CERT NZ Phishing Disruption Service (PDS) feed
Who are CERT NZ and what is the CERT NZ Phishing Disruption Service (PDS)?
CERT NZ is the NZ government’s Computer Emergency Response Team. They help organisations and individuals build resilience against cyber security threats with trusted information and advice, and a deep understanding of New Zealand’s threat landscape.
In 2022, CERT NZ released their Phishing Disruption Service (PDS) to a group of NZ cyber security companies, including SMX. The Phishing Disruption Service provides a list of high-confidence, NZ-specific phishing indicators or “fingerprints” that organisations can act on to protect their staff, customers, and users.
How does it work?
SMX has worked with Cert NZ to integrate their Phishing Disruption Service (PDS) into our email security-based products, providing our customers with yet another layer of defence against phishing.
When SMX scans incoming email, we analyse the email looking for Phishing indicators provided by the Phishing Disruption Service. If we have match that means we’ve detected a phishing email which we then block from entering your organisation.
What do I need to do to enable it for my organisation?
Nothing at all. SMX is enabling the PDS feed on all customer accounts on Secure Email Gateway or SMX 365, starting November 2023.
I’m a reseller, what do I need to do to enable PDS for my customers?
Nothing at all. SMX is enabling the PDS feed on all customer accounts on Secure Email Gateway or SMX 365 - starting November 2023.
How much does PDS cost?
The PDS feed is a zero-cost upgrade. SMX is committed to delivering the best filtering service for our customers and integrating CERT NZ’s PDS feed enables us to do that.
How effective is PDS?
PDS is designed to detect and block known phishing emails. Our experience has shown that while the vast majority of malicious emails are detected by our multi-layered commercial engines, the PDS feed does detect localised, NZ based phishing emails. This provides additional phishing protection for our customers in New Zealand.
Where does PDS get its info or fingerprints from?
CERT NZ received submissions from various sources, including New Zealand and overseas partners and New Zealanders themselves who have received phishing emails. All indicators in the CERT NZ PDS database verified by CERT NZ and are based on real-world attacks.
How do I submit false negatives to SMX for CERT NZ?
You can send them to SMX’s customer success team via emailsupport@smxemail.com
Can I get the CERT NZ PDS from another provider?
Currently, CERT NZ only provides the PDS feed to New Zealand-based cybersecurity companies. This means global players such as Microsoft, Google etc aren’t likely to provide this New Zealand-specific feed for their customers, and SMX is the only cyber security company with a focus on email to be able to provide the CERT NZ PDS service.
Can you send me a link to CERT NZ’s PDS?
You can find out more on the CERT NZ PDS here: https://www.cert.govt.nz/about/phishing-disruption-service/
How do I submit false positives to SMX for CERT NZ?
You can send them to SMX’s customer success team via emailsupport@smxemail.com