Phishing and Malware Protection

Keeps email focused on advancing your business – not harming it!

  • Stops unwanted email and threats from reaching your inbox.
  • Instantly provides front-end protection against phishing, malware and other attacks.
  • Stores mail if your servers go down during disasters or other outages.
  • Works seamlessly with Office 365/Microsoft 365.

Make your business a much harder target.

Advanced Email Security blocks 99 percent of unwanted mail and malware, keeping your inbox clean and your network safe. Our next generation threat detection technology relies on AppRiver's big data security platform and expert human analysis to identify threats and evolve our defenses in real time, keeping our customers safe from phishing attacks, Business Email Compromise (BEC) attempts, conversation hijacking, brand forgery attacks and other potentially harmful forms of social engineering. Take the target off of your business with Advanced Email Security from AppRiver.

Features and benefits with Advanced Email Security

Easy to set up. Instantly effective. Advanced Email Security is AppRiver's award-winning email security service that intercepts unwanted and malicious email before anything reaches your inbox or servers.

  • Real-time protection from phishing, conversation hijacking, malware and more
  • Simple implementation
  • No hardware or software installation
  • Up to 30-day quarantine retention
  • Inbound and outbound email protection
  • Daily Held Spam Reports
  • User level filter permissions
  • Bulk email quarantine configuration
  • Disaster email recovery included*
  • 99-percent effectiveness in blocking unwanted email and malware
  • Office 365 compatible
  • Phenomenal Care® from our US-based team, 24 hours a day, every day

*AppRiver's disaster email recovery feature will hold up to 30 days of email in a queue anytime your mail servers are offline. This feature may be augmented with our Email Continuity Service (ECS) that will allow one, some, or all users to have an Outlook Web Access mailbox (with up to the last 30-days of mail) embedded within our customer portal. There is a small ECS mailbox/month fee for this service.

Contact Information - Let us call you

My Company is based in:

Number of Users

How did you hear about us?


How does it work?



Advanced Email Security is our award-winning mailbox protection service that puts a filter between the Internet and your mail servers. Email messages are routed through AppRiver's big data security platform which uses sophisticated detection methods and to process billions of security events daily – which ensures you get the legitimate messages you want without the potentially harmful messages you don't.

Advanced Email Security works effectively on a number of different email platforms including:

  • Microsoft Exchange
  • Novell GroupWise
  • Lotus Notes/Domino
  • Oracle Collaboration Suite
  • Sendmail Spam filter for Linux/Unix

“The product's Web-based interface makes setup and maintenance a snap—filter updates can be programmed to happen every several minutes, ensuring the best protection. But the real beauty of Advanced Email Security is the set-it-and-forget-it style of deployment.”

Frank J. Ohlhorst

Stay secure

Selective Data Centers

At AppRiver, we carefully select our data centers to meet the demands of a high-availability, mission critical messaging system. Our facilities, located in Georgia, Texas, Virginia, London and Switzerland, provide built-in redundancy necessary for failsafe network operations. All our facilities are SSAE 16 and ISAE 3402 audited and have the following features:

  • Conditioned UPS power (N+1 redundant)
  • On-site diesel generators that can run indefinitely should utility power fail
  • N+1 redundant HVAC systems
  • Physical access secured using military-grade passcards and biometric hand scanners
  • Cisco GSR 12000 class routers running HSRP (N+1 hot failover) through six leading communications providers
  • Unique multi-tier DDoS mitigation engine
  • Continuous network and application monitoring
  • Certified onsite staff
  • 100% network availability


Information Security

Whether it's financial data, user account information or confidential email, many states are requiring companies to keep electronic communications private.


Transport Layer Security

TLS, or transport layer security, provides a basic level of information security by encrypting the link between one mail server and another. Once a secure channel between two companies has been established, communications between them is protected with no further effort required.

TLS is an optional feature with Advanced Email Security that is available by purchasing AppRiver's SmartHost service.


Going Beyond TLS

AppRiver provides TLS for clients who require encrypted server-to-server connections. For those who need user-to-user encryption, we recommend our Email Encryption service.

Email Encryption is user-based and user friendly. Delivered through AppRiver’s trusted Software as a Service (SaaS) delivery platform, the encryption system enables end-to-end, content level encryption of email and mobile messages.

Functional Benefit

  • Quarantine – categorized by Spam, Malware, Released Mail and Trash
    • Searchable by date range, from/to, subject, country, attachment
    • Retention period from 14 to 30 days, depending on domain settings
    • Easily release valid messages to inbox
    • Safely view and analyze captured emails, including the ability to show raw messages, view header information, check against RBLs, check the IP address, download message for further analysis and more
    • Ability to filter (declutter) quarantine to hide messages from known sources of spam or malware
  • Daily Held Spam Report
    • Provides listing of all quarantined mail
    • Configurable by end-user
    • Selectable receipt interval (from none up to multiple times daily)
    • Sent to each end-user’s inbox
    • Allows message viewing/analysis and release directly from within the report
  • Domain Statistics Report
    • Sent weekly to administrator and any other chosen recipient(s)
    • Contains domain-specific statistics, including whitelist requests, message type counts, spam categories, spam and virus frequency by email address and more
  • Quarantine Alerts sent if a message is quarantined that could potentially be important to the mailbox owner
  • Optional SmartHost service also scans and filters outgoing messages for spam and malware
  • Integrated Lightweight Directory Access Protocol (LDAP)
    • Allows your active directory to be automatically synced on a set schedule with Advanced Email Security, ensuring your mailbox security service is always available to your current user base
    • Promotes active directory health, which is beneficial to system efficiency
    • Eliminates effort on part of administrator to keep up with company turnover in regards to active directory
    • Works with multiple server types and can schedule automatic imports in 1- to 24-hour increments
    • Does not transfer password information
  • Convenient scan options to block file/link extensions, macros, encrypted documents from unknown senders, unknown message types, etc.
  • Customizable mail rules easily configured around conditions and subsequent actions
  • Disclaimer feature allows administrator to assign a set statement on all inbound and outbound messages
  • Log search function helps administrator trace message paths for troubleshooting
  • Bulk Add Users to quickly and easily add up to 100 users at a time
  • Rate limiting set to one message every two seconds or 30 messages per minute
  • Message size restriction - limited to 100MB, sender receives notification if over limit
  • Delivery Queue
    • Shows status of any message(s) that has not passed through the server
    • Provides the ability to reject or release any problem message, as well as greater visibility to troubleshoot mail server issues on either end of the delivery
  • Export Email Addresses easily to a CSV file


Filtering Expertise

  • Contains several customizable filter settings to give more granularity in regards to the effectiveness and efficiency towards your domain(s)
    • Allowed Lists can be easily submitted by end-users and managed by administrator
    • Bulk Add filters can simplify adding multiple email or IP addresses, domains, file names, text or specific countries to allowed or blocked list
    • Also can individually add allowed or blocked email or IP addresses, domains, file names, text or specific countries
    • Quick summary of domain filter settings is also available to the admin, as well as CSV settings export
  • Tiered filter permissions easily configured and managed by admin
    • Four tiers:  Domain Blocked List, User’s Blocked List, Domain Allowed List, User’s Allowed List
    • User permissions may be set to supersede domain permissions if necessary and approved by administrator
  • Open or Closed Domain mode options, based on specific needs
    • Open mode
      • Accepts mail from all users, regardless of whether or not they exist on user list for the domain
      • Supported with a 14-day quarantine retention period
    • Closed mode
      • Holds email received from unknown addresses and keeps from entering the system if not on user list for the domain
      • Supported with a 30-day quarantine retention period if Closed mode is set to delete messages from invalid users
  • Over sixty different filtering tests, including:
    • Bulkmailer (gray mail) – allows mail received as a bulk mail campaign to be sorted into a more convenient folder than the inbox
    • Spearphishing – one of the industry’s first tests, designed to avoid Business Email Compromise (BEC) by utilizing AppRiver’s proprietary detection technology
    • Additional content tests designed to identify scams, adult phrases, header issues, bounced messages, encoded subjects, byte signature scanning, forged mailers and/or routes, client side scripts in HTML, redirects, suspicious URLs, maximum invalid users, no legitimate content, phishing, all forms of message obfuscation, spam phrases, tracking bugs and more
    • Sender Policy Framework (SPF) verification – set to either hard or soft rules
    • Additional sender verification checks including ISP, return path domain, HELO, reverse DNS, forged domains and more
    • Profiles that check for specific regional dialects and characters
    • Weight checks that can be dialed up or down to filter more or less aggressively

Behind the Curtain

  • Utilizes five anti-virus engines (two proprietary)
  • Reaches beyond typical machine-learning algorithms with real-time dynamic behavioral analysis, automation, sandboxing and link detonation
  • More than 8 million rules written by AppRiver technicians, who monitor and proactively adjust Advanced Email Security defenses against emerging threats
  • Continuously engages with several threat intelligence feeds (including our own) to help improve situational awareness
  • Uses integrated blacklist feeds, both proprietary and 3rd party



What is Advanced Email Security?

Advanced Email Security is a fully managed email protection service that prevents up to 99% of unwanted messages, phishing attempts, viruses, and other internet pollution from ever reaching your network. Since Advanced Email Security is delivered as a service, there is nothing to install, configure or manage. Setup is easy and usually takes less than an hour, regardless of the size of the organization.


How does Advanced Email Security determine which email to block?

AppRiver's service relies on a collaboration of automated systems and people to identify malicious messages and keep your inbox safe. The system is designed as a continuous, large-scale learning process where human and machine elements work together to evaluate messages. The machines do things that the people can't, such as comparing and cataloging features on millions of messages very quickly. Likewise, people do things that the machine can't, like recognizing a new spam or obfuscation technique with a single message sample. (For example, humans can quickly recognize sexual innuendo.)


How effective is Advanced Email Security?

In its evaluation of AppRiver's technology for its 2006 "Pattern Recognition: Technical Insights" report, research firm Frost & Sullivan observed, "AppRiver's real skill set comes from speed-spam and virus capture rates second to none in the security industry." More importantly, Advanced Email Security has maintained a 97% customer retention rate since 2002.


Does Advanced Email Security work quickly?

In a fraction of a second, every piece of your company's email is subjected to a blend of proven filtering techniques. Advanced Email Security filtering systems are constantly updated so illicit email is quickly identified and blocked. Advanced Email Security has approximately 200-250k active signature tests at any given time. Currently, Advanced Email Security processes over 2.5 billion messages per month for about 67,000 companies on six continents.


How often are the Advanced Email Security rules updated?

The service is maintained and updated an average of 4,000 to 8,000 times a day, every day.


Does Advanced Email Security screen outgoing mail as well?

Yes. Our outbound email filtering program cleans all internal emails before they are sent from the network's system. This additional filtering service reduces the risk of improper routing and misuse of the company's resources, as well as unapproved messaging.


What scanning engines do you use?

AppRiver employs a variety of spam-blocking techniques, but the heart of our system is Message Sniffer®, our proprietary technology that uses advanced pattern recognition and a regularly updated "rules" database to accurately identify potentially unwanted and malicious messages. Message Sniffer searches for combinations of typical features including message sources, common obfuscation techniques, email and URL targets and fragments, and even coding styles.


Who owns the technology behind Advanced Email Security?

AppRiver owns all core email filtering technology used in its Advanced Email Security service, which allows the company to be highly adaptable in the fast-changing security environment. It also ensures the system's quality and cost variables remain under AppRiver's control.


How long does it take to set up?

AppRiver's internal standard is less than 24 hours, but account creation and MX record change notices usually are sent out in under two hours.


Why do I have to change my MX Record?

Advanced Email Security resides between the Internet and your mail server. If your email is hosted by a third party, Advanced Email Security sits between the Internet and your mail hosting company. By replacing your MX records with MX records provided by Advanced Email Security, your inbound mail will travel from the internet, through our screening process, where it will be scanned for spam and viruses, and then be passed to your network.


What happens to the captured mail and unwanted junk?

Each user is sent a daily Held Spam Report. If Advanced Email Security identifies a legitimate message as spam, users can instantly release the wanted message directly from the report. Web access to the quarantined email is also available to administrators and end-users. The quarantined emails can then be easily filtered, or decluttered, to help quickly view captured messages to ensure nothing important was held. However, Advanced Email Security also will inform the mailbox owner if a potentially valid email is quarantined through Quarantine Alerts.


What are Quarantine Alerts?

If Advanced Email Security flags a message as spam and it recognizes that you have corresponded with the contact previously, you'll receive a Quarantine Alert calling your attention to the message, which can then easily be released to your inbox. Likewise, any quarantined message containing a virus or malicious content sent to or received from a previous contact will also trigger a Quarantine Alert, although such message types still require Admin approval for release. Quarantine Alerts are active for both incoming and outgoing mail.

What happens to bulk emails?

By configuring a simple content rule in the Customer Portal, you can use the power of Advanced Email Securityto allow these items to be categorized and then easily sorted around your inbox to a folder of your choosing.


Is my mail protected during a disaster?

Yes. If a client server is not accepting email for any reason, the Advanced Email Securitydelivery manager will encrypt and queue email until the client server is back online. So even if your internal servers are damaged or destroyed, you will still have access to several days of email that has been preserved on AppRiver's servers.


What is the difference between Open and Closed domain modes?

Open mode is the default domain mode setting. It means that AppRiver will process all messages regardless of who they are addressed to. This setting is desirable for new accounts that have not yet entered all their email addresses. Setting your domain to Closed mode will only process mail for the addresses entered in the web interface. This will not bounce the messages and let spammers detect valid addresses. It will simply hold all incoming messages for users not on your users list after they are received.


How do I start using Advanced Email Security?

First, activate the Free trial form. This will prompt us to email you new MX records within a few hours, typically within the hour during the normal business day. The next step will be to change your MX records, which we can help you coordinate. Once the MX records have been changed, Advanced Email Security is protecting your business.