is not possible/practical, we can allow-list them depending on the problem.
No. We don't even have a quarantine facility by design. Although we do keep logs for a short time. We will NEVER share or sell customer data. Your privacy is our priority.
We mark suspected messages as spam or phishing, and forward them to your email provider, They will either quarantine them for you, or deliver them to your inbox clearly marked as suspected spam or phishing.
If we really don't like the look of something, then we will either drop the connection to the sending server before the message is even sent (we can tell a lot about the trustworthiness of a sender just from the initial handshake), or we will bounce it during the analysis phase. Either way, a valid sender will know that the message was not delivered, and why not.
As a cloud service, Mail Aegis is available everywhere.
We offer a choice of monthly or annual billing, and we can accept payment by direct bank transfer or by credit card.