In May 2020, the Norwegian Investment Fund announced it had fallen victim to an email scam costing the organization $10 million USD. After gaining access to Norfund’s systems through a spoofing email, the criminals studied Norfund from the inside, eventually gathering enough information to impersonate a staff member authorized to make payments. Charitable and relief funds were transferred to the criminals’ bank account without anyone realizing for weeks.
Attacks from cybercriminals are becoming more sophisticated all the time. Where fraudulent emails were once much easier to detect—even by the untrained eye—today's spoofing and phishing emails can be mistaken for legitimate communication, even by educated users.
PKI defends against phishing, spearhead phishing, spoofing and other forms of email fraud. Using S/MIME certificates, PKI encrypts messages in transit while binding the verified identity of the sender to the email itself.
In many organizations, email is the weakest security link. As with websites and bank transactions, email data needs to be protected while it’s moving from sender to recipient. PKI certificates offer a proven encryption and authentication solution that not only secures the content of the email, it also embeds the identity of the sender.
With DigiCert® Trust Lifecycle Manager, you can control and administer all your email certificates from one place. No matter how many people in your organization, all your communications can be protected and validated with ease. Integrate corporate email services, authenticate users, remove former employee access and recover secure emails—all from one sign-on.
Manage and deploy all your certificates from a single console.
Choose from cloud-based, two-part recovery or on-premises key escrow.
Save time by using pre-configured certificate profiles designed by experts.
Select a method that fits your needs—PKI client, self-support portal, OS/browser enrollment or Mobile Device Management (MDM) web services.
Enjoy hands-off deployment. Automated options are available via PKI client with Gateway and Active Directory (AD) authentication, Passcode or MDM service.