Bank of America Corporation
Malicious Email Mitigation

Abstract:

A malicious email mitigation process provides safe handling of emails and protects users from malicious content such as contained in phishing emails. A mail-delivery agent on a mail server receives an original email from a sender. The mail-delivery agent analyzes whether the sender is inside or outside of a safe zone and/or is a trusted sender. If the sender is inside the safe zone, the server transmits to the client the original email without alteration. If originating from an unsafe zone and/or from a potentially unsafe sender, the server deobfuscates any links in the original email, converts the original email into a sanitized communications file, and creates an image of the original email. The server transmits the sanitized communication file to a mailbox on the client along with the image copy of the original email as an attachment and any original attachments to the original email that are safe.