The Key to Cyber Security Could Be in Your Inbox: Insights from In-House Security Experts

Email Security

The Key to Cyber Security Could Be in Your Inbox: Insights from In-House Security Experts

Time to read

3 minutes

Author

Giacom Security Practice

Date published

Jun 2025

Email remains one of the most common ways cyber attackers gain access to networks. In our recent webinar, our security team shared practical advice and real-world strategies to help MSPs protect their customers. Below are some key takeaways and insights from the discussion. 

Why is email security so important? 

  • Email is the most targeted communication channel, with 85% of businesses reporting email-based attacks. It’s where most threats begin. 
  • People are often the weakest link. Email security helps reduce human error and prevent phishing attacks from slipping through. 

What’s often missed in a layered security setup? 

  • Many overlook security awareness training, which helps users recognise threats and respond appropriately. 
  • XDR (Extended Detection and Response) is another underused tool that connects the dots across networks to detect and respond to threats more effectively. 

How can MSPs support both beginners and advanced users? 

  • Start with a simple, out-of-the-box solution that’s quick to deploy and easy to customise. 
  • Build on that foundation by scaling protection based on the customer’s needs and risk profile. 

Which threats should MSPs watch out for? 

  • Cyber criminals are using AI and machine learning to create more convincing and scalable attacks. 
  • “Cybercrime-as-a-service” is making it easier for anyone to launch attacks, even without technical skills. 

How is AI changing the game? 

  • AI tools like WormGPT and FraudGPT allow attackers to craft highly personalised phishing emails that are harder to detect and easier to send at scale. 

How do you get users to care about email security? 

  • Run regular phishing simulations to show real-world risks and keep users alert. 
  • Encourage open conversations about suspicious emails and security concerns to build a culture of awareness. 
  • Use webinars and short training sessions to keep security top of mind without overwhelming users. 

What needs to change in the industry? 

  • Email security should be more tightly integrated into XDR platforms to give a clearer picture of threats across systems. 
  • AI and machine learning should be standard in baseline security tools to help detect and stop zero-day threats. 

What if a customer thinks they’re too small to be a target? 

  • Small businesses are often targeted because they’re seen as easier to breach, especially if they work with larger customers. 
  • Running a phishing simulation can quickly show how vulnerable they are and why protection matters. 

Proven Email Security strategies to protect your customers 

  • Multi-layered protection 
    Use a combination of spam filters, AI-driven threat detection, and user training. Our Cyber Security Framework helps MSPs deliver this without needing deep technical expertise. It includes essentials like MFA, RBAC, and awareness training to help users shut down threats early. 
  • Security awareness training 
    Regular training helps users spot phishing attempts and stay alert. Simulations and open discussions reinforce good habits and reduce risky behaviour. 
  • XDR integration 
    Bringing email security into XDR tools gives a full view of threats across email, endpoints, networks, and cloud – closing visibility gaps and improving response times. 
  • Conditional access 
    Set up location-based access rules and enforce MFA, especially for logins from outside the UK. This adds a strong layer of protection against unauthorised access. 
  • AI and machine learning 
    These technologies help detect new and evolving threats that traditional tools might miss. They’re essential for staying ahead of attackers. 
  • Third-party tools for home users 
    For individuals and small businesses, third-party tools offer reliable protection without the need for enterprise-level investment or setup. 
  • Backups 
    Always have a backup strategy in place. It’s your safety net, ensuring you can recover quickly if something goes wrong.

Ready to take the next step? 

Cyber threats aren’t slowing down and neither should your growth.  

With our framework and support, you can position your business as a leading provider, stand out from the competition, and unlock new revenue streams. 

Contact us today at [email protected].