Graphus Updates

January 30, 2024

New Graphus Integration Reduces Compliance Data Collection Time

The Graphus and Compliance Manager GRC teams are excited to announce a new integration between their products that significantly shortens the time customers spend collecting compliance-related data.

For customers who use both Compliance Manager GRC and Graphus, the new feature will automatically integrate email security metrics from Graphus into Compliance Manager GRC, simplifying the process of mapping these metrics to relevant compliance controls and requirements.

This innovation is a major step forward in reducing the time and manual effort needed in compliance assessments. Its key functionalities include:

  • Automated Data Import: Directly imports metrics from protected domains from Graphus into Compliance Manager GRC.
  • Precision Mapping: Aligns Graphus email security evidence with various compliance controls, including Common Controls and CIS Controls.

The new integration enables MSPs to efficiently conduct security assessments, ensuring their clients are protected by email security measures. Service Delivery Managers, who often aim to minimize time spent on data collection and compliance audits, will find this feature particularly beneficial, allowing them to focus more on client engagement and service provision.

Graphus is just one of several Kaseya products that are now integrated with Compliance Manager GRC for seamless evidence of compliance collection.

For details on setting up the Evidence of Compliance integrations, please refer to this article.

December 15, 2023

New Graphus-Autotask Ticketing Integration Streamlines IT Techs’ Workflows

The Graphus team is excited to announce a significant Graphus enhancement – the Integrated Service Ticketing with Autotask. Now, you can connect Graphus with Autotask and have tickets created automatically in Autotask for each of the Graphus alert types you select: Quarantine, EmployeeShield and Phish911.

Integrating Graphus with Autotask allows you to use Autotask as your central ticketing hub where you can monitor Graphus alerts from within Autotask. You will no longer need to rely on Graphus email notifications or monitor alerts from within Graphus.

This integration provides you with the following benefits:

  • Manage tickets for all your organizations and customers in one central location in Graphus.
  • Set ticket attributes in Graphus for each alert type, or continue to manage attributes in Autotask via Ticket Categories.
  • Allow Graphus to close tickets in Autotask automatically. This keeps Graphus alerts and Autotask tickets in sync and prevents tickets from being left open for alerts that have been closed within Graphus.
  • Provide an easier workflow for your technicians. When a ticket is created in Autotask, a URL in the ticket leads to a dedicated alert investigation page in Graphus.

For more details and integration setup instructions, check out this Knowledge Base article.

Note that you must have subscriptions to both Graphus and Autotask to enable this integration.

If you’re not an Autotask customer, learn how Autotask can provide the insights and automation needed to grow your business and save you time by requesting a demo.

November 20, 2023

New Graphus Spam Filter Provides Personalized Anti-Spam Protection

The Graphus team is excited to announce a new feature that further expands Graphus capabilities and value, the Personal Spam Filter.

Now, in addition to providing powerful phishing protection, Graphus gives end users the ability to block unwanted messages they deem to be spam – with a single click on the interactive EmployeeShield banner. This new capability is available to all Graphus customers at no additional cost.

The built-in Microsoft and Google spam filters do a great job blocking the obvious spam messages but let through scores of unexpected and unwanted emails that don’t meet the email provider’s spam standards. As a result, employees receive a daily barrage of “graymail” messages, like unsolicited business and marketing offers, newsletters, etc., that aren’t malicious but are distracting and annoying.

Graphus works in tandem with the MS 365 and Google Workspace filters by allowing end users to block “graymail” missed by those filters. Users can mark unwanted emails as junk with a single click, prompting Graphus to block the sender solely for that individual. Other recipients within the organization who may want to continue receiving communications from that sender won’t be affected.

In summary, the new personal spam filter refines protection for each individual mailbox based on the user preferences, giving users control over what emails they want to receive and reducing distractions and wasted time.

How It Works

  • Your Graphus admin will need to enable this feature in the product.
  • A new link will be added to the EmployeeShield warning banner. In addition to Report Phishing and Mark as Safe, the users will see a third link, Block as Junk.
  • Clicking on it will automatically move the message into the Deleted Items folder, and Graphus will also delete any future messages from that sender for that individual user.
  • If a user changes their mind later, they can unblock the sender by going to the Deleted Items folder, locating a message from that sender and clicking on the Unblock Sender link on the banner.

For instructions on how to enable the new Personal Spam Filter, please refer to this guide.

For details on managing the Personal Spam Filter, check out this guide.

May 22, 2023

Graphus-Autotask Billing Integration Saves Time, Streamlines MSP Billing

Customer billing just got easier for managed service providers (MSPs) with the new integration between Graphus and Autotask PSA, an IT business management platform commonly used by MSPs.

The new billing integration feeds MSPs’ Graphus client usage and licensing data into Autotask, helping partners automate customer invoice creation, save time and ensure their clients are always accurately billed for the protection they are receiving.

With this integration, Graphus automatically pushes usage data to Autotask daily. ​Graphus provides the count of consumed licenses and protected inboxes for each of your domains or clients. ​This allows MSPs to automate the creation of customer bills in Autotask and end the need to log into Graphus and extract usage data manually.

In addition to Graphus, Autotask now has billing integrations with other Kaseya Security and Audit & Compliance products, including Dark Web ID, Passly, RocketCyber, Network Pro and Compliance Manager GRC. The integrated billing eliminates hours of back-office work at the end of the month to reconcile usage and create client invoices.

Note that you must have subscriptions to both Graphus and Autotask to enable this integration. Please visit the Knowledge Base to learn how to configure this functionality.

If you’re not an Autotask customer, learn how Autotask can provide the insights needed to grow your business and the automation to increase profits by requesting a demo.

March 30, 2023

New Integration Lets You See Graphus Threat Counts Across All SaaS Protection Clients

The Graphus and Datto SaaS Protection teams are excited to announce a new workflow integration between their products which allows you to see which client domains are protected and how many threats were quarantined by Graphus on your SaaS Protection Status page.

With phishing attacks and their associated costs increasing every year, you need to be sure that all your clients are protected. As a SaaS Protection customer, you can now see whether Graphus is protecting your domains / clients, and for the protected clients, how many email threats were quarantined.

Rapidly Deploy Graphus to Unprotected SaaS Protection Clients

If a client’s domain is not yet protected and you want to activate Graphus for it, or you want to investigate a quarantined threat, you will be directed to the appropriate page within Graphus to do so.

Connect your SaaS Protection account with your Graphus account* and the Graphus API will push real-time data to your SaaS Protection Status page in the Datto Partner Portal. Together with Graphus, SaaS Protection clients now have a better way to prevent data loss from occurring in Microsoft 365 or Google Workspace with an extra layer of protection.

For detailed instructions on activating the SaaS Protection-Graphus integration, please refer to this article.

NOTE: You must have subscriptions to both Graphus and SaaS Protection to enable this integration.

January 09, 2023

Onboarding new Microsoft 365 customers onto Graphus is easier than ever!

The Graphus team is excited to announce a significant new product enhancement – the Microsoft 365 Activation Wizard. The wizard automatically activates Graphus for every new Microsoft 365 domain with lightning speed and precision, reducing the new customer activation effort for your MSP’s IT admin to just three clicks.

Until now, IT admins had to manually activate Graphus on each of their customers’ Microsoft 365 email domains, eating up precious time and resources. Now, the activation wizard automatically completes the necessary activation steps in Microsoft 365 for faster deployment and improved user experience. It also prevents submitting incorrect inputs or missing permissions that could slow down the client onboarding process.

NOTE: With the activation wizard release, the activation process and UI have changed. For more details and instructions on the new, shorter process, please refer to this Knowledge Base article.

We hope you enjoy the new, easy and intuitive activation process when deploying Graphus to new customers.

October 08, 2022

New Integration with IT Glue Simplifies Customer Onboarding for MSPs

The Graphus team is excited to announce a new integration between Graphus and IT Glue, an IT documentation platform and a part of the Kaseya product portfolio. This workflow integration further advance the Kaseya IT Complete vision by making our products work together to simplify the lives of our customers.

Leveraging the IT Glue API, this integration facilitates customer onboarding onto Graphus by importing SMB organizations’ names and domains from IT Glue and creating orgs with the same names on the Graphus side, reducing the need for manual data entry by MSPs.  The SMB organizations will remain linked, so any time an MSP makes changes to the org name on the IT Glue side, the changes will automatically sync to Graphus.

The new integration greatly simplifies the new SMB organization setup and ongoing customer org management within Graphus, making it a great time saver for MSPs! Setting up each new product or keeping organization-related data up to date means MSPs must manually update customer data in every product they own, spending a lot of time on redundant tasks. Not anymore!  IT Glue will serve as “the source of truth” and any name changes made to the IT Glue organizations will automatically be reflected on the Graphus side.

To enable the integration:

  • Log in to your IT Glue account, generate an API key for Graphus and copy it.
  • Next, log in to your Graphus account, navigate to the Integrations section of the platform, paste the IT Glue API key and click Connect.
  • When the integration is enabled, IT Glue and Graphus organizations with the same name will be automatically linked.
  • In the event an organization was created with a different name in either of the products, you can still manually link them on the Integrations page.
  • If you want to create a new organization within Graphus, you’ll have the ability to retrieve organization names and domains from IT Glue on the Graphus Add Organization page. Creating an organization this way will automatically establish a link between the two organizations.

For details on the Graphus-IT Glue integration, refer to this guide.

Note: you must have subscriptions to both IT Glue and Graphus to enable the integration.

July 05, 2022

New Integration With BullPhish ID Makes Managing Phishing Simulation Campaigns a Snap

BullPhish ID, Kaseya’s security awareness training and phishing simulation solution, has introduced the Advanced Phishing Simulations (aka Drop-A-Phish) feature, a major enhancement that leverages a new integration with Graphus to eliminate the need for domain whitelisting and ensure 100% campaign deliverability to end users.

This integration makes conducting phishing simulation exercises and security awareness training campaigns easy and fast by removing the need to whitelist sending domains or IP addresses. Instead, the Graphus API gives BullPhish ID the ability to place phishing and training emails directly into end-user inboxes as opposed to sending them through the internet, saving customers hours of whitelisting time.

This feature creates a unique advantage for BullPhish ID. Most of its competitors in the phishing simulation training space do not have this capability, so their customers must whitelist the vendors’ sending domains before they can start training their users.

How to Enable:

IMPORTANT: You must have subscriptions to both BullPhish ID and Graphus to enable this integration.

First, log in to Graphus and copy the BullPhish ID API key in the Integrations tab.

Then, go to BullPhish ID and paste the API key in the Integrations tab.

Once the API key is verified, BullPhish ID will sync all organizations with domains that exist in both Graphus and BullPhish ID, and for those organizations, whitelisting will no longer be needed.

Need details? We put together a Knowledge Base article on how to enable this integration.

Take advantage of the powerful new workflow integration between BullPhish ID and Graphus today by adding BullPhish ID to your security stack. Not only will you benefit from using best-in-class anti-phishing email security and security awareness training and phishing simulation platforms, you will also gain extra time savings and efficiencies from the integration between them.

Interested in learning more about BullPhish ID? Click here for details and to request a demonstration from one of our Security specialists.

June 20, 2022

Graphus Releases MSP User Experience Improvement Package

During the second quarter of 2022, Graphus introduced several new MSP-focused settings and features to improve customer experience including:

Bulk Whitelisting

MSPs can now upload entire lists of domain names and IP addresses simultaneously to speed up the whitelisting process. This can be beneficial if you need to add a large number of entries or if you are transitioning from another provider and want to import your existing whitelist.

How it works:

Simply download our Excel template, add your whitelist entries and upload the document to the Graphus portal. You can use Bulk Whitelisting for a single organization within the Organization settings page or apply it globally to all existing organizations and/or future organizations (as a default whitelist).

Organization and User Management Improvements

Maintain good data hygiene within your organizations and users. MSPs can now delete a user or organization instead of just disabling them. While disabling an organization stops the email processing for this organization, deleting it will also remove all data associated with the organization.

Daily Insights Reports Is Now a Global Setting

Daily insights reports provide you with a daily phishing defense report for your customers. Instead of activating it for each organization individually, you can now set it up as a default feature for all future organizations or certain existing organizations on the Global Settings page.

Authentication Skip for EmployeeShield Interactions

MSPs can now turn on the Skip Recipient Authentication setting to allow end users to skip authentication with Microsoft 365 or Google Workspace when interacting with the EmployeeShield banner.

March 28, 2022

Accuracy of EmployeeShield® Warnings Improved

The Graphus team implemented AI-driven messages to increase the accuracy of EmployeeShield banner warnings for new senders. Graphus will now differentiate between emails that come from a first-time sender versus a not-yet-trusted sender.

Graphus will show the following warning for first-time senders: “Sender has never sent any emails to your organization.” For a sender that has sent more than one message but is not yet categorized as a trusted sender, EmployeeShield will show the following new warning: “Sender is not yet trusted by your organization.”

See more details on this enhancement here.

Customers can now watch brief Graphus training videos from within the application’s Insights page of an organization or the MSP Administration page. A Play icon or Video Tutorials link in the bottom left corner of the page will open the video selection.

Currently, there are five videos on the most frequently asked about features. More videos will come in subsequent releases. Read more about the in-app videos here.

View More Records at Once with the New Pagination Feature

Users can now choose from four different pagination options (10, 25, 50 or 100) on the Quarantine, EmployeeShield and Phish911 pages. Prior to this release, a maximum of only 10 records were displayed at a time.

Read more about this feature.

February 21, 2022

Get More Flexibility on Graphus Notifications

This enhancement enables our customers to choose for which category they want to receive Graphus Alert email notifications or publish an event to the configured SIEM or Ticketing System.   After enabling Graphus Alert email notifications, a customer can choose for which of the following three categories they wants to receive notifications via email: Quarantine, EmployeeShield or Phish911. To implement this change, we removed the Notification button from the Phish911 Configuration section to avoid redundancies.   Similar to the email notification, a customer can now choose if Graphus should publish an event to a SIEM or Ticketing System only for Quarantine, EmployeeShield or Phish911, or any combination of the three.

Get the details about the alert email notifications and SIEM/Ticketing Integration.

Dashboard Performance Improvement: Custom Date Range Adjusted

To ensure optimal performance, the customized date ranges have been restricted to 45 days in the Insights section of the Dashboard page. Now, Custom Range cannot go back more than 45 days. This limit does not affect other pages like Quarantine, EmployeeShield or Phish911.

Get more details here.

January 10, 2022

Graphus Rings in 2022 With New Features & Product Enhancements

The Graphus team is excited to announce the rollout of several new features designed to make you more productive, improve your product usage visibility, speed up the new client setup process and more.

License Management Automation

This new functionality gives you visibility into your Graphus subscription details. You will be able to see details of each item purchased, number of mailboxes purchased, contract start and end dates, and mailboxes in use and available to be used.

You will also start receiving emails and seeing proactive notifications via in-product banners when you reach 90% of all your purchased mailboxes, so you’ll know ahead of time that you’re getting close to the maximum threshold.

Once all available mailboxes have been used, you will be unable to add new licenses and organizations until you purchase additional mailboxes. The “Add Organizations” button will temporarily disappear and you will see a bold banner on your Org page prompting you to purchase more licenses before you can add more organizations. To purchase more mailboxes, contact your Account Manager.

Click here for more details on the new functionality.

Provisioning Speed Improvements

The Graphus team has introduced automation to the new customer creation and onboarding processes, which will reduce the time required for account creation, provisioning and associated customer email notifications.

Prior to this release, the process would take up to a day or sometimes longer. The new built-in automation will result in significant time saving since the account setup and provisioning will happen at least half a day to a day earlier than before. This means end users will get email protection quicker and MSPs can onboard customers faster and start billing them sooner.

Quarantine Accuracy Enhancement

The Graphus team has worked to improve our AI algorithms to reduce false positives to ensure that our already very low false positive rate (i.e., when legitimate emails are quarantined) is even lower.

Similarly, the improvements in the AI algorithm that performs email content analysis will also allow Graphus to recognize and remove more malicious emails, making it even more powerful and effective at protecting end-user mailboxes.

Coming Soon: New How-To Videos

The Graphus team is creating several brief in-product videos that will provide overviews and helpful instructions for commonly used Graphus features. Here are some of the videos coming in Q1 2022:

  • How to do a Phish911 investigation
  • How to set up EmployeeShield
  • How to set up executive spoofing protection

This is just the beginning. Several new self-help videos will come out every quarter to help you take full advantage of all Graphus features.

October 01, 2021

Graphus API and Group Protection Feature Released

RESTful API for 3rd Party Software Integration

The API enables you to incorporate the phishing attack intelligence from Graphus into your existing threat intel dashboard or your SIEM/SOC platform vs. having to log into the Graphus platform to check its insights dashboard.  There is a one-time integration fee to enable the API and you must be a paying Graphus customer to take advantage of this capability.   To enable the Graphus API, please contact your Account Manager or send an email to sales@graphus.ai and your Account Manager will contact you. The Graphus team has also created an API User Guide which can be found here.  

Self-Service Group Protection for MSP Customers

This MSP-requested self-service feature will allow Graphus MSP customers to provide email protection to a selected subset of users in an end user organization. This will allow MSPs to deploy Graphus to customers who may have limited budget. (However, we strongly recommend protecting ALL users in a customer’s organization).   To set up the protected groups, please follow the instructions in this guide.

August 27, 2021

Phish911 Feature Gets an Enhancement

The Graphus team is excited to announce an enhancement to the Graphus Phish911 phishing email reporting feature. Phish911 is now integrated with MS Outlook’s phishing reporting functionality, providing email users with a more streamlined way to report suspected phishing attacks. Phish911 serves as an additional layer of defense from phishing attacks and empowers employees to keep their organizations secure.

Our customers are likely familiar with the EmployeeShield warning banners on top of suspicious but possibly legitimate emails that ask recipients to either “Report Phishing” or “Mark as Safe”. This feature will continue to remain in place. However, occasionally users may receive an email that doesn’t have an EmployeeShield banner, but still looks suspicious to them.

They can now quickly and seamlessly report it to Graphus, which will also automatically remove the email from their inbox and from inboxes of any other employees who may have also received it. The IT staff will analyze the email to determine whether it’s malicious or safe. If it’s found to be malicious, the employee who reported it will be notified and the email will be kept in quarantine. If it’s found to be safe, the employee will also be notified and the email will be released from quarantine and returned to the inboxes of the recipients.

There are 3 steps the Graphus customers need to take to activate the feature within their or their clients’ Outlook environment:

  1. Activate the functionality in Outlook
  2. Activate the functionality in Graphus
  3. Send an email notification to end users explaining how to use the feature and instructing them to re-start Outlook to begin seeing the new button.

The Graphus team has created a detailed, step-by-step activation guide that can be accessed here. The instructions have also been included in the Graphus onboarding materials in Kaseya University.

July 15, 2021

MSP Branding, Global Settings, and Self-Service Features

Several new, highly-requested features for MSPs were released in the Graphus portal on July 15.

With this new self-service functionality, MSPs are able to easily adjust a number of settings themselves vs. placing support tickets with us. MSPs admin can now save time by managing and configuring the settings for their end customers (organizations) from a central location in just a few clicks, vs. configuring settings for each organization individually. MSPs now have the flexibility to apply the settings to either all of their organizations or to a subset.

The new capabilities include:

  • Whitelabeling (allows MSPs to keep their brand front and center for their customers)
    • Reports: MSP can now configure report frequency (daily or monthly), set up the report recipients, and upload their logo and colors so the reports can feature their branding.
    • EmployeeShield Banner: MSPs can configure the same type of banner for all their customers from one place. They also have the ability to turn banners on and off for all or a subset of customers.
  • Whitelisting MSP can now whitelist trusted services they use by turning off Graphus detection on emails from certain trusted entities. This can be configured on the sender domain, smtp.mailfrom domain or IP address levels, and can be configured for all or a subset of their customers from one screen.
  • EmployeeShield Banner Warnings MSPs now have a new capability to adjust configurations to turn the EmployeeShiled application on/off on emails from suspicious and not yet trusted senders.

To make it easy for MSPs to take advantage of the new features, the Product team put together a reference guide – it’s available here.

June 18, 2021

New Integration with Kaseya’s BMS Helpdesk System

Graphus is now integrated with Kaseya BMS, a helpdesk ticketing system used by many of our customers. If you are a BMS user, you can now benefit from this new, time-saving workflow integration and seamless alerting process. Any time Graphus detects a phishing attack or a user reports a phishing email, a ticket will be generated in BMS. The ticket will contain the phishing email details, so you can better understand the attack and able to resolve it in your customary fashion. The new integration does not interfere with the existing Graphus setup or email flow.

How do I activate the Graphus-BMS integration? Configuring the integration is simple – you will need to enter certain details in the Settings sections of the Graphus customer portal and then test connectivity to BMS. To assist you with configuration and testing, the Graphus team created a brief Integration Guide. This user guide is available for review via the Graphus Knowledge Base. Visit the Settings section of Graphus to configure the integration.

March 12, 2021

Internal Account Attacks Detection

The email attacks that originate within an organization can be some of the most difficult to detect and stop. These attacks could occur when a malicious actor gains access to an employee’s or executive’s email account by using their compromised credentials. The attacker then attempts to perpetrate fraud or inflict damage by sending emails from the compromised account to coworkers, suppliers or business contacts requesting fund transfers, business credentials, proprietary data, etc. These attacks are missed by email security solutions and can cause significant losses and disruption to organizations.

Graphus now provides protection not only from external attacks but also from internal attacks via compromised email accounts. It automatically learns the communication patterns of internal account users and detects and flags suspicious emails sent from compromised accounts. This is one of the many powerful protection features provided by Graphus that make it stand apart from its competitors in the email security space.